Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft
File: RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft (raw, json)
Hash identifier: KcAP2gl7ZEwAD7wIYEhNG06XWHj6QG2Fk8FWHB8ZVZc=
Subject key identifier: A6:3F:E9:2C:AE:41:A2:FD:A8:3A:31:3B:BA:68:15:36:21:1C:7A:97
Authority key identifier: 45:01:E8:5C:00:25:C4:AE:29:52:80:58:E2:32:D7:37:C2:F4:95:CE
Certificate issuer: /CN=4501e85c0025c4ae29528058e232d737c2f495ce
Certificate serial: 019D2816C186A7066F16B11A9408B1CBDC34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RQHoXAAlxK4pUoBY4jLXN8L0lc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft
Manifest number: 04E9
Signing time: Thu 26 Mar 2026 03:01:13 +0000
Manifest this update: Thu 26 Mar 2026 03:01:13 +0000
Manifest next update: Fri 27 Mar 2026 03:01:13 +0000
Files and hashes: 1: OPpSZm1jWTTBpqUrYsOO8HLZeBs.roa (hash: bb6q72W6oNvno2eLB+s2W9k1FAddahs3TD0hpCigXCI=)
2: RQHoXAAlxK4pUoBY4jLXN8L0lc4.crl (hash: GnWxr6qBmdmHvcIwyxeFuIefjS1idq0BOT5E+vj9JQk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft
rsync://rpki.ripe.net/repository/DEFAULT/RQHoXAAlxK4pUoBY4jLXN8L0lc4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:c1:86:a7:06:6f:16:b1:1a:94:08:b1:cb:dc:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4501e85c0025c4ae29528058e232d737c2f495ce
Validity
Not Before: Mar 26 03:01:13 2026 GMT
Not After : Mar 27 03:01:13 2026 GMT
Subject: CN=a63fe92cae41a2fda83a313bba681536211c7a97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:16:26:0d:85:73:c1:d4:74:c0:cd:f8:9b:47:
fe:54:cc:b1:1c:0a:b4:1f:d6:27:5d:0c:c2:0a:33:
d6:6a:13:36:b7:6c:42:4c:e2:0c:e7:99:f4:f5:88:
2f:31:eb:cb:f5:eb:1b:b0:38:b7:c4:63:a3:36:42:
35:e7:11:aa:74:7a:e4:90:f6:79:42:63:ef:c9:5a:
0b:bc:d8:f2:c2:50:86:70:76:f4:80:5f:49:aa:a6:
5a:fe:86:43:c9:d4:42:15:eb:ff:f8:8e:ff:4b:c9:
4d:0d:12:66:a6:c6:90:91:d7:c1:bb:0e:aa:be:45:
a3:5c:b1:83:32:48:a7:64:f8:b4:b0:7f:8e:4c:39:
f2:b0:3e:dd:e7:f1:55:81:07:c9:2c:c2:52:c3:ca:
2f:17:74:3b:08:ae:f5:26:2f:99:a5:70:0f:4e:8c:
13:c6:93:10:10:a1:c1:30:49:c5:eb:c0:9d:00:0a:
bf:17:24:7b:18:75:a1:30:86:e6:8f:4c:d2:fb:7c:
39:d5:9d:db:b8:50:e7:21:71:e1:e8:19:63:9e:ea:
b0:4b:c1:85:42:b8:1d:52:5f:b1:4c:6d:45:53:10:
bd:bb:c5:06:56:25:1d:f7:ad:f4:d1:59:51:75:cb:
00:c8:31:9f:9f:84:94:e7:6e:d6:d9:00:36:9f:b8:
ae:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:3F:E9:2C:AE:41:A2:FD:A8:3A:31:3B:BA:68:15:36:21:1C:7A:97
X509v3 Authority Key Identifier:
keyid:45:01:E8:5C:00:25:C4:AE:29:52:80:58:E2:32:D7:37:C2:F4:95:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RQHoXAAlxK4pUoBY4jLXN8L0lc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:f3:08:eb:1b:8d:c5:8e:a0:1a:00:ef:65:c0:d9:28:4f:e7:
ba:83:2a:8b:a4:f7:6d:1e:e8:1f:1e:e2:8a:41:06:f0:b1:0d:
99:25:89:25:7a:5a:6d:7a:e7:c7:34:71:d5:c1:65:cc:50:97:
34:58:86:34:57:ac:46:d7:b4:2c:4e:02:17:06:ce:da:d4:5d:
04:44:b0:2f:c9:87:5c:b0:37:e3:67:db:39:59:30:8a:25:fa:
4a:f1:d0:d6:4b:69:a8:17:37:e4:94:e3:44:16:89:d6:5d:41:
af:da:d6:19:3b:c6:95:56:d7:dc:8e:18:08:e6:20:b6:4b:aa:
49:9a:3d:06:e2:3f:3a:56:a0:ec:b2:5b:68:5c:70:7b:b5:88:
8d:18:95:9b:2a:d4:99:0e:d3:b1:f0:e2:ba:45:6c:92:80:1d:
e6:d6:7b:45:81:42:0d:f6:bb:ec:83:9b:58:e5:09:54:03:0c:
0d:43:6e:c5:b5:b3:47:94:16:30:2a:5c:bd:bb:b7:f4:03:55:
5b:28:69:39:01:52:aa:65:f2:81:eb:60:84:eb:ce:60:75:f3:
01:3d:25:d6:0b:25:58:b8:e7:e9:e1:b0:46:04:79:c8:ac:e5:
b6:4f:1e:99:3e:16:d6:f9:89:df:08:6a:2e:01:a5:2a:5c:02:
e1:6e:d3:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:58:20 2026 by rpki-client