Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.mft
File: QD8Iu6_6QWGEMgOop1erbpVGsM4.mft (raw, json)
Hash identifier: SeioUBiVelGGsPs5VGvuBxaTM8lnZpwt71BZNguS53s=
Subject key identifier: 7D:17:65:FA:FD:C5:63:7E:3C:63:CA:B1:65:62:5F:56:A2:30:9D:2B
Authority key identifier: 40:3F:08:BB:AF:FA:41:61:84:32:03:A8:A7:57:AB:6E:95:46:B0:CE
Certificate issuer: /CN=403f08bbaffa4161843203a8a757ab6e9546b0ce
Certificate serial: 019D97E21CEA350878BFD9B1A77BD61C363D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QD8Iu6_6QWGEMgOop1erbpVGsM4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.mft
Manifest number: 07D5
Signing time: Thu 16 Apr 2026 20:01:11 +0000
Manifest this update: Thu 16 Apr 2026 20:01:11 +0000
Manifest next update: Fri 17 Apr 2026 20:01:11 +0000
Files and hashes: 1: 90swIJHrJ2sBN5-x6r2JwT1pPtM.roa (hash: qSNS122hM6E8JtNAlwnMJTYeLimXbz4RNM0wfB80wLI=)
2: QD8Iu6_6QWGEMgOop1erbpVGsM4.crl (hash: Tvc8Q9hLcNPnKmtlS9IjYVeT0LPK68C/YbJiQgVR+lE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.mft
rsync://rpki.ripe.net/repository/DEFAULT/QD8Iu6_6QWGEMgOop1erbpVGsM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 20:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:97:e2:1c:ea:35:08:78:bf:d9:b1:a7:7b:d6:1c:36:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=403f08bbaffa4161843203a8a757ab6e9546b0ce
Validity
Not Before: Apr 16 20:01:11 2026 GMT
Not After : Apr 17 20:01:11 2026 GMT
Subject: CN=7d1765fafdc5637e3c63cab165625f56a2309d2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:92:5e:84:76:80:70:a2:a8:2a:83:3a:cc:32:
78:1c:3c:16:af:26:a3:0d:5c:2e:c1:d6:be:c5:d0:
2f:08:18:43:31:84:62:c2:a5:94:a4:b9:ca:c3:91:
6d:95:57:38:bf:0a:56:9b:ff:68:4f:17:ee:8d:4c:
93:1e:8e:9e:fe:ff:fc:26:6d:41:21:bd:91:fe:29:
21:5b:94:f0:06:f5:74:f8:fb:f6:c7:13:b1:d4:09:
c5:42:35:f6:d2:41:e4:9c:a7:25:96:07:a8:d2:23:
34:9a:09:b0:c0:04:be:63:49:9a:55:9a:fc:31:6d:
e6:47:60:37:88:ac:6d:50:96:da:1c:df:39:c1:8e:
e9:8d:36:e9:48:3e:d3:94:b9:1d:56:4b:86:13:b5:
08:53:ba:5f:65:5e:05:01:81:b9:3f:9e:4f:f0:a6:
ab:58:81:0a:1a:3f:a6:26:5b:23:7a:25:14:cf:70:
f6:d0:6f:97:c2:48:6a:29:1b:02:7f:4f:d5:05:e7:
4a:68:b9:81:cd:cf:36:5d:aa:c4:3a:1e:b8:2b:71:
b3:ec:04:a7:5c:32:41:8c:ba:4c:d7:35:9e:d9:5c:
c4:f3:c3:f9:b6:90:a4:a1:1e:b7:9d:a8:0f:f4:dd:
4d:bc:61:66:fd:56:47:f2:29:fc:2e:ae:46:d6:a5:
f4:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:17:65:FA:FD:C5:63:7E:3C:63:CA:B1:65:62:5F:56:A2:30:9D:2B
X509v3 Authority Key Identifier:
keyid:40:3F:08:BB:AF:FA:41:61:84:32:03:A8:A7:57:AB:6E:95:46:B0:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QD8Iu6_6QWGEMgOop1erbpVGsM4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:30:00:99:b9:61:de:eb:16:fb:3a:a9:1a:15:6e:b3:3d:d2:
46:41:6b:26:80:c4:94:db:94:51:5c:0a:4e:b8:8c:69:4e:9a:
04:74:43:68:84:b8:f0:1c:e5:ec:db:11:bf:21:2e:c0:70:da:
90:c2:57:2c:4e:9d:6c:e5:14:d9:de:c3:ab:1c:a2:56:d7:32:
4e:08:98:65:c5:31:a2:24:08:06:2b:52:66:7d:a5:40:4c:a4:
16:5a:6c:88:14:90:82:ef:2a:36:98:c7:7f:20:68:be:5c:e2:
99:6f:1e:5a:98:d2:fc:8c:eb:71:2c:96:2c:81:f6:3e:ae:54:
46:52:d9:e1:e5:31:be:56:55:c8:bb:5e:b4:d9:7d:00:24:e6:
b6:4b:d3:f5:28:2e:87:c4:a8:00:80:e0:3b:21:26:1f:21:ee:
af:25:c3:02:cb:09:37:24:99:50:f1:c6:b7:0f:f8:ed:60:e2:
47:06:91:19:24:d4:f3:5d:d4:f8:2b:dd:a6:18:e9:b7:1f:98:
5b:3d:bd:3c:df:0e:12:b8:b9:37:48:83:7a:e8:21:2d:c2:f3:
b2:9b:a8:9e:d6:93:b8:b3:c4:e3:97:29:c3:4b:5b:76:e5:55:
ce:1c:70:ae:37:7a:f0:46:00:ed:5b:95:50:f3:ab:03:ce:47:
b3:68:63:e5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2X4hzqNQh4v9mxp3vWHDY9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwM2YwOGJiYWZmYTQxNjE4NDMyMDNhOGE3NTdhYjZlOTU0
NmIwY2UwHhcNMjYwNDE2MjAwMTExWhcNMjYwNDE3MjAwMTExWjAzMTEwLwYDVQQD
Eyg3ZDE3NjVmYWZkYzU2MzdlM2M2M2NhYjE2NTYyNWY1NmEyMzA5ZDJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9pJehHaAcKKoKoM6zDJ4HDwWryaj
DVwuwda+xdAvCBhDMYRiwqWUpLnKw5FtlVc4vwpWm/9oTxfujUyTHo6e/v/8Jm1B
Ib2R/ikhW5TwBvV0+Pv2xxOx1AnFQjX20kHknKcllgeo0iM0mgmwwAS+Y0maVZr8
MW3mR2A3iKxtUJbaHN85wY7pjTbpSD7TlLkdVkuGE7UIU7pfZV4FAYG5P55P8Kar
WIEKGj+mJlsjeiUUz3D20G+XwkhqKRsCf0/VBedKaLmBzc82XarEOh64K3Gz7ASn
XDJBjLpM1zWe2VzE88P5tpCkoR63nagP9N1NvGFm/VZH8in8Lq5G1qX0bQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH0XZfr9xWN+PGPKsWViX1aiMJ0rMB8GA1UdIwQY
MBaAFEA/CLuv+kFhhDIDqKdXq26VRrDOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUQ4SXU2XzZRV0dFTWdPb3AxZXJicFZHc000LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi9kMDY4MzItZGJkZi00Zjg3LTk5Yjgt
MzhkOGE3OGE0ODYyLzEvUUQ4SXU2XzZRV0dFTWdPb3AxZXJicFZHc000Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi9kMDY4MzItZGJkZi00Zjg3LTk5YjgtMzhkOGE3OGE0ODYy
LzEvUUQ4SXU2XzZRV0dFTWdPb3AxZXJicFZHc000LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQzAAmblh
3usW+zqpGhVusz3SRkFrJoDElNuUUVwKTriMaU6aBHRDaIS48Bzl7NsRvyEuwHDa
kMJXLE6dbOUU2d7DqxyiVtcyTgiYZcUxoiQIBitSZn2lQEykFlpsiBSQgu8qNpjH
fyBovlzimW8eWpjS/IzrcSyWLIH2Pq5URlLZ4eUxvlZVyLtetNl9ACTmtkvT9Sgu
h8SoAIDgOyEmHyHuryXDAssJNySZUPHGtw/47WDiRwaRGSTU813U+Cvdphjptx+Y
Wz29PN8OEri5N0iDeughLcLzspuontaTuLPE45cpw0tbduVVzhxwrjd68EYA7VuV
UPOrA85Hs2hj5Q==
-----END CERTIFICATE-----
Generated at Fri Apr 17 06:46:42 2026 by rpki-client