Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft
File: QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft (raw, json)
Hash identifier: mB24wTwS2w+lYwFxR0qYIek8/Ns1NSO6vcv7qgYUZRU=
Subject key identifier: 8D:7A:21:FB:79:85:76:D0:A2:94:82:CC:0E:2A:7D:F3:FF:85:BB:B6
Authority key identifier: 40:AA:71:15:7E:20:D9:80:36:BB:D6:93:B8:EC:BB:2B:99:F0:F0:3C
Certificate issuer: /CN=40aa71157e20d98036bbd693b8ecbb2b99f0f03c
Certificate serial: 019D98BDC9DD4B4A9C78350D8DE09D4BCBD8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft
Manifest number: 18BF
Signing time: Fri 17 Apr 2026 00:01:07 +0000
Manifest this update: Fri 17 Apr 2026 00:01:07 +0000
Manifest next update: Sat 18 Apr 2026 00:01:07 +0000
Files and hashes: 1: QKpxFX4g2YA2u9aTuOy7K5nw8Dw.crl (hash: mgv6dEqi4Fl53ZmHywcbaD1nQW98KCRRDvlQbMwG1BA=)
2: hVrll11zraZlwu0aoJ27lTvgIvM.roa (hash: p+52m9VvNKJJpUqhG5dFcaxf3Gx9Tk084ipIrkRQ47E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft
rsync://rpki.ripe.net/repository/DEFAULT/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:bd:c9:dd:4b:4a:9c:78:35:0d:8d:e0:9d:4b:cb:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40aa71157e20d98036bbd693b8ecbb2b99f0f03c
Validity
Not Before: Apr 17 00:01:07 2026 GMT
Not After : Apr 18 00:01:07 2026 GMT
Subject: CN=8d7a21fb798576d0a29482cc0e2a7df3ff85bbb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:00:37:d9:2b:d5:cb:df:12:a4:9e:55:f0:73:
7d:0d:04:12:7e:0a:81:a0:84:62:77:a6:2f:b9:cb:
f0:a4:fa:97:28:5a:f5:80:b7:53:8e:8d:e4:40:16:
86:2f:04:07:95:c4:45:9e:75:79:c6:cd:6f:ac:d8:
6d:2e:27:f4:1c:4b:06:28:60:8e:3a:8f:aa:4d:3d:
cf:fe:dc:73:1e:d7:c9:8b:4f:92:f6:a8:aa:36:fa:
56:de:5e:dd:c3:ac:3e:de:cd:b5:9a:fa:6e:e5:07:
1a:74:05:e5:1c:4e:e4:d4:de:89:07:61:a6:b2:9c:
eb:a6:dc:be:0e:cf:bc:da:6b:b0:d3:86:f3:71:91:
6a:f3:e7:45:61:d2:91:10:0f:60:56:dd:45:1c:56:
78:00:fe:56:8a:52:dd:cf:7f:16:d4:08:d5:31:de:
bd:fa:1c:17:16:cb:15:ea:52:27:81:08:b4:b1:b0:
c2:7c:2f:e7:dd:0b:01:b8:5d:91:fa:f0:54:d4:46:
17:2b:bd:66:6a:60:15:0d:a3:ab:be:7c:2d:19:f3:
ac:d3:5c:c2:20:da:20:c2:88:c2:86:19:70:d2:63:
42:c3:93:ec:6f:2d:b9:30:5d:31:c1:8c:79:0c:80:
be:b2:08:36:a8:9d:bc:fe:2d:fc:13:4e:f4:ba:42:
7c:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:7A:21:FB:79:85:76:D0:A2:94:82:CC:0E:2A:7D:F3:FF:85:BB:B6
X509v3 Authority Key Identifier:
keyid:40:AA:71:15:7E:20:D9:80:36:BB:D6:93:B8:EC:BB:2B:99:F0:F0:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:09:96:a8:be:77:ac:b0:cb:12:a1:74:fd:30:86:e9:7d:05:
90:b5:99:c7:ab:f0:f2:8f:10:c5:54:19:4e:24:b5:d5:c4:a0:
fd:1b:59:3c:90:c6:35:cd:c2:fe:11:f1:b1:2f:62:cd:12:75:
8a:de:b6:a6:e6:9b:02:60:2e:a9:ce:44:74:47:57:0d:01:2b:
21:9f:b0:24:fe:01:2f:77:49:3f:3c:6d:3d:ae:2e:6a:e3:10:
05:15:e5:dd:5e:59:56:64:77:c2:71:b8:be:0b:7c:34:27:f2:
dc:77:e1:1c:e2:a2:e0:54:69:87:39:fe:55:ee:2c:07:42:fa:
b1:ff:ea:3e:3e:5b:0d:32:58:e1:32:b2:a5:17:47:c0:bd:71:
85:9c:12:9d:4b:99:e9:27:0f:f4:45:cf:58:cb:f5:c9:02:dd:
c1:3f:58:53:94:9c:51:9a:78:d3:12:0e:d8:fa:e3:d3:2f:14:
5e:75:d0:b0:8f:c1:4c:eb:e1:31:8a:75:a6:1e:19:1d:5c:71:
f8:eb:57:93:86:fe:23:96:30:b1:74:fa:14:a5:a6:3c:02:22:
76:27:6b:de:81:50:77:90:f5:d5:fc:85:c9:07:90:d5:b4:a1:
2a:72:85:53:32:fc:ec:4c:4c:77:73:79:42:47:fd:ab:7a:a7:
3c:d4:db:ba
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2YvcndS0qceDUNjeCdS8vYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwYWE3MTE1N2UyMGQ5ODAzNmJiZDY5M2I4ZWNiYjJiOTlm
MGYwM2MwHhcNMjYwNDE3MDAwMTA3WhcNMjYwNDE4MDAwMTA3WjAzMTEwLwYDVQQD
Eyg4ZDdhMjFmYjc5ODU3NmQwYTI5NDgyY2MwZTJhN2RmM2ZmODViYmI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0QA32SvVy98SpJ5V8HN9DQQSfgqB
oIRid6YvucvwpPqXKFr1gLdTjo3kQBaGLwQHlcRFnnV5xs1vrNhtLif0HEsGKGCO
Oo+qTT3P/txzHtfJi0+S9qiqNvpW3l7dw6w+3s21mvpu5QcadAXlHE7k1N6JB2Gm
spzrpty+Ds+82muw04bzcZFq8+dFYdKREA9gVt1FHFZ4AP5WilLdz38W1AjVMd69
+hwXFssV6lIngQi0sbDCfC/n3QsBuF2R+vBU1EYXK71mamAVDaOrvnwtGfOs01zC
INogwojChhlw0mNCw5Psby25MF0xwYx5DIC+sgg2qJ28/i38E070ukJ8SQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI16Ift5hXbQopSCzA4qffP/hbu2MB8GA1UdIwQY
MBaAFECqcRV+INmANrvWk7jsuyuZ8PA8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUtweEZYNGcyWUEydTlhVHVPeTdLNW53OER3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni8yZTJjOGUtNGMyYi00OGU5LWFmZDUt
MjM1YWJhMTlkOWY5LzEvUUtweEZYNGcyWUEydTlhVHVPeTdLNW53OER3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni8yZTJjOGUtNGMyYi00OGU5LWFmZDUtMjM1YWJhMTlkOWY5
LzEvUUtweEZYNGcyWUEydTlhVHVPeTdLNW53OER3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXwmWqL53
rLDLEqF0/TCG6X0FkLWZx6vw8o8QxVQZTiS11cSg/RtZPJDGNc3C/hHxsS9izRJ1
it62puabAmAuqc5EdEdXDQErIZ+wJP4BL3dJPzxtPa4uauMQBRXl3V5ZVmR3wnG4
vgt8NCfy3HfhHOKi4FRphzn+Ve4sB0L6sf/qPj5bDTJY4TKypRdHwL1xhZwSnUuZ
6ScP9EXPWMv1yQLdwT9YU5ScUZp40xIO2Prj0y8UXnXQsI/BTOvhMYp1ph4ZHVxx
+OtXk4b+I5YwsXT6FKWmPAIididr3oFQd5D11fyFyQeQ1bShKnKFUzL87ExMd3N5
Qkf9q3qnPNTbug==
-----END CERTIFICATE-----
Generated at Fri Apr 17 07:59:20 2026 by rpki-client