Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/da85e7-a452-4b1d-b5ae-9b11804ecd39/1/qbdbZNXaF9cLur2BGjmmAt2vljo.mft
File: qbdbZNXaF9cLur2BGjmmAt2vljo.mft (raw, json)
Hash identifier: klOGKLY0wWLqcI743BvIwENhWrDFdI4FTFarDxKr8aU=
Subject key identifier: D4:BB:2A:5B:35:90:DE:D4:87:08:C9:33:32:B6:45:08:2F:A9:94:56
Authority key identifier: A9:B7:5B:64:D5:DA:17:D7:0B:BA:BD:81:1A:39:A6:02:DD:AF:96:3A
Certificate issuer: /CN=a9b75b64d5da17d70bbabd811a39a602ddaf963a
Certificate serial: 019CA8D83BA0DF2B8BF8136DD41244AB6D0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qbdbZNXaF9cLur2BGjmmAt2vljo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/da85e7-a452-4b1d-b5ae-9b11804ecd39/1/qbdbZNXaF9cLur2BGjmmAt2vljo.mft
Manifest number: 1852
Signing time: Sun 01 Mar 2026 10:01:09 +0000
Manifest this update: Sun 01 Mar 2026 10:01:09 +0000
Manifest next update: Mon 02 Mar 2026 10:01:09 +0000
Files and hashes: 1: 1NvxVfbgzX3B2umfhkugjM1Ndt8.roa (hash: eJgXwibre0wnDjBDy8eibyL2XVfQ9w6WUfIwOfEC1/g=)
2: 24lvsSxh7MUVQcE3eg7_Djq-Tso.asa (hash: Hjss/TGOcmwG6GtuhM5X9Ph0gtLBzHScnu3DTiqPa9c=)
3: 36K8uvuxLLbczf1YXC_ASJxPbng.asa (hash: 870+pBNRKYWmY6ePML/QQK6e/MrQo9VBr7qVr3BXzBw=)
4: FWYopd6TlSta9pASbYNvraqyvNM.asa (hash: I8ABTTre9KM0IJfOp7PT39kOwRj4TE5ZVbXeJW/G+gk=)
5: WejJJbiVIVBvqcAo9H2Ft-eq30w.roa (hash: JdWw00hlc+ApcItp8TIS28rgQX0UUCuS32HYbDrb1Yk=)
6: jaSX7XYiEHoA7tLRMZ4FmzvpH8Q.roa (hash: M7LvfJJsOKZWEYP7z3dZkFRXXMBuWl1FzF5qPTUm5UU=)
7: opuCCMcW2_WxPhJsfHpsveIPJOk.roa (hash: Ln2QBI28PVqcs7LQQVU47oAWi74sYxDyz9uXHVwYm+Q=)
8: qO7fP4JYDSwOkwNU79mWRjM64pA.roa (hash: BxE3oHxaS3QLL7K/vl+6ZKbsDqNKFO/W+KaSLMWTYFI=)
9: qbdbZNXaF9cLur2BGjmmAt2vljo.crl (hash: aZj/WEbLBz3dtZgI+fIthlkSUgxY3Ebp2MSfz9HyI38=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/da85e7-a452-4b1d-b5ae-9b11804ecd39/1/qbdbZNXaF9cLur2BGjmmAt2vljo.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/da85e7-a452-4b1d-b5ae-9b11804ecd39/1/qbdbZNXaF9cLur2BGjmmAt2vljo.mft
rsync://rpki.ripe.net/repository/DEFAULT/qbdbZNXaF9cLur2BGjmmAt2vljo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 06:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a8:d8:3b:a0:df:2b:8b:f8:13:6d:d4:12:44:ab:6d:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9b75b64d5da17d70bbabd811a39a602ddaf963a
Validity
Not Before: Mar 1 10:01:09 2026 GMT
Not After : Mar 2 10:01:09 2026 GMT
Subject: CN=d4bb2a5b3590ded48708c93332b645082fa99456
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:48:ca:9c:ae:4d:d3:cb:10:3d:2a:a3:26:32:
14:df:4f:93:cb:f4:ad:38:d2:2b:c8:80:cf:46:b4:
fc:3d:f2:7e:c7:db:c4:8c:ff:a2:c4:89:5a:56:87:
6a:77:22:b0:92:45:95:26:0f:82:a2:1a:22:bd:2d:
8e:24:92:66:38:01:c2:57:e9:28:f6:b3:3e:b3:a1:
6f:00:74:20:70:3a:3f:92:37:6c:01:a8:50:56:7d:
0d:7f:5a:33:0e:a4:71:28:e0:66:d5:7f:8a:e5:95:
7b:79:35:a8:68:2f:3f:e5:02:bd:60:39:22:97:0c:
c7:a1:20:58:67:4f:0e:c4:42:b2:b5:d0:d8:54:90:
35:24:3c:61:b4:4f:04:50:b3:07:c0:7b:26:9f:79:
30:2d:ae:6e:67:77:56:83:8b:7e:3c:e1:1d:12:f3:
92:02:b2:f1:1d:c9:5c:87:8b:85:b8:31:8c:2d:95:
92:0b:bb:4e:20:77:3f:38:ca:9e:4c:88:cf:5a:8f:
10:f3:4e:6a:60:61:d8:e3:9b:da:7c:58:b0:49:f5:
ef:79:17:3a:8a:2b:39:07:9f:7a:51:cb:19:de:d6:
ad:5e:03:1b:2a:11:d2:e6:36:89:a9:51:7b:04:74:
99:df:2c:67:0a:fd:2b:c9:5d:23:2a:7d:75:79:0d:
24:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:BB:2A:5B:35:90:DE:D4:87:08:C9:33:32:B6:45:08:2F:A9:94:56
X509v3 Authority Key Identifier:
keyid:A9:B7:5B:64:D5:DA:17:D7:0B:BA:BD:81:1A:39:A6:02:DD:AF:96:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qbdbZNXaF9cLur2BGjmmAt2vljo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/da85e7-a452-4b1d-b5ae-9b11804ecd39/1/qbdbZNXaF9cLur2BGjmmAt2vljo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/da85e7-a452-4b1d-b5ae-9b11804ecd39/1/qbdbZNXaF9cLur2BGjmmAt2vljo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:0b:99:b8:18:84:60:1f:95:1d:72:73:36:20:74:33:6c:37:
88:35:2a:25:ca:f5:dc:e2:74:84:6c:95:e2:db:97:3f:13:de:
d4:28:97:25:41:d2:20:1e:ce:ba:46:4a:fa:74:4c:9c:da:43:
7a:d4:39:dc:86:01:37:8e:e3:30:6b:bd:6f:34:81:dc:14:6a:
02:c3:e2:44:61:2f:78:ee:42:27:ca:a0:ce:82:85:14:60:c1:
f3:50:81:9a:95:fc:cc:00:a1:fb:b1:86:b9:09:ab:92:46:f5:
c0:87:37:8b:57:9b:e5:e2:06:24:07:2b:b2:16:b0:84:ad:52:
6c:1f:4c:26:05:93:78:a6:43:79:9d:c7:4a:77:23:e9:57:d3:
b4:ca:d5:2c:02:32:a2:99:d7:79:66:12:27:6d:dd:fb:a0:45:
24:78:fd:2e:ac:b6:35:de:88:ab:a5:b2:c8:00:ce:ed:17:86:
61:cb:3a:c8:84:e7:e9:eb:b9:84:55:82:7c:c7:c4:7a:0d:35:
63:6b:61:0b:b2:c2:d7:60:3c:f0:d6:80:80:db:61:86:59:1b:
09:80:e6:20:c7:09:c0:64:f9:aa:76:06:69:35:1e:b1:f1:80:
04:f0:44:1d:89:3e:51:65:20:57:4c:68:95:ed:c7:19:94:0d:
f2:40:1d:f0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyo2Dug3yuL+BNt1BJEq20NMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE5Yjc1YjY0ZDVkYTE3ZDcwYmJhYmQ4MTFhMzlhNjAyZGRh
Zjk2M2EwHhcNMjYwMzAxMTAwMTA5WhcNMjYwMzAyMTAwMTA5WjAzMTEwLwYDVQQD
EyhkNGJiMmE1YjM1OTBkZWQ0ODcwOGM5MzMzMmI2NDUwODJmYTk5NDU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiUjKnK5N08sQPSqjJjIU30+Ty/St
ONIryIDPRrT8PfJ+x9vEjP+ixIlaVodqdyKwkkWVJg+CohoivS2OJJJmOAHCV+ko
9rM+s6FvAHQgcDo/kjdsAahQVn0Nf1ozDqRxKOBm1X+K5ZV7eTWoaC8/5QK9YDki
lwzHoSBYZ08OxEKytdDYVJA1JDxhtE8EULMHwHsmn3kwLa5uZ3dWg4t+POEdEvOS
ArLxHclch4uFuDGMLZWSC7tOIHc/OMqeTIjPWo8Q805qYGHY45vafFiwSfXveRc6
iis5B596UcsZ3tatXgMbKhHS5jaJqVF7BHSZ3yxnCv0ryV0jKn11eQ0kkwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNS7Kls1kN7UhwjJMzK2RQgvqZRWMB8GA1UdIwQY
MBaAFKm3W2TV2hfXC7q9gRo5pgLdr5Y6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcWJkYlpOWGFGOWNMdXIyQkdqbW1BdDJ2bGpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS9kYTg1ZTctYTQ1Mi00YjFkLWI1YWUt
OWIxMTgwNGVjZDM5LzEvcWJkYlpOWGFGOWNMdXIyQkdqbW1BdDJ2bGpvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS9kYTg1ZTctYTQ1Mi00YjFkLWI1YWUtOWIxMTgwNGVjZDM5
LzEvcWJkYlpOWGFGOWNMdXIyQkdqbW1BdDJ2bGpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACQuZuBiE
YB+VHXJzNiB0M2w3iDUqJcr13OJ0hGyV4tuXPxPe1CiXJUHSIB7OukZK+nRMnNpD
etQ53IYBN47jMGu9bzSB3BRqAsPiRGEveO5CJ8qgzoKFFGDB81CBmpX8zACh+7GG
uQmrkkb1wIc3i1eb5eIGJAcrshawhK1SbB9MJgWTeKZDeZ3HSncj6VfTtMrVLAIy
opnXeWYSJ23d+6BFJHj9Lqy2Nd6Iq6WyyADO7ReGYcs6yITn6eu5hFWCfMfEeg01
Y2thC7LC12A88NaAgNthhlkbCYDmIMcJwGT5qnYGaTUesfGABPBEHYk+UWUgV0xo
le3HGZQN8kAd8A==
-----END CERTIFICATE-----
Generated at Sun Mar 1 14:45:01 2026 by rpki-client