Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.mft
File: QB0ZYVrOK7vPoJFpCAgIdipksX4.mft (raw, json)
Hash identifier: RxC62ZP35zKjPIW7l25+W5ksaShmV6B2SK1S0yMf/eM=
Subject key identifier: 2D:7B:0F:03:91:EB:E3:42:36:E3:E9:12:57:38:1D:51:B3:85:CF:89
Authority key identifier: 40:1D:19:61:5A:CE:2B:BB:CF:A0:91:69:08:08:08:76:2A:64:B1:7E
Certificate issuer: /CN=401d19615ace2bbbcfa09169080808762a64b17e
Certificate serial: 019D9A0703101278AD7651350063DFE27BF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QB0ZYVrOK7vPoJFpCAgIdipksX4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.mft
Manifest number: 0791
Signing time: Fri 17 Apr 2026 06:00:43 +0000
Manifest this update: Fri 17 Apr 2026 06:00:43 +0000
Manifest next update: Sat 18 Apr 2026 06:00:43 +0000
Files and hashes: 1: QB0ZYVrOK7vPoJFpCAgIdipksX4.crl (hash: pWYxAGBnRexlErfABaEWGLddVS9Soo6YVaY+hnuXx1o=)
2: VI_14hIZSMxriiYvEo8zurAkwos.roa (hash: vbC8BhXmxZVktP9z4L8ZbNsqrQlwhBR+BWbQ4L1r4nk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.mft
rsync://rpki.ripe.net/repository/DEFAULT/QB0ZYVrOK7vPoJFpCAgIdipksX4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 06:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:07:03:10:12:78:ad:76:51:35:00:63:df:e2:7b:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=401d19615ace2bbbcfa09169080808762a64b17e
Validity
Not Before: Apr 17 06:00:43 2026 GMT
Not After : Apr 18 06:00:43 2026 GMT
Subject: CN=2d7b0f0391ebe34236e3e91257381d51b385cf89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e5:50:f9:db:f6:ac:24:58:ff:cc:db:48:4e:
60:12:09:3d:98:c3:07:56:56:19:f0:3d:b3:e4:2f:
32:b2:96:98:99:fb:60:e0:3e:fa:bb:d9:ee:57:f9:
e8:4d:df:6d:8f:8a:8d:bb:7f:d8:c7:4c:8e:70:1d:
03:b5:76:86:53:62:ed:9e:eb:26:4a:1b:60:c6:e8:
18:25:dc:f8:61:ef:93:7c:ea:75:41:3c:77:47:e5:
8d:a4:83:19:e8:d9:b9:46:db:0e:8b:9f:e7:63:e3:
9e:22:18:d2:a9:f1:f6:db:74:0c:b0:21:da:0f:76:
43:6c:b3:10:7f:6c:c3:7e:1d:c3:07:d7:b6:93:ca:
85:56:11:d7:41:3a:28:e5:41:0a:e5:59:66:05:2c:
42:c0:dc:f9:e8:f4:1c:14:c9:7c:a5:4b:23:72:42:
46:21:18:ac:54:97:00:fe:0a:d7:b7:72:9c:fe:0a:
30:1c:cd:96:7e:2f:9c:96:c4:80:ad:29:92:6e:b2:
6c:18:80:d8:7e:3f:3d:b5:2b:94:1f:b7:12:b1:bd:
d6:1a:8e:85:8e:27:39:05:52:58:76:b0:77:71:42:
e7:98:0f:db:f0:b1:99:cf:da:3f:4f:51:99:30:23:
25:a6:62:1b:7f:b1:51:99:8a:b6:87:e1:33:79:78:
18:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:7B:0F:03:91:EB:E3:42:36:E3:E9:12:57:38:1D:51:B3:85:CF:89
X509v3 Authority Key Identifier:
keyid:40:1D:19:61:5A:CE:2B:BB:CF:A0:91:69:08:08:08:76:2A:64:B1:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QB0ZYVrOK7vPoJFpCAgIdipksX4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:8d:12:16:f2:34:0a:09:58:38:5c:30:2c:dd:c7:60:20:74:
8e:1c:7a:a4:42:4d:49:d5:4c:e7:6d:19:62:87:dd:95:92:a5:
97:5c:5e:5a:e2:c8:f5:b1:a5:9b:9b:a6:94:f7:49:be:67:ec:
8c:5e:cd:3a:65:eb:9d:e1:d1:e6:46:92:6a:1e:1b:3e:c3:10:
70:ff:fd:b5:fe:75:07:d8:d9:de:bd:a8:53:be:f4:00:f9:2b:
eb:b5:17:bc:5b:3d:2a:70:ef:17:19:dc:6e:fa:ea:84:c2:51:
02:96:ca:be:fb:a7:db:df:e9:cb:da:3d:d0:43:da:2c:ca:d0:
de:1a:cc:70:43:80:fa:fe:ff:99:d2:4b:0c:b5:95:ab:35:c1:
04:89:ff:0f:7f:21:3d:90:14:01:e3:ed:ed:19:01:39:19:d0:
19:30:a9:6d:d4:2c:ac:cf:55:66:ab:65:68:ec:da:00:8e:0a:
f0:7a:1a:40:f1:f9:5e:bf:e2:76:fd:86:b5:f7:a0:40:ac:cb:
48:f4:dd:ca:26:da:c0:89:0d:ad:06:af:e3:44:02:d6:88:30:
46:c0:ef:fc:cd:fe:00:fc:7f:23:45:a0:a7:00:1b:bf:73:1d:
41:29:ec:fb:33:96:3b:3f:64:5c:c8:e1:7f:05:a3:98:57:d3:
d2:b7:08:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 12:09:05 2026 by rpki-client