Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/874c85-9e7d-4ace-958f-dab7f0c8d240/1/Q2dUfYUePNd2zTMpCyRUrMDoUbs.mft
File: Q2dUfYUePNd2zTMpCyRUrMDoUbs.mft (raw, json)
Hash identifier: se0RfpgVPK5PQ1Xp7bZuMIbgYJRqAvIkahm9MVeXvuM=
Subject key identifier: A5:FE:B0:F6:81:FA:BE:A8:58:40:3F:B2:4C:6E:A4:12:44:19:9F:A8
Authority key identifier: 43:67:54:7D:85:1E:3C:D7:76:CD:33:29:0B:24:54:AC:C0:E8:51:BB
Certificate issuer: /CN=4367547d851e3cd776cd33290b2454acc0e851bb
Certificate serial: 019D96CECA5774049BEB789D7159F8DD7216
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q2dUfYUePNd2zTMpCyRUrMDoUbs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/874c85-9e7d-4ace-958f-dab7f0c8d240/1/Q2dUfYUePNd2zTMpCyRUrMDoUbs.mft
Manifest number: 0548
Signing time: Thu 16 Apr 2026 15:00:27 +0000
Manifest this update: Thu 16 Apr 2026 15:00:27 +0000
Manifest next update: Fri 17 Apr 2026 15:00:27 +0000
Files and hashes: 1: 5sjVZOffDC3SdMXl3xj-LISTTRA.roa (hash: NgYO+E9uip8I6LBuV26/SjtRZiAA/mIEsqO23fxRKZo=)
2: Q2dUfYUePNd2zTMpCyRUrMDoUbs.crl (hash: 4SqyH7V0vzLWV2jwl9H/a48W2VbzzA+EIWA4A8BRJoo=)
3: UZ8MoagtWKlsIsRGsjso-iozLGw.roa (hash: dnetz1uWniSUYV1OlTPjy0Ix9dXrnsa95CDJdNzqlUI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/874c85-9e7d-4ace-958f-dab7f0c8d240/1/Q2dUfYUePNd2zTMpCyRUrMDoUbs.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/874c85-9e7d-4ace-958f-dab7f0c8d240/1/Q2dUfYUePNd2zTMpCyRUrMDoUbs.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q2dUfYUePNd2zTMpCyRUrMDoUbs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:96:ce:ca:57:74:04:9b:eb:78:9d:71:59:f8:dd:72:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4367547d851e3cd776cd33290b2454acc0e851bb
Validity
Not Before: Apr 16 15:00:27 2026 GMT
Not After : Apr 17 15:00:27 2026 GMT
Subject: CN=a5feb0f681fabea858403fb24c6ea41244199fa8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:0a:9d:43:7c:5b:b2:9f:13:4d:b2:ab:9a:d3:
52:35:c4:3d:f1:f7:f4:9f:3e:dd:02:4d:46:da:20:
08:a1:c8:ef:e6:72:64:df:5f:b9:7a:fe:0c:c9:fa:
67:78:5f:49:05:24:27:dd:22:b0:ee:89:10:c4:58:
08:af:aa:65:88:3a:c9:0e:f6:d1:98:a6:67:7d:f0:
63:18:64:86:32:fe:ac:70:37:82:57:86:a9:6b:f9:
0e:5d:31:a2:f5:b4:9b:1f:de:30:08:53:38:c4:fd:
f7:6b:14:93:c5:5a:52:59:b2:dd:63:7e:cf:55:56:
9a:77:93:7a:ed:04:37:c3:0d:a3:cc:36:35:92:d0:
0b:f6:0b:d4:37:96:b2:06:e7:27:ed:30:dd:af:15:
f0:7e:e8:46:c5:a5:de:d9:b4:77:85:45:f0:7e:5a:
9e:6b:80:b1:a2:ed:2d:a0:fa:0d:f0:66:d4:f1:54:
36:11:3e:f3:1b:3e:e2:d2:cb:8e:35:44:6f:c0:dc:
31:80:cd:64:5c:8e:76:d0:12:b2:3a:2c:75:33:e9:
4e:80:42:c0:90:fc:6d:54:94:8f:b9:f8:9a:01:b6:
88:b6:f1:01:bc:d5:df:20:65:a5:49:76:40:73:b1:
0a:8f:a4:cc:d6:d9:f3:61:72:8b:2d:47:16:6e:01:
7e:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:FE:B0:F6:81:FA:BE:A8:58:40:3F:B2:4C:6E:A4:12:44:19:9F:A8
X509v3 Authority Key Identifier:
keyid:43:67:54:7D:85:1E:3C:D7:76:CD:33:29:0B:24:54:AC:C0:E8:51:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q2dUfYUePNd2zTMpCyRUrMDoUbs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/874c85-9e7d-4ace-958f-dab7f0c8d240/1/Q2dUfYUePNd2zTMpCyRUrMDoUbs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/874c85-9e7d-4ace-958f-dab7f0c8d240/1/Q2dUfYUePNd2zTMpCyRUrMDoUbs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:e0:ec:17:ac:ae:58:73:9d:8f:a9:7a:74:7c:ed:4c:0f:59:
88:03:88:5e:63:dc:c7:da:cc:de:21:a6:3d:fe:17:2c:1c:fc:
d4:73:f8:5d:ca:66:81:5f:37:fc:c1:44:7b:b3:5c:6e:94:cf:
96:1f:1b:df:8d:ee:13:4f:87:f3:e0:f6:d1:d8:b5:e0:4d:3d:
de:c6:3f:16:1c:b0:3e:33:b5:84:0a:f9:19:77:57:0f:f5:02:
59:be:84:1e:90:f9:2d:71:80:f4:1b:b6:5f:82:f8:08:9d:cd:
d2:a3:3d:d5:52:f6:c6:11:0d:88:11:e4:c5:fa:2a:e4:ad:e3:
6d:9e:cb:f5:32:06:10:e0:d5:cb:48:81:51:79:b6:bb:70:4c:
35:73:d1:fd:41:21:4f:18:38:07:84:e5:df:aa:59:3d:cd:c8:
4a:4a:b7:a8:75:b3:dd:d8:f1:d8:a6:7d:07:4a:25:8a:68:0d:
ae:48:68:61:e5:1d:22:14:d8:31:56:c7:2d:b1:e2:1d:9b:fe:
43:c5:04:5e:b8:39:4c:25:c7:7e:7c:ae:57:bd:ed:ef:db:0c:
3a:1f:ba:87:03:09:c8:56:01:18:e6:8f:87:10:b6:09:b9:5a:
ca:b0:73:20:64:36:bb:2f:cb:15:b5:e4:7a:c4:40:30:f4:11:
64:fa:48:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 16 23:55:07 2026 by rpki-client