Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.mft
File: QB0ZYVrOK7vPoJFpCAgIdipksX4.mft (raw, json)
Hash identifier: Iotme+/SlxQNvyPeDPYMwtjVgkp5hXv5pgyc96fsneo=
Subject key identifier: B5:D5:41:67:0A:E4:CB:DE:BF:C1:47:DA:3D:11:51:B7:50:63:6C:01
Authority key identifier: 40:1D:19:61:5A:CE:2B:BB:CF:A0:91:69:08:08:08:76:2A:64:B1:7E
Certificate issuer: /CN=401d19615ace2bbbcfa09169080808762a64b17e
Certificate serial: 019CAA8F84D38072E1C665D7F7BC8952F88B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QB0ZYVrOK7vPoJFpCAgIdipksX4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.mft
Manifest number: 0715
Signing time: Sun 01 Mar 2026 18:00:58 +0000
Manifest this update: Sun 01 Mar 2026 18:00:58 +0000
Manifest next update: Mon 02 Mar 2026 18:00:58 +0000
Files and hashes: 1: QB0ZYVrOK7vPoJFpCAgIdipksX4.crl (hash: HAPr8iGiqlBbTfrMPm4b2cde8HO4fobEshYgBfqXLu4=)
2: VI_14hIZSMxriiYvEo8zurAkwos.roa (hash: vbC8BhXmxZVktP9z4L8ZbNsqrQlwhBR+BWbQ4L1r4nk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.mft
rsync://rpki.ripe.net/repository/DEFAULT/QB0ZYVrOK7vPoJFpCAgIdipksX4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:8f:84:d3:80:72:e1:c6:65:d7:f7:bc:89:52:f8:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=401d19615ace2bbbcfa09169080808762a64b17e
Validity
Not Before: Mar 1 18:00:58 2026 GMT
Not After : Mar 2 18:00:58 2026 GMT
Subject: CN=b5d541670ae4cbdebfc147da3d1151b750636c01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:e1:d9:05:ce:6e:e6:c2:7b:bc:86:47:f9:62:
66:f8:a1:d1:8a:3a:18:0e:12:e9:ed:0a:1b:38:21:
86:69:59:57:ad:d4:c4:47:7b:0a:c9:6c:7e:62:40:
58:64:b2:4f:01:f6:12:19:2d:3f:06:f3:69:05:75:
6f:af:99:61:48:11:ea:a1:7c:14:38:4b:2d:9a:d2:
a0:8a:15:2e:6d:0b:25:ad:8e:0a:40:bc:fe:b2:ba:
39:5a:ba:a1:84:8a:0f:2e:fc:1a:1a:de:e4:f1:a7:
74:f7:11:23:d1:4b:1a:40:77:36:ca:21:08:43:82:
c3:ce:06:78:e9:e4:73:77:17:fe:20:4f:06:8c:50:
ae:2d:1d:57:79:fa:de:ab:1c:79:8c:2f:8b:41:83:
7d:10:6e:57:e9:08:74:89:50:64:25:62:c1:9c:9d:
15:1f:a8:da:ea:dd:6e:35:31:51:61:db:76:4a:65:
22:14:87:ac:91:ef:63:76:a3:e8:6e:ac:f9:3a:df:
87:11:fb:ac:8d:74:65:28:0a:24:f0:82:0b:c9:8d:
22:fe:37:2b:69:cf:09:4a:05:66:ed:68:5f:f0:7c:
e7:5b:03:e8:4e:c9:50:41:cc:70:1a:13:28:09:33:
1e:26:18:0b:a1:97:7e:67:02:84:1a:e8:cb:4e:1e:
80:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:D5:41:67:0A:E4:CB:DE:BF:C1:47:DA:3D:11:51:B7:50:63:6C:01
X509v3 Authority Key Identifier:
keyid:40:1D:19:61:5A:CE:2B:BB:CF:A0:91:69:08:08:08:76:2A:64:B1:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QB0ZYVrOK7vPoJFpCAgIdipksX4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:2f:4f:90:1d:96:59:04:0b:1a:52:a7:cc:75:e2:0c:03:34:
f0:ab:6b:22:df:89:2e:41:32:08:74:c5:c4:7c:89:b1:6d:67:
d3:df:87:d5:7c:1b:92:8e:47:9a:54:f8:e1:0e:0c:4f:76:63:
e2:b2:8a:f5:72:34:c6:73:6f:c2:ed:a2:82:08:34:c3:56:eb:
0c:e5:7c:99:da:1d:da:08:c3:5f:65:e8:a7:47:a8:68:4f:e3:
27:a8:46:a3:a5:7d:d9:78:7b:3b:65:a2:24:de:b5:a2:c8:d4:
c7:5a:ee:0c:7b:c7:e8:85:80:45:46:8b:a0:cf:4e:62:6c:bd:
d1:33:41:ce:cd:d4:15:66:15:2b:f3:a8:44:d5:29:71:42:cb:
bf:79:3f:cc:88:b5:3b:d0:dd:da:ab:ee:d8:ae:69:a2:c0:0e:
f8:0f:ef:5b:7e:63:03:db:c6:4c:2d:51:53:ec:7f:eb:0b:4c:
db:86:72:02:7d:9d:45:5a:1b:76:81:03:64:ae:32:27:1c:3b:
34:c4:06:28:7d:dc:ee:16:0a:5a:78:99:c0:75:40:5a:c2:c4:
3d:a5:5f:11:5a:df:26:33:ed:98:fc:15:b2:63:0d:fc:53:72:
b5:06:c6:f4:82:2b:92:e7:68:24:65:82:65:d3:be:00:0e:89:
38:18:99:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:43:20 2026 by rpki-client