Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/582695-61a1-48e7-b6ac-7bc45340dd28/1/Q5i1d7IjtadjUSGadP2kRnBIkPc.mft
File: Q5i1d7IjtadjUSGadP2kRnBIkPc.mft (raw, json)
Hash identifier: c6mRrur4s9pTTVJWUpjh9XJ3bSq2sJjTJUhRGhoh8zo=
Subject key identifier: 4A:A9:73:6E:ED:6C:52:6F:AE:9C:5E:B6:D4:44:D6:F2:94:53:DE:91
Authority key identifier: 43:98:B5:77:B2:23:B5:A7:63:51:21:9A:74:FD:A4:46:70:48:90:F7
Certificate issuer: /CN=4398b577b223b5a76351219a74fda446704890f7
Certificate serial: 019D25833FBD7AAE19D0967E9C904142CD12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q5i1d7IjtadjUSGadP2kRnBIkPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/582695-61a1-48e7-b6ac-7bc45340dd28/1/Q5i1d7IjtadjUSGadP2kRnBIkPc.mft
Manifest number: 156D
Signing time: Wed 25 Mar 2026 15:00:51 +0000
Manifest this update: Wed 25 Mar 2026 15:00:51 +0000
Manifest next update: Thu 26 Mar 2026 15:00:51 +0000
Files and hashes: 1: Q5i1d7IjtadjUSGadP2kRnBIkPc.crl (hash: nQ1P7fgb5dMA+Aef/eCa1rzsJPzMpvMo+5pISOxQTmM=)
2: l_ruKO78QHVQe-kxScIY78h3qwo.roa (hash: jzBDUnZ8ZQyI+7hv0yjsFFpgvL3Te9Vz0AqbFGjex/4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/582695-61a1-48e7-b6ac-7bc45340dd28/1/Q5i1d7IjtadjUSGadP2kRnBIkPc.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/582695-61a1-48e7-b6ac-7bc45340dd28/1/Q5i1d7IjtadjUSGadP2kRnBIkPc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q5i1d7IjtadjUSGadP2kRnBIkPc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:83:3f:bd:7a:ae:19:d0:96:7e:9c:90:41:42:cd:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4398b577b223b5a76351219a74fda446704890f7
Validity
Not Before: Mar 25 15:00:51 2026 GMT
Not After : Mar 26 15:00:51 2026 GMT
Subject: CN=4aa9736eed6c526fae9c5eb6d444d6f29453de91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:05:4b:43:41:fa:7f:94:db:02:65:d6:25:1c:
4c:fc:c3:fc:a5:be:f3:89:7c:3c:0d:f5:97:de:6a:
2a:77:1c:18:58:d4:9a:3c:21:a0:c4:0b:00:6a:1a:
a9:2f:06:08:55:5d:f1:5d:4d:a0:aa:dc:2d:0d:ac:
d7:4d:69:e0:e0:d2:72:7b:2c:a3:f4:77:b8:84:a5:
22:a2:ad:08:d1:7f:9d:52:f6:6c:02:bf:07:d8:cb:
2d:38:8f:78:b2:16:77:84:fb:3c:33:94:a0:0d:9c:
0a:ee:49:e8:47:91:e5:43:4d:d4:00:f6:80:77:db:
f1:05:5f:47:0f:6a:82:45:09:f3:ae:97:b3:4d:72:
ba:e1:b6:e2:2a:1b:ff:69:19:76:65:48:59:13:fb:
52:a5:70:ab:f9:d3:f1:7b:33:7a:2b:80:0a:04:41:
6a:15:c0:5d:3b:38:a8:d6:8c:7c:69:9f:e1:e5:2f:
71:4a:7e:b5:42:63:5b:fe:6a:a0:ba:d4:e2:14:ae:
3c:27:0f:41:14:97:5e:71:62:b8:82:b8:e0:8b:96:
67:5f:db:29:a8:34:ca:2e:dc:e6:07:f0:ed:e9:d7:
5b:7d:20:04:f7:3a:54:4c:08:93:1f:d6:58:ff:d3:
40:27:bb:00:45:02:c1:cb:af:24:47:e6:d9:3a:da:
b3:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:A9:73:6E:ED:6C:52:6F:AE:9C:5E:B6:D4:44:D6:F2:94:53:DE:91
X509v3 Authority Key Identifier:
keyid:43:98:B5:77:B2:23:B5:A7:63:51:21:9A:74:FD:A4:46:70:48:90:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q5i1d7IjtadjUSGadP2kRnBIkPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/582695-61a1-48e7-b6ac-7bc45340dd28/1/Q5i1d7IjtadjUSGadP2kRnBIkPc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/582695-61a1-48e7-b6ac-7bc45340dd28/1/Q5i1d7IjtadjUSGadP2kRnBIkPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:ad:b6:33:f4:ed:fd:c1:a0:b6:0b:f3:ba:6d:94:a8:44:ca:
11:bb:6e:71:20:19:fa:6f:c9:2e:e2:d3:89:d9:36:f2:66:98:
b2:8d:7f:7f:be:49:35:47:18:49:97:d8:08:32:ca:27:ec:da:
4d:10:95:73:33:d5:e7:ef:52:e2:10:ef:3d:54:4a:1b:fc:69:
60:7d:8d:b0:33:a5:12:d9:87:d6:67:a2:e5:08:80:57:df:51:
b1:df:b5:a7:48:21:20:aa:19:ae:62:bf:28:a1:63:ac:53:45:
00:06:ed:a1:c6:3c:0a:e7:ec:07:cd:fa:0b:09:0b:3b:ad:7d:
28:2e:72:6a:dc:09:ad:93:30:8f:72:93:c9:35:eb:6b:c2:06:
99:29:fd:f8:01:80:e3:a5:9a:51:ca:ca:cb:b7:d9:e0:9f:94:
03:5f:44:cb:b9:dc:88:f1:2e:49:cc:8d:be:eb:c3:3b:a3:a0:
45:c6:04:57:2e:80:a9:f0:2f:48:7a:72:3f:7b:11:ff:ef:07:
70:73:04:2e:22:e9:10:9c:bc:a2:f6:98:95:41:28:f1:2b:5c:
3c:d4:89:4d:14:f9:4e:b6:b8:cf:bc:0e:ef:4c:6c:99:ec:37:
bb:dd:c4:03:f3:7d:c2:1e:a7:93:ea:d5:49:c1:3c:bd:8e:c1:
4a:67:7d:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:37:15 2026 by rpki-client