Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
File: QLnKyTUxHngDS0BzgwqBo897Rdk.mft (raw, json)
Hash identifier: WpbOGmsLF2wKorPlYxhCLXl7ylUhhEpE4tOo53tqYt4=
Subject key identifier: 9F:70:5C:B7:4D:91:B7:05:E1:B8:7D:E7:EA:17:50:4B:AA:5A:93:CD
Authority key identifier: 40:B9:CA:C9:35:31:1E:78:03:4B:40:73:83:0A:81:A3:CF:7B:45:D9
Certificate issuer: /CN=40b9cac935311e78034b4073830a81a3cf7b45d9
Certificate serial: 019CAA589C14864066CAD6213B3B73053EA5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
Manifest number: 1846
Signing time: Sun 01 Mar 2026 17:00:59 +0000
Manifest this update: Sun 01 Mar 2026 17:00:59 +0000
Manifest next update: Mon 02 Mar 2026 17:00:59 +0000
Files and hashes: 1: QLnKyTUxHngDS0BzgwqBo897Rdk.crl (hash: f9HRHBYwHeOry+UV9JomVbAIwKHXzNLJXniyWZMb1qQ=)
2: gJ8nPMUk8uqyvHQ2yxhP8LCANg8.roa (hash: tw3KTzXZuTpEyGkQRNx7vE9ajBD/fn1qkQVFYAfTOZo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:58:9c:14:86:40:66:ca:d6:21:3b:3b:73:05:3e:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40b9cac935311e78034b4073830a81a3cf7b45d9
Validity
Not Before: Mar 1 17:00:59 2026 GMT
Not After : Mar 2 17:00:59 2026 GMT
Subject: CN=9f705cb74d91b705e1b87de7ea17504baa5a93cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:e4:32:ed:f6:7a:d4:cb:2e:35:61:fd:27:e4:
40:66:47:66:d0:cb:f3:9b:1b:b9:a3:87:22:0f:a5:
a2:86:36:32:d1:c1:a5:d6:8e:cd:4e:36:84:cb:0e:
fe:3e:4e:53:04:18:f0:c2:2a:b2:c8:7b:97:1a:cf:
f1:6b:e6:94:99:3d:5a:bd:83:f4:83:51:ae:fa:1c:
36:49:33:47:36:75:c2:90:7e:c9:69:96:64:ca:9d:
71:2c:35:a3:9b:51:30:b3:6c:c8:6c:c4:66:f2:1f:
71:ab:08:2a:c2:4d:d5:8f:0e:f4:58:00:f2:b6:e9:
ce:b8:5e:6e:eb:ee:6b:78:8c:e7:b3:11:03:d2:bb:
c7:11:70:5c:0b:7f:87:fb:03:dc:66:41:6a:b1:5e:
2b:0f:3d:c2:7a:35:07:6f:e5:a8:83:d0:ef:8a:f4:
35:e4:4d:af:bd:5a:e7:e3:f2:64:63:c7:04:93:a4:
5c:62:5f:d6:79:4c:e2:2a:18:3a:73:8a:11:47:09:
73:4e:1e:3d:93:03:49:a5:8a:64:ce:02:07:83:91:
d9:bd:78:f4:b1:f7:26:cf:3e:4f:ee:2f:fc:7b:bc:
0a:8b:5f:3f:fd:ad:43:82:8d:69:27:ec:ab:bb:85:
0c:2b:3e:1b:18:c7:5e:7d:1a:8f:e3:86:ee:48:55:
cd:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:70:5C:B7:4D:91:B7:05:E1:B8:7D:E7:EA:17:50:4B:AA:5A:93:CD
X509v3 Authority Key Identifier:
keyid:40:B9:CA:C9:35:31:1E:78:03:4B:40:73:83:0A:81:A3:CF:7B:45:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:31:14:19:50:ec:f4:4f:88:bc:16:72:64:c4:44:f9:9c:2a:
6a:65:cb:d8:fb:58:e8:39:7b:c2:0e:fd:70:d1:a4:a9:ca:34:
fd:b5:c1:46:cc:91:77:75:fe:98:13:8e:ab:eb:69:9f:d8:cd:
ba:ed:c2:35:02:9d:45:4a:05:20:7c:14:1c:9d:de:1d:1c:f0:
56:10:2e:06:cb:60:4c:36:68:76:47:76:d8:e6:6e:49:ae:4e:
ad:b1:a6:12:28:2b:7a:a8:c7:6c:ea:96:25:ab:e0:df:ef:a4:
29:ef:8c:a3:1f:9a:7e:54:94:a3:c0:be:bb:e9:41:7a:96:a2:
6f:82:12:7d:d7:55:6d:a3:f1:56:dd:78:69:e6:ce:11:5d:04:
74:c5:3c:56:ec:34:e8:3f:89:ef:0b:e0:16:89:c2:dc:c5:6b:
28:6e:ac:06:89:ba:d1:16:ff:ed:1b:35:17:08:f5:62:f3:b7:
44:e1:47:e6:fb:a0:bd:82:c2:7d:df:88:e3:3a:aa:4d:72:a8:
9e:12:9e:84:08:41:5b:20:0e:85:dc:0c:0f:0f:68:dd:42:31:
cb:6b:71:77:e2:86:ed:22:d8:23:98:3e:fc:55:9c:5b:f7:17:
e4:05:60:30:b4:b9:7f:87:5c:f7:16:06:09:5e:7a:16:77:8d:
b2:2e:42:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 23:44:10 2026 by rpki-client