Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft
File: QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft (raw, json)
Hash identifier: Du3C5iH2DtKp1xfXST8jy02BcMyIBcRV8vq4ACh1J50=
Subject key identifier: E8:A5:EB:D9:7C:8C:43:08:60:75:1B:07:E5:04:17:BA:00:B2:63:CB
Authority key identifier: 40:AA:71:15:7E:20:D9:80:36:BB:D6:93:B8:EC:BB:2B:99:F0:F0:3C
Certificate issuer: /CN=40aa71157e20d98036bbd693b8ecbb2b99f0f03c
Certificate serial: 019CAF117C002FD7F541BD8DEA439536558F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft
Manifest number: 1846
Signing time: Mon 02 Mar 2026 15:01:24 +0000
Manifest this update: Mon 02 Mar 2026 15:01:24 +0000
Manifest next update: Tue 03 Mar 2026 15:01:24 +0000
Files and hashes: 1: QKpxFX4g2YA2u9aTuOy7K5nw8Dw.crl (hash: /J44FehCNgB25D1902MxWQfY8n08zqVS1yASVd5qChE=)
2: hVrll11zraZlwu0aoJ27lTvgIvM.roa (hash: p+52m9VvNKJJpUqhG5dFcaxf3Gx9Tk084ipIrkRQ47E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft
rsync://rpki.ripe.net/repository/DEFAULT/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 15:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:af:11:7c:00:2f:d7:f5:41:bd:8d:ea:43:95:36:55:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40aa71157e20d98036bbd693b8ecbb2b99f0f03c
Validity
Not Before: Mar 2 15:01:24 2026 GMT
Not After : Mar 3 15:01:24 2026 GMT
Subject: CN=e8a5ebd97c8c430860751b07e50417ba00b263cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:a6:ff:7f:17:f0:b1:a4:ca:95:e7:62:19:c0:
cf:0a:08:d8:c2:4a:24:49:df:79:6d:60:54:cd:a6:
e6:11:56:61:2c:12:a5:85:c1:ce:44:f6:63:4f:6e:
41:cf:26:84:f0:e8:6e:13:ec:06:a3:2a:fb:e6:75:
a2:5d:d0:c6:93:6e:d5:e4:e8:91:86:ed:8c:1e:bc:
fe:2b:04:73:7c:96:05:30:9f:42:61:d0:80:83:f3:
da:d7:c5:eb:70:53:7d:c3:7d:c9:b3:9c:d7:5c:d4:
a8:42:b4:a0:85:a2:52:33:0f:36:b8:9e:7f:7b:83:
c5:4a:50:a7:32:fb:7e:8e:0f:9b:62:64:96:9e:82:
a5:f9:57:3a:87:d2:a8:23:24:cc:13:dd:2b:32:57:
0b:3c:e3:de:95:d1:3c:85:30:bb:a6:24:fb:78:d1:
44:66:94:17:55:dd:5b:23:67:ce:b1:72:5d:cc:bd:
82:bb:28:19:e0:54:70:9b:2e:97:2d:3e:ff:3f:60:
77:8c:94:7a:39:8e:7a:b9:63:39:a7:ec:75:71:69:
ed:17:c5:23:ff:81:dc:f6:c5:b9:ce:9b:2b:3e:fd:
d2:a4:4e:46:a7:d3:e6:ab:13:c2:8f:f0:34:79:6a:
b0:23:ba:71:05:eb:20:48:fb:66:14:3c:45:e1:aa:
8e:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:A5:EB:D9:7C:8C:43:08:60:75:1B:07:E5:04:17:BA:00:B2:63:CB
X509v3 Authority Key Identifier:
keyid:40:AA:71:15:7E:20:D9:80:36:BB:D6:93:B8:EC:BB:2B:99:F0:F0:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:cb:1a:b3:de:f4:5b:a7:6d:3f:43:52:fe:09:f5:5b:05:fa:
ab:ce:5c:47:f2:cf:37:51:a0:17:4a:6f:f1:57:c5:6e:f2:5c:
42:e8:8c:fe:2e:8f:53:16:17:a0:63:65:47:02:41:b1:fe:30:
a2:04:9b:e9:8b:fb:cd:98:da:e9:50:7e:e4:96:4a:69:ab:c5:
d6:9e:0a:a6:01:4f:67:91:36:80:40:ec:d5:37:f6:20:5a:4a:
33:d0:05:6a:93:37:11:50:38:fd:0d:9b:80:9d:b8:d4:17:f4:
ca:75:0c:ff:2f:fd:5a:53:81:53:e2:44:2d:1d:c1:2b:70:dc:
ab:a4:ee:aa:3b:16:26:1d:cf:e8:8e:28:0c:11:2b:b1:40:e9:
34:b6:f6:ef:8d:36:3d:9a:af:83:c4:7f:7e:96:07:8e:0d:42:
8a:94:66:f7:85:70:b8:9d:ae:a9:c8:fc:ef:e0:76:11:45:a5:
8d:fe:d2:bb:42:a7:c3:42:50:08:a5:4d:48:bb:d7:09:bb:25:
77:32:6f:e1:41:57:94:b6:f2:98:d8:2e:a0:26:eb:88:4d:7c:
fc:1e:1d:0b:17:2e:ad:0e:26:83:20:1b:4e:bd:93:e2:aa:2c:
fe:49:31:6f:a8:5f:56:b3:5b:61:88:45:0a:ac:89:60:a5:96:
33:33:42:04
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyvEXwAL9f1Qb2N6kOVNlWPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwYWE3MTE1N2UyMGQ5ODAzNmJiZDY5M2I4ZWNiYjJiOTlm
MGYwM2MwHhcNMjYwMzAyMTUwMTI0WhcNMjYwMzAzMTUwMTI0WjAzMTEwLwYDVQQD
EyhlOGE1ZWJkOTdjOGM0MzA4NjA3NTFiMDdlNTA0MTdiYTAwYjI2M2NiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlKb/fxfwsaTKlediGcDPCgjYwkok
Sd95bWBUzabmEVZhLBKlhcHORPZjT25BzyaE8OhuE+wGoyr75nWiXdDGk27V5OiR
hu2MHrz+KwRzfJYFMJ9CYdCAg/Pa18XrcFN9w33Js5zXXNSoQrSghaJSMw82uJ5/
e4PFSlCnMvt+jg+bYmSWnoKl+Vc6h9KoIyTME90rMlcLPOPeldE8hTC7piT7eNFE
ZpQXVd1bI2fOsXJdzL2CuygZ4FRwmy6XLT7/P2B3jJR6OY56uWM5p+x1cWntF8Uj
/4Hc9sW5zpsrPv3SpE5Gp9PmqxPCj/A0eWqwI7pxBesgSPtmFDxF4aqOoQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOil69l8jEMIYHUbB+UEF7oAsmPLMB8GA1UdIwQY
MBaAFECqcRV+INmANrvWk7jsuyuZ8PA8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUtweEZYNGcyWUEydTlhVHVPeTdLNW53OER3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni8yZTJjOGUtNGMyYi00OGU5LWFmZDUt
MjM1YWJhMTlkOWY5LzEvUUtweEZYNGcyWUEydTlhVHVPeTdLNW53OER3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni8yZTJjOGUtNGMyYi00OGU5LWFmZDUtMjM1YWJhMTlkOWY5
LzEvUUtweEZYNGcyWUEydTlhVHVPeTdLNW53OER3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYcsas970
W6dtP0NS/gn1WwX6q85cR/LPN1GgF0pv8VfFbvJcQuiM/i6PUxYXoGNlRwJBsf4w
ogSb6Yv7zZja6VB+5JZKaavF1p4KpgFPZ5E2gEDs1Tf2IFpKM9AFapM3EVA4/Q2b
gJ241Bf0ynUM/y/9WlOBU+JELR3BK3Dcq6TuqjsWJh3P6I4oDBErsUDpNLb27402
PZqvg8R/fpYHjg1CipRm94VwuJ2uqcj87+B2EUWljf7Su0Knw0JQCKVNSLvXCbsl
dzJv4UFXlLbymNguoCbriE18/B4dCxcurQ4mgyAbTr2T4qos/kkxb6hfVrNbYYhF
CqyJYKWWMzNCBA==
-----END CERTIFICATE-----
Generated at Tue Mar 3 00:40:34 2026 by rpki-client