Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.mft
File: QA4H15n7NVyVICXz0nsA6bTuNO0.mft (raw, json)
Hash identifier: NgjA5qjxQUouBXLL/lyWFY7KsqP0jLbwF5SLdvx4JVI=
Subject key identifier: 27:8E:89:C6:93:FC:4B:5B:57:00:38:6D:4D:B9:1B:0D:DB:D0:06:2F
Authority key identifier: 40:0E:07:D7:99:FB:35:5C:95:20:25:F3:D2:7B:00:E9:B4:EE:34:ED
Certificate issuer: /CN=400e07d799fb355c952025f3d27b00e9b4ee34ed
Certificate serial: 019CAA58882F093CFD9F89F36048C827EB83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QA4H15n7NVyVICXz0nsA6bTuNO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.mft
Manifest number: 0AAF
Signing time: Sun 01 Mar 2026 17:00:54 +0000
Manifest this update: Sun 01 Mar 2026 17:00:54 +0000
Manifest next update: Mon 02 Mar 2026 17:00:54 +0000
Files and hashes: 1: QA4H15n7NVyVICXz0nsA6bTuNO0.crl (hash: Pgi5X9gDpPWNPFY5uFBD2Z9cuHrLrgn741ygV5JIMz8=)
2: YFsmm4apHvY6ZL8EsMyBPmZGQ-E.roa (hash: QK8FK49xDAR7s4a20/0YVNHlxDPHbZSZvfiRmsUbSrc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.mft
rsync://rpki.ripe.net/repository/DEFAULT/QA4H15n7NVyVICXz0nsA6bTuNO0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:58:88:2f:09:3c:fd:9f:89:f3:60:48:c8:27:eb:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=400e07d799fb355c952025f3d27b00e9b4ee34ed
Validity
Not Before: Mar 1 17:00:54 2026 GMT
Not After : Mar 2 17:00:54 2026 GMT
Subject: CN=278e89c693fc4b5b5700386d4db91b0ddbd0062f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:db:2a:cb:a6:4c:a1:c2:75:6f:50:66:c9:8e:
5c:12:81:e3:ec:83:39:4e:01:8c:2d:39:63:64:3a:
19:4e:bd:c6:f8:33:7b:79:c7:2d:01:59:1f:82:7d:
47:e1:24:10:9b:57:fa:60:5d:c0:e8:ea:f2:99:dd:
eb:e1:eb:12:89:03:95:90:96:a5:63:83:76:27:e8:
84:86:36:20:39:e2:53:1a:41:57:d9:bc:a1:ed:5c:
54:24:2f:4a:80:05:6e:a3:9d:07:91:94:97:92:8d:
9e:58:e5:6f:60:88:a1:9d:3c:63:71:68:7a:a9:64:
33:44:37:eb:35:67:ee:f4:13:bd:f6:70:d6:af:20:
5a:55:f6:ff:96:62:b9:93:9d:ca:75:e0:38:99:c5:
c6:63:3a:f7:9a:64:80:28:30:80:71:12:3e:9a:40:
53:b7:07:51:e5:62:c6:d5:92:1e:3a:7f:3e:0e:56:
8e:cf:90:35:1e:e0:21:ad:b7:c3:1e:ed:78:64:9e:
a4:58:e5:9e:9e:e4:e1:96:43:ef:74:39:02:05:00:
b6:96:15:a9:b4:90:ed:b3:11:41:16:63:28:bd:dd:
be:5c:53:70:2a:bc:6f:28:b9:8f:3e:1e:3b:51:56:
6c:f8:9f:10:04:cd:a4:08:b1:ee:eb:2a:42:e6:7e:
36:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:8E:89:C6:93:FC:4B:5B:57:00:38:6D:4D:B9:1B:0D:DB:D0:06:2F
X509v3 Authority Key Identifier:
keyid:40:0E:07:D7:99:FB:35:5C:95:20:25:F3:D2:7B:00:E9:B4:EE:34:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QA4H15n7NVyVICXz0nsA6bTuNO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:94:8f:88:48:e9:a7:ac:ec:47:9d:7c:00:84:1c:c9:13:41:
d3:f3:fd:4b:5d:63:5e:0e:f2:84:6f:f4:4d:98:95:8a:60:9d:
ef:b0:3d:2d:ed:fe:e0:a4:d3:ca:5b:38:45:6d:c5:67:93:b0:
11:cf:4e:e5:4e:35:cd:1e:51:d5:35:90:da:dc:fd:97:49:0e:
8c:88:ed:f6:29:38:f5:08:13:d4:0d:e8:4c:df:25:fc:49:e1:
cc:a1:13:3f:60:64:97:0c:3c:99:00:7b:2c:88:3d:94:d4:fc:
f8:b6:95:3c:2e:19:a2:81:a2:89:4e:83:e7:a2:c3:f1:32:50:
5e:6b:da:6f:49:83:ec:c4:13:42:9f:97:5f:12:46:92:b3:9a:
38:7f:e3:63:f8:ac:be:2e:f4:79:74:95:6a:88:c5:47:fd:6f:
c2:b1:60:95:67:f4:ba:3d:04:7c:3d:a3:21:31:00:89:a3:fb:
18:15:3a:01:82:83:d8:17:39:68:c3:52:c1:c7:42:f1:83:07:
d0:88:82:6f:58:fa:1b:37:81:3f:d0:0d:e0:ed:66:8b:9c:3b:
dd:cd:6b:74:e7:6a:5a:d8:d4:7c:2f:e5:60:92:d7:32:94:fa:
1c:87:03:05:eb:ac:7b:eb:d0:fb:f3:a3:81:e5:05:47:63:98:
e4:6a:4b:8f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyqWIgvCTz9n4nzYEjIJ+uDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwMGUwN2Q3OTlmYjM1NWM5NTIwMjVmM2QyN2IwMGU5YjRl
ZTM0ZWQwHhcNMjYwMzAxMTcwMDU0WhcNMjYwMzAyMTcwMDU0WjAzMTEwLwYDVQQD
EygyNzhlODljNjkzZmM0YjViNTcwMDM4NmQ0ZGI5MWIwZGRiZDAwNjJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtdsqy6ZMocJ1b1BmyY5cEoHj7IM5
TgGMLTljZDoZTr3G+DN7ecctAVkfgn1H4SQQm1f6YF3A6Orymd3r4esSiQOVkJal
Y4N2J+iEhjYgOeJTGkFX2byh7VxUJC9KgAVuo50HkZSXko2eWOVvYIihnTxjcWh6
qWQzRDfrNWfu9BO99nDWryBaVfb/lmK5k53KdeA4mcXGYzr3mmSAKDCAcRI+mkBT
twdR5WLG1ZIeOn8+DlaOz5A1HuAhrbfDHu14ZJ6kWOWenuThlkPvdDkCBQC2lhWp
tJDtsxFBFmMovd2+XFNwKrxvKLmPPh47UVZs+J8QBM2kCLHu6ypC5n421QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCeOicaT/EtbVwA4bU25Gw3b0AYvMB8GA1UdIwQY
MBaAFEAOB9eZ+zVclSAl89J7AOm07jTtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUE0SDE1bjdOVnlWSUNYejBuc0E2YlR1Tk8wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC8yZjM2YjYtZDcwMS00MzM1LWFmMzAt
NDhmZTYzM2IxYjNmLzEvUUE0SDE1bjdOVnlWSUNYejBuc0E2YlR1Tk8wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNC8yZjM2YjYtZDcwMS00MzM1LWFmMzAtNDhmZTYzM2IxYjNm
LzEvUUE0SDE1bjdOVnlWSUNYejBuc0E2YlR1Tk8wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXJSPiEjp
p6zsR518AIQcyRNB0/P9S11jXg7yhG/0TZiVimCd77A9Le3+4KTTyls4RW3FZ5Ow
Ec9O5U41zR5R1TWQ2tz9l0kOjIjt9ik49QgT1A3oTN8l/EnhzKETP2Bklww8mQB7
LIg9lNT8+LaVPC4ZooGiiU6D56LD8TJQXmvab0mD7MQTQp+XXxJGkrOaOH/jY/is
vi70eXSVaojFR/1vwrFglWf0uj0EfD2jITEAiaP7GBU6AYKD2Bc5aMNSwcdC8YMH
0IiCb1j6GzeBP9AN4O1mi5w73c1rdOdqWtjUfC/lYJLXMpT6HIcDBeuse+vQ+/Oj
geUFR2OY5GpLjw==
-----END CERTIFICATE-----
Generated at Mon Mar 2 00:53:00 2026 by rpki-client