Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft
File: Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft (raw, json)
Hash identifier: gkOth0+HYoOOHW+9RjsnEoWEzEq6mvW/ngAmCiypm58=
Subject key identifier: 9C:DD:7A:37:2D:B7:06:46:B2:8E:33:CC:60:0A:63:D7:6F:5C:95:FF
Authority key identifier: 43:68:33:0B:EA:2D:FE:88:0F:FA:62:F6:7B:56:6A:EA:E2:D2:87:FD
Certificate issuer: /CN=4368330bea2dfe880ffa62f67b566aeae2d287fd
Certificate serial: 019DA48A880CF8E42D0499CCD5945883A935
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft
Manifest number: 15F3
Signing time: Sun 19 Apr 2026 07:00:35 +0000
Manifest this update: Sun 19 Apr 2026 07:00:35 +0000
Manifest next update: Mon 20 Apr 2026 07:00:35 +0000
Files and hashes: 1: Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.crl (hash: nQhA+h9L+4fLueHIrZCdEhBGanKuAs0DJvNMyIB52o0=)
2: TQWvkAi8bonEzYNgt0Kx7jD-EqQ.roa (hash: 4l9r6gsisRPOUrwiMnNC/ZEB32QweKRJ3pss8gUXvAk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:8a:88:0c:f8:e4:2d:04:99:cc:d5:94:58:83:a9:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4368330bea2dfe880ffa62f67b566aeae2d287fd
Validity
Not Before: Apr 19 07:00:35 2026 GMT
Not After : Apr 20 07:00:35 2026 GMT
Subject: CN=9cdd7a372db70646b28e33cc600a63d76f5c95ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:6d:2d:bb:8f:cb:c9:69:d9:a0:90:ce:8a:44:
1f:a7:29:f4:1d:a2:57:bb:bb:b3:a7:9e:8c:45:6f:
ff:59:65:2f:0c:78:a7:44:a8:be:7a:45:ef:31:b3:
e7:ff:2a:16:ce:ee:51:33:e4:4c:76:6f:c2:62:54:
69:a0:47:56:e7:c5:83:dc:1d:dc:8b:5d:0e:cd:09:
9a:9f:dc:58:36:b8:f1:fc:7a:be:b1:05:de:96:e1:
d5:17:28:c4:c3:92:64:74:ea:a3:b0:c9:86:4a:5e:
28:ec:5e:86:fe:fe:7f:e7:85:93:1d:57:07:f8:96:
b3:11:a9:83:ed:ae:4a:96:f4:cd:70:03:5e:fb:52:
6f:ce:d2:a6:d9:a0:46:f7:11:72:25:fa:88:19:17:
81:b7:42:b0:7d:e4:74:e4:14:b2:23:68:29:fa:80:
dc:68:54:2b:c1:49:f5:6f:f2:a3:1f:94:e4:a9:4f:
35:0c:65:7b:89:e5:e2:80:51:cf:20:49:7c:74:6a:
45:b0:8d:ca:b9:e2:a9:41:d6:56:b7:39:57:20:bd:
3c:f7:1b:17:31:70:09:14:08:b2:46:28:59:0a:2b:
12:1c:76:0e:96:72:83:ec:7f:db:90:43:bf:a8:be:
92:41:4d:d5:1f:84:91:05:81:ae:a4:d7:d8:67:eb:
bc:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:DD:7A:37:2D:B7:06:46:B2:8E:33:CC:60:0A:63:D7:6F:5C:95:FF
X509v3 Authority Key Identifier:
keyid:43:68:33:0B:EA:2D:FE:88:0F:FA:62:F6:7B:56:6A:EA:E2:D2:87:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:10:34:d1:18:8e:c1:6e:1f:bf:e5:91:d8:5c:09:8c:38:38:
03:72:86:78:f2:22:75:89:41:ad:a0:46:e6:3c:4c:18:65:87:
49:5b:20:1a:cd:b1:91:94:47:2a:1c:d9:e5:6f:1c:fa:5c:81:
d0:0f:91:47:36:0c:85:ca:bc:e9:51:59:3a:34:18:1f:1d:0e:
aa:d6:28:a9:ba:0f:55:d2:0f:2c:36:f9:70:9a:96:42:3e:81:
93:b7:6a:18:1d:46:1b:d1:45:6e:4b:eb:d9:0d:12:4c:95:a6:
20:03:08:f5:bc:99:ab:89:df:89:48:5c:30:d6:74:43:dc:d0:
74:a0:70:c6:72:bf:10:07:7c:15:78:61:8f:e6:27:8e:c6:bd:
d1:3c:70:61:cd:3b:8d:6d:69:de:34:65:45:bb:10:bb:7d:10:
2a:ea:df:2d:74:d9:b3:50:10:58:c9:55:d9:9e:da:ce:ba:e0:
e2:fc:96:20:ba:fc:5c:cf:2a:07:87:55:7d:1c:40:8c:41:f5:
ff:3b:25:d4:76:8c:9c:46:bf:6d:53:f7:7b:52:41:20:3b:88:
65:8f:cb:f6:1f:aa:e0:8f:5b:fe:81:55:b1:a2:71:0f:3b:e5:
5f:62:43:2d:f4:66:d3:e3:8c:c1:24:ec:7f:6f:51:e8:8d:a9:
30:35:86:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 09:31:40 2026 by rpki-client