Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.mft
File: q2TJrlviZApf1pRYanBMo0wgh78.mft (raw, json)
Hash identifier: QgzcUtQTxu+NhT20+HNUf6x4xvAdHnsqBSZHNuoJwOg=
Subject key identifier: 3D:5B:53:35:6E:5D:C8:B4:1F:68:EB:43:5D:FE:14:6B:80:7A:6D:1C
Authority key identifier: AB:64:C9:AE:5B:E2:64:0A:5F:D6:94:58:6A:70:4C:A3:4C:20:87:BF
Certificate issuer: /CN=ab64c9ae5be2640a5fd694586a704ca34c2087bf
Certificate serial: 019D98BD29F3CB6E3335893E04A1D63BEB48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q2TJrlviZApf1pRYanBMo0wgh78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.mft
Manifest number: 18C2
Signing time: Fri 17 Apr 2026 00:00:26 +0000
Manifest this update: Fri 17 Apr 2026 00:00:26 +0000
Manifest next update: Sat 18 Apr 2026 00:00:26 +0000
Files and hashes: 1: Yrcgx8X9stHwgpCHDOsVbc1hluI.roa (hash: ECVF6igxy3y3LufgBVxh6FK9Aw/oP5gnb7fO7cFVtSs=)
2: q2TJrlviZApf1pRYanBMo0wgh78.crl (hash: yEIDuMDw6xE8J5v1k7zBIoj5u4HWUG9qKiKLN9omww8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.mft
rsync://rpki.ripe.net/repository/DEFAULT/q2TJrlviZApf1pRYanBMo0wgh78.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:bd:29:f3:cb:6e:33:35:89:3e:04:a1:d6:3b:eb:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab64c9ae5be2640a5fd694586a704ca34c2087bf
Validity
Not Before: Apr 17 00:00:26 2026 GMT
Not After : Apr 18 00:00:26 2026 GMT
Subject: CN=3d5b53356e5dc8b41f68eb435dfe146b807a6d1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:6b:f3:c5:36:4f:4b:06:b7:3e:17:1e:6c:87:
2f:ff:be:05:6b:aa:df:8d:7e:55:b9:42:45:25:23:
90:44:bc:73:4b:18:14:40:88:f4:3d:dc:19:60:84:
5a:c6:9f:93:79:61:da:3a:80:47:30:f9:cf:ac:dc:
f5:10:75:20:72:a0:07:5b:03:29:ba:49:30:01:7b:
3b:74:df:dc:0a:0b:13:92:64:f7:27:1c:e2:d8:06:
55:4d:90:c1:ee:1c:2c:9c:56:ea:6e:4b:7d:f8:48:
15:d9:f4:15:27:b1:4c:59:7f:49:78:57:fb:2f:eb:
18:10:65:9a:94:9a:07:ca:50:ea:bd:15:09:c2:b6:
c9:74:6d:45:7c:09:96:1d:e0:ab:95:73:42:63:b8:
0d:88:be:c8:09:5b:9a:81:b8:55:e9:14:cf:b4:14:
ef:55:df:8f:17:04:7b:bd:cf:0d:82:90:be:03:29:
58:f6:bc:81:81:10:0f:e3:6c:70:b7:7e:c5:10:05:
3d:79:45:1e:2f:8e:86:e3:a7:8a:2e:f6:b8:9e:94:
c3:64:a9:2a:44:d1:7e:97:3e:c4:95:54:00:5d:96:
f6:a2:99:c3:b9:81:50:25:e3:ca:c0:46:e7:57:76:
fd:9c:35:65:31:06:a3:dc:c0:9f:7f:43:be:a4:60:
8d:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:5B:53:35:6E:5D:C8:B4:1F:68:EB:43:5D:FE:14:6B:80:7A:6D:1C
X509v3 Authority Key Identifier:
keyid:AB:64:C9:AE:5B:E2:64:0A:5F:D6:94:58:6A:70:4C:A3:4C:20:87:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q2TJrlviZApf1pRYanBMo0wgh78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:bf:9d:d3:7a:f9:22:cd:9d:66:1c:5d:86:5e:9b:3b:63:a8:
b7:73:60:56:de:46:20:b1:6f:c1:a5:84:eb:47:f7:64:80:41:
6b:b8:32:48:90:23:c7:97:f2:70:ad:e9:88:cb:8a:9b:a2:25:
d0:0e:22:6a:70:6e:a0:4a:51:e6:1b:07:43:44:1c:c6:a8:49:
ed:df:76:b3:86:89:2d:1d:2e:75:91:fe:82:48:53:d0:e8:a2:
71:93:9c:4b:c8:8a:a3:8c:c4:08:df:ad:8d:de:8a:66:66:cb:
6e:56:d7:c0:25:20:ce:9d:d8:26:3b:53:b2:f8:2f:32:a8:b9:
dd:90:3e:c0:af:95:8a:90:0c:29:91:39:ea:68:d0:cb:af:38:
ad:00:de:90:d2:40:fb:a0:da:8f:48:d3:a7:37:c0:ce:5b:fe:
cd:a2:48:78:ab:8f:91:a8:f8:6f:ca:c4:b4:0f:97:21:71:bb:
6f:8a:d3:77:a2:ab:42:4c:1d:3c:44:39:86:41:b4:46:fa:28:
59:60:8c:50:96:bc:8e:66:64:ab:fb:e5:30:6f:da:e2:ba:c7:
61:ef:59:ea:32:4d:2e:28:75:2b:fb:35:f6:f2:36:c1:68:2c:
ec:da:5e:ca:cc:4f:19:eb:e0:c9:b0:51:9f:92:83:f3:48:23:
fc:fd:e3:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:53:44 2026 by rpki-client