Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
File: QLnKyTUxHngDS0BzgwqBo897Rdk.mft (raw, json)
Hash identifier: nZV4Uqk0HhcUQh14jecWsmVae0cZ3x51LNZetN9VoKc=
Subject key identifier: ED:3C:FE:46:5A:A1:B6:A4:76:E5:B2:73:FB:74:34:DE:B0:A3:1A:E5
Authority key identifier: 40:B9:CA:C9:35:31:1E:78:03:4B:40:73:83:0A:81:A3:CF:7B:45:D9
Certificate issuer: /CN=40b9cac935311e78034b4073830a81a3cf7b45d9
Certificate serial: 019D99CFCA82D391919F7BBF081B1343F57C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
Manifest number: 18C2
Signing time: Fri 17 Apr 2026 05:00:24 +0000
Manifest this update: Fri 17 Apr 2026 05:00:24 +0000
Manifest next update: Sat 18 Apr 2026 05:00:24 +0000
Files and hashes: 1: QLnKyTUxHngDS0BzgwqBo897Rdk.crl (hash: O8MXEnQJOxHFvmjaK+jE9tBeypA60D3XOjYqiSJ9GJA=)
2: gJ8nPMUk8uqyvHQ2yxhP8LCANg8.roa (hash: tw3KTzXZuTpEyGkQRNx7vE9ajBD/fn1qkQVFYAfTOZo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:cf:ca:82:d3:91:91:9f:7b:bf:08:1b:13:43:f5:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40b9cac935311e78034b4073830a81a3cf7b45d9
Validity
Not Before: Apr 17 05:00:24 2026 GMT
Not After : Apr 18 05:00:24 2026 GMT
Subject: CN=ed3cfe465aa1b6a476e5b273fb7434deb0a31ae5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:52:7e:0b:c3:e9:be:14:af:15:0e:e7:02:df:
89:57:ec:ef:f4:b8:31:d1:18:f3:36:62:39:f9:7c:
ad:64:61:ad:9a:db:98:59:d7:2b:80:e7:51:ac:be:
e3:31:56:f5:42:18:d2:02:08:3a:50:bb:b7:2a:3e:
2e:ac:20:e4:e9:03:40:3c:0d:18:d5:56:fd:dd:cd:
87:d0:7b:35:2e:c0:6c:d2:4b:3c:ec:49:46:02:77:
4a:40:4c:b8:f1:f4:18:51:6f:8b:4b:66:ac:e4:45:
23:65:3c:e5:37:35:25:76:d2:f2:59:1d:50:70:b2:
9e:ae:3c:71:ad:98:42:0f:af:37:fc:45:68:2d:06:
11:20:91:88:10:10:91:34:33:49:c8:c7:d7:b1:69:
90:4d:e1:6b:ee:c3:e4:bd:61:11:bd:e6:29:d4:e1:
c2:ea:92:d9:f8:82:b6:a8:db:6d:6e:34:54:ce:d7:
a7:8d:59:d6:a0:86:0c:c0:2c:48:ee:31:05:99:b9:
22:80:59:fd:48:8e:a7:72:f6:de:56:ac:6d:32:dc:
53:1c:42:a3:a6:51:07:e7:3a:ad:88:11:8c:1f:58:
92:d6:ac:1d:7d:57:4d:e1:58:e6:55:0c:31:58:45:
df:28:ec:f2:b9:50:b4:26:88:35:6a:9d:c5:15:c3:
5b:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:3C:FE:46:5A:A1:B6:A4:76:E5:B2:73:FB:74:34:DE:B0:A3:1A:E5
X509v3 Authority Key Identifier:
keyid:40:B9:CA:C9:35:31:1E:78:03:4B:40:73:83:0A:81:A3:CF:7B:45:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:e7:96:7e:31:4f:c5:48:43:a2:a5:54:43:db:a3:ed:c2:56:
52:fb:5b:db:55:33:c4:dd:00:02:15:68:76:0d:da:51:be:47:
69:d9:94:b4:da:81:f9:85:5c:5d:1c:08:29:a3:f3:6b:d1:cc:
77:88:3b:5a:f0:de:ed:89:da:53:75:e9:44:5f:0a:64:0e:12:
b9:0b:9d:a2:38:80:5d:96:50:ec:f1:a3:27:56:ae:b7:6f:df:
d3:1d:d6:a8:f2:40:c3:cf:ae:5e:a3:66:52:52:73:13:7b:ab:
ac:6d:96:0e:8f:62:36:e6:9c:16:bd:15:b5:a7:73:0e:5b:5b:
27:7c:21:d3:05:8c:d1:a1:dd:9b:b0:58:09:00:59:f4:8d:3e:
04:eb:3a:25:c4:2f:71:21:d2:fc:9a:f1:05:1a:ea:fe:fb:27:
7c:bb:71:21:d1:8d:a7:48:86:b9:d8:6e:70:d7:8b:cd:c4:61:
ed:c5:69:1c:b7:6b:18:16:ac:c7:d6:8c:4b:3a:4c:fc:f3:32:
41:5d:cf:16:b3:c3:3d:b0:fc:c8:75:f5:ee:b4:da:d2:6e:e7:
b0:70:dc:ac:42:21:7b:c7:95:bb:0e:98:96:c0:f9:0a:49:47:
fb:86:fd:40:45:c3:c3:3c:6d:8c:62:af:b3:0d:72:5f:f9:26:
2d:d4:60:0c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2Zz8qC05GRn3u/CBsTQ/V8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwYjljYWM5MzUzMTFlNzgwMzRiNDA3MzgzMGE4MWEzY2Y3
YjQ1ZDkwHhcNMjYwNDE3MDUwMDI0WhcNMjYwNDE4MDUwMDI0WjAzMTEwLwYDVQQD
EyhlZDNjZmU0NjVhYTFiNmE0NzZlNWIyNzNmYjc0MzRkZWIwYTMxYWU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjVJ+C8PpvhSvFQ7nAt+JV+zv9Lgx
0RjzNmI5+XytZGGtmtuYWdcrgOdRrL7jMVb1QhjSAgg6ULu3Kj4urCDk6QNAPA0Y
1Vb93c2H0Hs1LsBs0ks87ElGAndKQEy48fQYUW+LS2as5EUjZTzlNzUldtLyWR1Q
cLKerjxxrZhCD683/EVoLQYRIJGIEBCRNDNJyMfXsWmQTeFr7sPkvWERveYp1OHC
6pLZ+IK2qNttbjRUztenjVnWoIYMwCxI7jEFmbkigFn9SI6ncvbeVqxtMtxTHEKj
plEH5zqtiBGMH1iS1qwdfVdN4VjmVQwxWEXfKOzyuVC0Jog1ap3FFcNbnQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO08/kZaobakduWyc/t0NN6woxrlMB8GA1UdIwQY
MBaAFEC5ysk1MR54A0tAc4MKgaPPe0XZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUxuS3lUVXhIbmdEUzBCemd3cUJvODk3UmRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi8yODVhYjYtMDEwOS00NGUxLWJiMmIt
NzUzNGZlMGYxYjgzLzEvUUxuS3lUVXhIbmdEUzBCemd3cUJvODk3UmRrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMi8yODVhYjYtMDEwOS00NGUxLWJiMmItNzUzNGZlMGYxYjgz
LzEvUUxuS3lUVXhIbmdEUzBCemd3cUJvODk3UmRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHueWfjFP
xUhDoqVUQ9uj7cJWUvtb21UzxN0AAhVodg3aUb5HadmUtNqB+YVcXRwIKaPza9HM
d4g7WvDe7YnaU3XpRF8KZA4SuQudojiAXZZQ7PGjJ1aut2/f0x3WqPJAw8+uXqNm
UlJzE3urrG2WDo9iNuacFr0VtadzDltbJ3wh0wWM0aHdm7BYCQBZ9I0+BOs6JcQv
cSHS/JrxBRrq/vsnfLtxIdGNp0iGudhucNeLzcRh7cVpHLdrGBasx9aMSzpM/PMy
QV3PFrPDPbD8yHX17rTa0m7nsHDcrEIhe8eVuw6YlsD5CklH+4b9QEXDwzxtjGKv
sw1yX/kmLdRgDA==
-----END CERTIFICATE-----
Generated at Fri Apr 17 07:48:13 2026 by rpki-client