Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/e79202-acab-4b1a-992b-2a2ed45e2712/1/qoXGfyIwng2EwwtUJSlyUyhgUVE.mft
File: qoXGfyIwng2EwwtUJSlyUyhgUVE.mft (raw, json)
Hash identifier: LmFGFe4bU+hNrpNuwv2nLDpUJqWw94ziVLsXXKrs7eA=
Subject key identifier: 2F:C2:0E:BD:EC:D9:10:EA:32:E0:73:23:2A:93:4D:18:C3:1D:52:12
Authority key identifier: AA:85:C6:7F:22:30:9E:0D:84:C3:0B:54:25:29:72:53:28:60:51:51
Certificate issuer: /CN=aa85c67f22309e0d84c30b542529725328605151
Certificate serial: 019D9A3DEAA9E0F302BE7FDD52B3B7CAFB72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qoXGfyIwng2EwwtUJSlyUyhgUVE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/e79202-acab-4b1a-992b-2a2ed45e2712/1/qoXGfyIwng2EwwtUJSlyUyhgUVE.mft
Manifest number: 0F43
Signing time: Fri 17 Apr 2026 07:00:42 +0000
Manifest this update: Fri 17 Apr 2026 07:00:42 +0000
Manifest next update: Sat 18 Apr 2026 07:00:42 +0000
Files and hashes: 1: qoXGfyIwng2EwwtUJSlyUyhgUVE.crl (hash: vrvAX3dPjlFSAsJX1A8Ddlug5DbCgMTjXKWOjDk+9lY=)
2: skeAadI4AP4ZvpAKWtTlCV07X48.roa (hash: teA/npSH8zrPPm6lOFHsXXFeJadHqVvDUxx+vJRFlGk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/e79202-acab-4b1a-992b-2a2ed45e2712/1/qoXGfyIwng2EwwtUJSlyUyhgUVE.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/e79202-acab-4b1a-992b-2a2ed45e2712/1/qoXGfyIwng2EwwtUJSlyUyhgUVE.mft
rsync://rpki.ripe.net/repository/DEFAULT/qoXGfyIwng2EwwtUJSlyUyhgUVE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3d:ea:a9:e0:f3:02:be:7f:dd:52:b3:b7:ca:fb:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa85c67f22309e0d84c30b542529725328605151
Validity
Not Before: Apr 17 07:00:42 2026 GMT
Not After : Apr 18 07:00:42 2026 GMT
Subject: CN=2fc20ebdecd910ea32e073232a934d18c31d5212
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:0c:b4:ba:6e:f8:97:72:b8:45:da:a8:b8:b9:
73:48:23:77:c7:4e:06:42:1b:12:fc:cd:eb:74:51:
1f:ad:5d:f3:d1:21:21:56:08:a0:8c:7b:d5:fe:9b:
6b:ec:7a:7a:da:9d:80:81:8f:90:93:da:ff:1a:47:
33:50:f1:80:7d:50:63:0e:c8:28:a1:bc:5a:a0:ed:
67:80:e9:d4:9a:b8:de:70:75:b9:17:7c:81:14:3b:
5c:ef:55:eb:a0:cb:30:0a:d1:49:a9:4d:17:30:19:
b5:36:31:98:a2:e5:27:6c:95:c3:f2:87:b6:f4:db:
f3:7f:ca:3a:5f:66:a0:8e:4f:59:b2:90:c5:ec:76:
10:3d:ee:33:9b:3e:39:31:83:4e:54:cf:df:b3:6e:
34:04:27:68:26:0a:5b:39:cc:ed:71:d8:ce:0e:5d:
42:a7:6a:c6:4c:03:d7:3a:47:5d:14:21:cb:08:19:
49:34:35:af:4b:75:74:4c:55:17:63:e6:5f:a9:ca:
34:6b:9a:f9:62:93:ba:0c:ed:13:59:d8:ae:ce:d8:
58:f1:89:53:7b:dc:22:65:7b:3a:2c:a1:af:99:8f:
50:49:98:b4:19:5f:3e:d5:df:77:d7:1d:1e:64:33:
a6:e7:5f:8b:e1:72:0c:27:74:c1:1a:0f:31:02:8f:
05:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:C2:0E:BD:EC:D9:10:EA:32:E0:73:23:2A:93:4D:18:C3:1D:52:12
X509v3 Authority Key Identifier:
keyid:AA:85:C6:7F:22:30:9E:0D:84:C3:0B:54:25:29:72:53:28:60:51:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qoXGfyIwng2EwwtUJSlyUyhgUVE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e79202-acab-4b1a-992b-2a2ed45e2712/1/qoXGfyIwng2EwwtUJSlyUyhgUVE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e79202-acab-4b1a-992b-2a2ed45e2712/1/qoXGfyIwng2EwwtUJSlyUyhgUVE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:66:47:6d:1a:a3:ce:73:e8:01:6e:f4:cf:30:89:17:44:56:
17:38:df:d4:56:ec:ee:7b:f9:3a:05:1a:8c:aa:fa:b0:61:4e:
2a:c8:a2:ee:98:4d:b9:3a:66:00:d7:f6:e3:f8:e6:1c:3d:0b:
21:fd:13:29:fe:6b:7f:cc:85:33:b7:f7:7e:59:5a:00:12:c4:
de:16:39:a4:bd:90:f7:db:42:42:23:0c:95:9e:ab:f1:58:0f:
31:06:6b:e7:8b:d5:12:ec:d2:ac:1d:85:52:3e:7c:bf:85:5d:
e3:d1:8f:e2:1f:11:9c:88:01:eb:3e:96:64:49:0f:a2:8f:da:
c0:a3:3a:ad:43:ec:35:23:85:47:52:84:ad:c5:05:57:97:84:
b5:87:6b:9b:93:01:06:b3:c5:1c:ed:ab:65:ac:d1:61:70:08:
65:25:f6:d8:c6:58:8b:d9:fe:e2:71:94:4c:04:25:dc:5c:26:
e9:07:b9:01:d8:ed:20:ca:8f:8e:d2:2b:59:8d:e6:a8:72:aa:
8e:08:ae:cb:0c:ad:c1:d3:80:3b:c2:6d:df:96:76:14:de:38:
2d:73:d0:2f:48:55:84:af:06:e5:73:5f:7a:df:b3:be:9c:0d:
7e:63:96:c2:0a:09:59:5f:87:4f:71:dc:3c:07:a9:e0:9a:51:
e6:08:02:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:53:13 2026 by rpki-client