Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/e5654c-9fe7-4793-8a8f-40edadeee860/1/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.mft
File: QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.mft (raw, json)
Hash identifier: 2s+430vLkfC4XGsBW4kz4uFdAulpt02kHVvbYZFMMpM=
Subject key identifier: A5:7F:DD:B0:78:EF:CB:88:9B:36:DD:FD:6D:BC:00:58:F8:5D:F7:37
Authority key identifier: 40:8B:0F:E6:58:EB:96:FB:50:B1:35:F7:1B:B9:2F:27:B9:2C:13:94
Certificate issuer: /CN=408b0fe658eb96fb50b135f71bb92f27b92c1394
Certificate serial: 019CAC1031D0046DCFEFB9DA201737AB541F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/e5654c-9fe7-4793-8a8f-40edadeee860/1/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.mft
Manifest number: 1842
Signing time: Mon 02 Mar 2026 01:01:08 +0000
Manifest this update: Mon 02 Mar 2026 01:01:08 +0000
Manifest next update: Tue 03 Mar 2026 01:01:08 +0000
Files and hashes: 1: QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.crl (hash: N6Sc8xyNwqWr3h9DsiQ2zxOUm2fL3J1seG5kVKWZ8io=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/e5654c-9fe7-4793-8a8f-40edadeee860/1/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/e5654c-9fe7-4793-8a8f-40edadeee860/1/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:10:31:d0:04:6d:cf:ef:b9:da:20:17:37:ab:54:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=408b0fe658eb96fb50b135f71bb92f27b92c1394
Validity
Not Before: Mar 2 01:01:08 2026 GMT
Not After : Mar 3 01:01:08 2026 GMT
Subject: CN=a57fddb078efcb889b36ddfd6dbc0058f85df737
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:4b:26:85:df:16:b6:a9:01:97:13:a7:06:0c:
0c:50:83:2b:12:ce:2f:87:e5:82:3b:14:f4:7b:c9:
46:5c:ef:23:84:37:53:59:c3:ca:4f:18:4e:15:6f:
54:f3:02:a6:54:33:cb:9b:f0:50:81:33:e7:af:b7:
dc:6d:19:10:c6:d6:04:c4:97:46:ae:a0:ee:c4:e0:
44:5e:32:16:4c:7c:67:74:ee:f7:90:94:33:00:de:
cd:4b:06:07:63:fa:f2:04:98:fc:31:88:1c:ea:f1:
28:b0:1e:0b:04:91:09:fc:47:e4:e1:31:65:40:51:
ca:85:1e:f0:36:6e:28:cf:6f:4a:5e:aa:99:7e:52:
6c:9b:69:29:4f:45:28:9b:74:22:3f:b5:3d:4e:3a:
18:c9:f7:cb:15:a0:a2:26:65:50:42:a3:a9:6c:59:
7d:91:7f:9f:de:39:a0:ef:8e:49:ca:98:d9:66:63:
12:9c:78:eb:69:9e:ee:1b:15:d1:df:6e:8c:b0:71:
bb:03:5f:23:8a:80:af:d5:82:3c:71:19:c6:81:8e:
ef:0b:ad:d9:4c:a6:78:a3:c8:be:22:ea:da:ba:55:
ff:98:97:8d:2c:53:20:27:4b:dc:89:38:38:6c:14:
9e:11:db:15:3e:2a:6a:a7:7c:05:39:a6:62:24:f9:
cd:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:7F:DD:B0:78:EF:CB:88:9B:36:DD:FD:6D:BC:00:58:F8:5D:F7:37
X509v3 Authority Key Identifier:
keyid:40:8B:0F:E6:58:EB:96:FB:50:B1:35:F7:1B:B9:2F:27:B9:2C:13:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e5654c-9fe7-4793-8a8f-40edadeee860/1/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e5654c-9fe7-4793-8a8f-40edadeee860/1/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:6a:20:39:dd:99:47:fb:86:fb:b3:a9:ec:0f:c8:07:fb:f6:
fe:0a:8e:ce:35:9f:b1:d6:6b:18:02:4d:91:21:6f:69:6d:d1:
26:cf:30:66:e9:db:72:b5:e5:3d:5a:d1:19:05:7f:62:35:f1:
a8:7a:a6:aa:59:c5:3c:24:9b:2b:5f:2b:15:10:48:ea:a1:1a:
c2:90:5d:68:1f:11:46:4a:c7:e0:5a:11:23:f2:84:37:14:a5:
94:d0:6b:46:90:a4:ad:ad:29:e0:50:af:e0:76:81:49:b5:c4:
eb:ae:9a:f3:53:09:e3:37:fe:61:80:97:70:7b:ae:4d:52:36:
d9:bc:6e:dd:9e:0c:f2:2f:a9:a1:e1:6f:87:ce:6a:68:d2:59:
94:f7:d5:e3:c6:4c:4e:21:7b:81:42:34:61:1c:a3:ed:93:f8:
00:3b:89:c8:3b:f9:d1:f7:9d:6c:46:77:02:0b:09:e2:a0:6e:
5d:6a:a2:ab:85:ae:1b:45:7d:46:7d:15:64:0c:c9:99:d5:42:
45:ab:32:38:d0:e8:d7:30:ef:30:f1:82:1b:45:49:73:9d:9b:
15:06:61:76:37:ba:81:cc:fc:c1:19:85:cd:e4:66:c7:7d:e1:
c8:5a:51:32:b5:5b:4f:88:11:7b:bb:53:e4:d8:33:58:2d:cb:
f8:fb:be:28
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZysEDHQBG3P77naIBc3q1QfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwOGIwZmU2NThlYjk2ZmI1MGIxMzVmNzFiYjkyZjI3Yjky
YzEzOTQwHhcNMjYwMzAyMDEwMTA4WhcNMjYwMzAzMDEwMTA4WjAzMTEwLwYDVQQD
EyhhNTdmZGRiMDc4ZWZjYjg4OWIzNmRkZmQ2ZGJjMDA1OGY4NWRmNzM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnUsmhd8WtqkBlxOnBgwMUIMrEs4v
h+WCOxT0e8lGXO8jhDdTWcPKTxhOFW9U8wKmVDPLm/BQgTPnr7fcbRkQxtYExJdG
rqDuxOBEXjIWTHxndO73kJQzAN7NSwYHY/ryBJj8MYgc6vEosB4LBJEJ/Efk4TFl
QFHKhR7wNm4oz29KXqqZflJsm2kpT0Uom3QiP7U9TjoYyffLFaCiJmVQQqOpbFl9
kX+f3jmg745JypjZZmMSnHjraZ7uGxXR326MsHG7A18jioCv1YI8cRnGgY7vC63Z
TKZ4o8i+IuraulX/mJeNLFMgJ0vciTg4bBSeEdsVPipqp3wFOaZiJPnN7QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKV/3bB478uImzbd/W28AFj4Xfc3MB8GA1UdIwQY
MBaAFECLD+ZY65b7ULE19xu5Lye5LBOUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUlzUDVsanJsdnRRc1RYM0c3a3ZKN2tzRTVRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS9lNTY1NGMtOWZlNy00NzkzLThhOGYt
NDBlZGFkZWVlODYwLzEvUUlzUDVsanJsdnRRc1RYM0c3a3ZKN2tzRTVRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NS9lNTY1NGMtOWZlNy00NzkzLThhOGYtNDBlZGFkZWVlODYw
LzEvUUlzUDVsanJsdnRRc1RYM0c3a3ZKN2tzRTVRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfmogOd2Z
R/uG+7Op7A/IB/v2/gqOzjWfsdZrGAJNkSFvaW3RJs8wZunbcrXlPVrRGQV/YjXx
qHqmqlnFPCSbK18rFRBI6qEawpBdaB8RRkrH4FoRI/KENxSllNBrRpCkra0p4FCv
4HaBSbXE666a81MJ4zf+YYCXcHuuTVI22bxu3Z4M8i+poeFvh85qaNJZlPfV48ZM
TiF7gUI0YRyj7ZP4ADuJyDv50fedbEZ3AgsJ4qBuXWqiq4WuG0V9Rn0VZAzJmdVC
RasyONDo1zDvMPGCG0VJc52bFQZhdje6gcz8wRmFzeRmx33hyFpRMrVbT4gRe7tT
5NgzWC3L+Pu+KA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 08:18:59 2026 by rpki-client