Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.mft
File: QD8Iu6_6QWGEMgOop1erbpVGsM4.mft (raw, json)
Hash identifier: Ko1uM5KJ1vy1rdPfsQoDJh68t2QjinzDfJqup06dtFw=
Subject key identifier: CA:80:3D:B8:D5:04:20:C8:27:72:3E:B6:4E:D6:2C:9D:EF:A9:CC:31
Authority key identifier: 40:3F:08:BB:AF:FA:41:61:84:32:03:A8:A7:57:AB:6E:95:46:B0:CE
Certificate issuer: /CN=403f08bbaffa4161843203a8a757ab6e9546b0ce
Certificate serial: 019D99D07914A2E65B5ADB224CCCF01FF1C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QD8Iu6_6QWGEMgOop1erbpVGsM4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.mft
Manifest number: 07D6
Signing time: Fri 17 Apr 2026 05:01:09 +0000
Manifest this update: Fri 17 Apr 2026 05:01:09 +0000
Manifest next update: Sat 18 Apr 2026 05:01:09 +0000
Files and hashes: 1: 90swIJHrJ2sBN5-x6r2JwT1pPtM.roa (hash: qSNS122hM6E8JtNAlwnMJTYeLimXbz4RNM0wfB80wLI=)
2: QD8Iu6_6QWGEMgOop1erbpVGsM4.crl (hash: 1TMJtKw84PcbLSvJUX7TyLFkUJYdFLT3hlznn0MxfBw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.mft
rsync://rpki.ripe.net/repository/DEFAULT/QD8Iu6_6QWGEMgOop1erbpVGsM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:79:14:a2:e6:5b:5a:db:22:4c:cc:f0:1f:f1:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=403f08bbaffa4161843203a8a757ab6e9546b0ce
Validity
Not Before: Apr 17 05:01:09 2026 GMT
Not After : Apr 18 05:01:09 2026 GMT
Subject: CN=ca803db8d50420c827723eb64ed62c9defa9cc31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:7c:44:27:29:63:d2:79:b2:88:77:65:47:10:
7d:d5:eb:58:ec:dc:28:df:e5:bb:19:9b:0c:6c:70:
82:eb:97:72:f3:3d:e5:49:aa:b7:8f:81:9e:88:cd:
a7:0d:fb:e1:03:dd:48:b4:41:79:b0:61:55:9c:f7:
9c:95:33:8e:05:a7:30:61:f6:72:80:c6:ff:0e:d5:
82:ba:f7:f5:d7:41:87:bf:b6:9a:cd:9f:7b:16:41:
c3:91:4f:1c:fc:6c:b1:af:c9:c7:bb:d5:6b:b9:db:
97:56:73:a6:39:7b:62:af:48:e1:ef:8f:65:ba:50:
c8:9d:9d:dc:71:b0:d7:93:2d:d7:4e:21:cd:df:e5:
df:f0:ce:b8:2f:52:07:30:82:03:bd:de:b2:df:79:
22:49:dc:5e:d0:7a:ca:69:f1:8a:2c:dd:39:41:59:
79:d1:2d:a3:63:65:4c:e0:ec:e1:3a:26:46:fa:76:
02:4e:3a:85:d0:1a:8e:d0:04:84:f8:ef:62:5f:22:
1b:48:c3:c3:21:0b:5e:ae:4a:83:af:27:69:a5:bc:
20:23:b0:8b:a6:27:36:02:0d:4e:59:a4:50:80:cf:
5f:b3:30:30:0f:b4:79:40:bf:e7:b0:a6:29:89:ce:
97:b3:a4:e5:fe:a1:3b:2c:8b:4e:b4:07:c4:2a:be:
14:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:80:3D:B8:D5:04:20:C8:27:72:3E:B6:4E:D6:2C:9D:EF:A9:CC:31
X509v3 Authority Key Identifier:
keyid:40:3F:08:BB:AF:FA:41:61:84:32:03:A8:A7:57:AB:6E:95:46:B0:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QD8Iu6_6QWGEMgOop1erbpVGsM4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:f2:19:39:42:43:5f:6e:4a:f6:51:c3:d9:0c:67:04:17:98:
5e:42:a8:09:c2:b6:5c:c3:c7:5d:ce:71:d3:de:e5:c8:07:ad:
c9:76:27:97:19:f3:a1:8d:9f:62:b4:50:a4:12:68:15:f3:63:
c9:a4:2e:5a:bd:0c:42:f1:61:e1:44:96:5e:28:e5:98:91:d8:
67:d9:ec:63:e0:f2:67:af:f1:18:c6:ed:8a:31:74:31:fb:76:
3d:7a:bb:ff:3e:3b:b3:90:e7:65:4c:a6:c5:27:92:0d:b0:86:
eb:79:77:70:61:62:4b:53:0a:e8:d6:e7:66:c3:5e:2a:ff:ba:
fe:b2:10:4d:75:9d:0f:01:36:00:c5:c1:fd:c0:89:18:90:24:
56:ac:47:47:40:72:59:23:3c:3f:3c:7d:b7:b0:75:97:e1:a1:
4c:bb:16:6b:87:a0:3f:e9:fe:c2:e3:35:23:ec:c2:61:19:28:
c6:70:4e:d9:7a:92:6b:34:1b:6c:d4:ce:75:6c:fd:76:a0:ae:
de:0a:8e:7d:51:5a:81:6a:d8:b0:49:3f:5c:d2:ea:3d:7c:d9:
cb:c7:14:b4:2f:43:4d:e6:3f:79:28:0b:9d:be:f2:b7:c9:43:
82:df:c7:63:df:bf:f6:fb:f4:e0:77:a0:22:8d:09:3c:7c:22:
74:5b:c1:a5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2Z0HkUouZbWtsiTMzwH/HGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwM2YwOGJiYWZmYTQxNjE4NDMyMDNhOGE3NTdhYjZlOTU0
NmIwY2UwHhcNMjYwNDE3MDUwMTA5WhcNMjYwNDE4MDUwMTA5WjAzMTEwLwYDVQQD
EyhjYTgwM2RiOGQ1MDQyMGM4Mjc3MjNlYjY0ZWQ2MmM5ZGVmYTljYzMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0HxEJylj0nmyiHdlRxB91etY7Nwo
3+W7GZsMbHCC65dy8z3lSaq3j4GeiM2nDfvhA91ItEF5sGFVnPeclTOOBacwYfZy
gMb/DtWCuvf110GHv7aazZ97FkHDkU8c/Gyxr8nHu9VruduXVnOmOXtir0jh749l
ulDInZ3ccbDXky3XTiHN3+Xf8M64L1IHMIIDvd6y33kiSdxe0HrKafGKLN05QVl5
0S2jY2VM4OzhOiZG+nYCTjqF0BqO0ASE+O9iXyIbSMPDIQterkqDrydppbwgI7CL
pic2Ag1OWaRQgM9fszAwD7R5QL/nsKYpic6Xs6Tl/qE7LItOtAfEKr4UPwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMqAPbjVBCDIJ3I+tk7WLJ3vqcwxMB8GA1UdIwQY
MBaAFEA/CLuv+kFhhDIDqKdXq26VRrDOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUQ4SXU2XzZRV0dFTWdPb3AxZXJicFZHc000LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi9kMDY4MzItZGJkZi00Zjg3LTk5Yjgt
MzhkOGE3OGE0ODYyLzEvUUQ4SXU2XzZRV0dFTWdPb3AxZXJicFZHc000Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi9kMDY4MzItZGJkZi00Zjg3LTk5YjgtMzhkOGE3OGE0ODYy
LzEvUUQ4SXU2XzZRV0dFTWdPb3AxZXJicFZHc000LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW/IZOUJD
X25K9lHD2QxnBBeYXkKoCcK2XMPHXc5x097lyAetyXYnlxnzoY2fYrRQpBJoFfNj
yaQuWr0MQvFh4USWXijlmJHYZ9nsY+DyZ6/xGMbtijF0Mft2PXq7/z47s5DnZUym
xSeSDbCG63l3cGFiS1MK6NbnZsNeKv+6/rIQTXWdDwE2AMXB/cCJGJAkVqxHR0By
WSM8Pzx9t7B1l+GhTLsWa4egP+n+wuM1I+zCYRkoxnBO2XqSazQbbNTOdWz9dqCu
3gqOfVFagWrYsEk/XNLqPXzZy8cUtC9DTeY/eSgLnb7yt8lDgt/HY9+/9vv04Heg
Io0JPHwidFvBpQ==
-----END CERTIFICATE-----
Generated at Fri Apr 17 07:58:09 2026 by rpki-client