Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
File: QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft (raw, json)
Hash identifier: NrTCc2vWBIHSjcEVegUb+4HfRXzWHwpdDFdrMKHtS6o=
Subject key identifier: C7:F5:E2:A5:CD:1E:D2:B9:F4:6B:0A:8B:F8:47:21:45:F4:57:CC:AE
Authority key identifier: 40:AA:94:9D:31:C6:68:88:CB:47:58:F2:3D:D5:F3:12:14:1D:EC:4A
Certificate issuer: /CN=40aa949d31c66888cb4758f23dd5f312141dec4a
Certificate serial: 019D984FB2C382DAC01689D1FBA7B90BCE2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
Manifest number: 0FE2
Signing time: Thu 16 Apr 2026 22:00:52 +0000
Manifest this update: Thu 16 Apr 2026 22:00:52 +0000
Manifest next update: Fri 17 Apr 2026 22:00:52 +0000
Files and hashes: 1: QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl (hash: B+zHEZEnLlutxjS3MWmN1Iz2PxFbyKN6EVj+SZvSG6w=)
2: vk5Y2YJ09rjiWROVoHQwodUn4yU.roa (hash: vpQeQxzEnsV7qHV8y9P4IV2nzoCx88/TOJF++oD3hVE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:4f:b2:c3:82:da:c0:16:89:d1:fb:a7:b9:0b:ce:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40aa949d31c66888cb4758f23dd5f312141dec4a
Validity
Not Before: Apr 16 22:00:52 2026 GMT
Not After : Apr 17 22:00:52 2026 GMT
Subject: CN=c7f5e2a5cd1ed2b9f46b0a8bf8472145f457ccae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:93:7e:26:94:06:35:b7:4c:54:70:98:6a:10:
3d:76:d0:87:87:58:16:c7:a7:62:d7:32:33:5c:7f:
89:de:17:09:6b:e8:67:03:f9:78:dc:25:00:98:1f:
00:4b:70:3d:e2:f1:17:dd:93:2b:e2:42:7e:1c:e4:
40:82:5c:89:c6:74:af:a3:ed:92:e4:11:a6:66:9a:
cf:3a:1d:3e:6a:e1:4d:0f:c7:5f:99:49:87:e9:02:
55:c1:f4:a4:09:2a:bc:c6:c4:47:04:ce:9b:31:ad:
8b:d6:40:80:20:11:45:5e:c5:36:94:fc:b3:38:0f:
84:11:77:ce:3b:8f:f8:ef:38:d0:cc:4f:93:65:9d:
37:cc:fc:fe:b1:3c:63:03:d8:d3:d3:6a:a6:18:63:
fc:40:24:c7:f6:e1:a9:7a:c9:54:50:33:66:14:1a:
1c:c2:24:4f:2c:fc:c9:78:01:08:60:bb:26:38:10:
6b:3d:d8:7d:ba:1b:7a:9e:cf:9c:4e:64:7d:5f:64:
b4:f3:c7:6d:56:78:75:8e:f4:11:d4:ce:3c:6e:3f:
85:c9:d7:7c:8b:ea:dd:cb:13:38:77:7f:da:c6:36:
58:93:26:d4:cb:d3:5b:a3:20:5f:a1:d6:cc:b9:3c:
ae:72:7f:82:88:4b:c5:70:88:bd:7e:7a:09:2c:fa:
9c:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:F5:E2:A5:CD:1E:D2:B9:F4:6B:0A:8B:F8:47:21:45:F4:57:CC:AE
X509v3 Authority Key Identifier:
keyid:40:AA:94:9D:31:C6:68:88:CB:47:58:F2:3D:D5:F3:12:14:1D:EC:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:7c:24:b7:e6:8f:a3:6b:8d:e7:a5:22:85:c6:6e:27:6b:30:
50:c2:d3:01:9f:1b:c5:6f:40:ad:21:18:e5:1d:70:66:7c:8d:
49:77:b2:99:2f:bc:c2:dc:b4:aa:bc:e8:95:20:fe:ab:1c:6e:
6e:53:44:69:6b:d6:cb:09:f6:86:f9:6b:e2:ca:e5:f0:25:87:
2f:17:b5:9a:b8:00:16:ee:19:ca:17:54:17:0f:42:c9:d9:fe:
55:23:a5:54:0d:9e:37:3c:60:08:b5:a8:69:87:14:e6:0b:5c:
55:f5:e2:3b:34:fb:ba:91:09:bc:8b:f9:e2:45:8c:3f:fb:7a:
62:e6:f2:8e:53:ab:6a:16:4c:13:73:93:90:9d:0d:11:47:07:
41:91:d0:d0:e2:57:ff:90:7d:20:86:f0:7c:56:12:c0:3f:46:
2d:b0:43:78:40:70:65:fc:74:e2:4d:9e:46:3a:6d:8d:30:bf:
91:30:f3:d7:98:57:35:86:43:fd:55:50:b8:97:b6:38:0a:35:
1f:65:c1:ea:95:ac:50:9e:df:90:1c:cc:60:ff:5d:ef:75:72:
eb:18:eb:1f:48:95:c6:75:63:c4:10:f1:7e:ec:5a:24:07:b2:
52:3a:91:07:ba:66:bc:92:2f:4c:0b:8c:79:f5:6e:33:fb:c1:
5e:4b:5e:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 03:44:21 2026 by rpki-client