Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/26609f-2700-4949-8dbe-bae1f77ba758/1/Q5rDiHgSfOzcTIPqae7h9OEYvP8.mft
File: Q5rDiHgSfOzcTIPqae7h9OEYvP8.mft (raw, json)
Hash identifier: ZwNgiFHrPOFS2u44GK2CGd23VrTznTYJGmc4ve5W64A=
Subject key identifier: 4A:A4:DF:39:E6:2F:6B:A4:89:C8:80:F0:89:D4:FF:67:64:BA:AC:BD
Authority key identifier: 43:9A:C3:88:78:12:7C:EC:DC:4C:83:EA:69:EE:E1:F4:E1:18:BC:FF
Certificate issuer: /CN=439ac38878127cecdc4c83ea69eee1f4e118bcff
Certificate serial: 019D2A04917D1D4B022BC0D7DEA082967585
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q5rDiHgSfOzcTIPqae7h9OEYvP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/26609f-2700-4949-8dbe-bae1f77ba758/1/Q5rDiHgSfOzcTIPqae7h9OEYvP8.mft
Manifest number: 0D14
Signing time: Thu 26 Mar 2026 12:00:35 +0000
Manifest this update: Thu 26 Mar 2026 12:00:35 +0000
Manifest next update: Fri 27 Mar 2026 12:00:35 +0000
Files and hashes: 1: JMsELryrC71hTAcMzLYAc7CKRKk.roa (hash: rdsIPfGSMD6EsO8NTErhSi4I9C7O//GGQnV/svCoWHA=)
2: Q5rDiHgSfOzcTIPqae7h9OEYvP8.crl (hash: C6yRqB14W+PAwkre8tJEaTAoX53p6y768DeVB8EUyTM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/26609f-2700-4949-8dbe-bae1f77ba758/1/Q5rDiHgSfOzcTIPqae7h9OEYvP8.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/26609f-2700-4949-8dbe-bae1f77ba758/1/Q5rDiHgSfOzcTIPqae7h9OEYvP8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q5rDiHgSfOzcTIPqae7h9OEYvP8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:04:91:7d:1d:4b:02:2b:c0:d7:de:a0:82:96:75:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=439ac38878127cecdc4c83ea69eee1f4e118bcff
Validity
Not Before: Mar 26 12:00:35 2026 GMT
Not After : Mar 27 12:00:35 2026 GMT
Subject: CN=4aa4df39e62f6ba489c880f089d4ff6764baacbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:2b:74:63:ee:b0:e6:81:b1:3d:d2:d3:21:c1:
28:bd:fd:18:7e:e3:9e:c8:90:69:46:b6:e8:dc:36:
09:4c:39:5f:ba:b2:89:f0:1e:10:4e:72:4a:5a:23:
fe:76:f0:98:c3:64:66:d5:d7:5a:a6:e1:23:5b:34:
ef:51:29:3b:ea:e4:6b:3c:3c:e3:fb:d7:e3:d4:a9:
e9:d2:47:74:08:6c:58:b0:db:ff:e1:08:6a:bc:b7:
6d:d8:54:b3:07:0e:90:ac:97:26:6c:a1:6f:8b:6b:
31:94:f5:ba:79:b3:5b:1a:a5:1d:64:37:1b:76:4d:
99:8e:ab:a1:1f:53:70:10:9f:79:af:1f:31:7e:22:
04:01:f7:bc:6d:99:04:fb:7b:7a:0d:6d:54:7a:7f:
6b:16:fd:1e:b4:37:2d:ee:ab:06:51:cc:e0:c3:c4:
08:ef:b1:f9:4d:30:38:eb:20:02:8b:91:53:78:e4:
43:c7:a5:94:c2:b0:05:30:da:4a:f7:85:03:50:7a:
fb:5b:c4:40:fe:28:b9:56:2d:01:1b:db:db:25:a5:
64:f8:10:49:87:ce:79:24:99:5a:5b:17:f3:16:4a:
ab:11:5f:83:81:ac:f5:e4:7b:d4:94:45:f4:d7:ef:
7b:c3:62:b9:f0:ad:72:f1:b5:6f:16:63:21:18:32:
78:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:A4:DF:39:E6:2F:6B:A4:89:C8:80:F0:89:D4:FF:67:64:BA:AC:BD
X509v3 Authority Key Identifier:
keyid:43:9A:C3:88:78:12:7C:EC:DC:4C:83:EA:69:EE:E1:F4:E1:18:BC:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q5rDiHgSfOzcTIPqae7h9OEYvP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/26609f-2700-4949-8dbe-bae1f77ba758/1/Q5rDiHgSfOzcTIPqae7h9OEYvP8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/26609f-2700-4949-8dbe-bae1f77ba758/1/Q5rDiHgSfOzcTIPqae7h9OEYvP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:59:38:17:97:1d:66:22:7d:95:e9:55:a0:29:bf:0b:51:e1:
b8:5a:f9:54:03:c7:39:4d:12:9a:88:69:29:9a:d2:a9:c0:61:
0c:1c:e9:7c:b4:53:b7:c8:c3:74:82:db:46:37:0a:43:77:1a:
4e:e0:b4:f3:11:8d:40:a8:62:fe:0e:34:b7:28:21:41:02:a6:
50:74:63:97:a9:5e:1f:71:47:05:2b:77:b9:38:4f:6e:fe:e5:
d2:07:32:ef:94:b2:f2:d3:30:94:9b:47:0c:97:c1:f3:b9:64:
87:28:a6:2c:01:2d:24:c7:a4:69:e8:e2:40:54:6b:63:ea:68:
9a:b7:24:03:4d:1c:71:78:9b:71:03:07:11:92:a1:bc:2b:6a:
06:76:a4:d3:42:4f:d4:4c:99:8c:ae:f9:f1:d5:01:77:79:a9:
90:4e:7c:06:6a:00:39:c2:24:42:87:00:e9:3b:03:a7:3c:f4:
30:77:42:be:fc:e6:f8:c4:fb:f8:b8:c8:74:8f:1f:8d:61:b5:
d8:03:8f:58:fc:e5:e3:10:88:39:de:1c:c6:9e:7e:15:01:d2:
51:dd:91:8f:6e:e3:6d:0b:11:1b:c1:79:32:7d:f1:c3:14:53:
82:59:ea:3a:ce:c4:c5:cd:be:82:40:68:93:b9:0f:1e:50:a1:
fc:c5:4a:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 15:44:31 2026 by rpki-client