Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.mft
File: QsMDcZht9dVk7mcHRxe2agL_VxI.mft (raw, json)
Hash identifier: DjnjS4jA1HimNi/XQQFny0PWWBnd/mPERXBQanwiWSU=
Subject key identifier: 70:30:39:9B:1E:9D:2B:04:B2:E5:69:F3:2D:EB:1F:61:B1:20:1F:69
Authority key identifier: 42:C3:03:71:98:6D:F5:D5:64:EE:67:07:47:17:B6:6A:02:FF:57:12
Certificate issuer: /CN=42c30371986df5d564ee67074717b66a02ff5712
Certificate serial: 019D984FF25B71A23F049B913CC866437C1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QsMDcZht9dVk7mcHRxe2agL_VxI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.mft
Manifest number: 17B2
Signing time: Thu 16 Apr 2026 22:01:09 +0000
Manifest this update: Thu 16 Apr 2026 22:01:09 +0000
Manifest next update: Fri 17 Apr 2026 22:01:09 +0000
Files and hashes: 1: QsMDcZht9dVk7mcHRxe2agL_VxI.crl (hash: EHlACh6nLxO9QwqOMoSn1hAXslW7eiVSTFvaYutSZxM=)
2: kIdKfcVB8xoU-jL0GS61sHZEdFc.roa (hash: 0PfvIN3m+RMyfBShY3gPVZh53Z/48yCnaRs0eMSULZI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QsMDcZht9dVk7mcHRxe2agL_VxI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:4f:f2:5b:71:a2:3f:04:9b:91:3c:c8:66:43:7c:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42c30371986df5d564ee67074717b66a02ff5712
Validity
Not Before: Apr 16 22:01:09 2026 GMT
Not After : Apr 17 22:01:09 2026 GMT
Subject: CN=7030399b1e9d2b04b2e569f32deb1f61b1201f69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:6e:1a:4f:e5:c2:f6:20:bf:73:fc:b0:0c:f3:
3f:42:c0:3a:db:21:60:c9:f3:39:57:29:6c:70:ea:
dd:44:64:0a:9c:3e:54:1d:bb:e1:44:a9:28:23:ed:
c1:e9:52:19:56:8d:87:60:21:69:33:af:78:17:03:
23:40:59:87:0c:bd:ef:a1:db:f5:b8:22:5f:9f:fb:
b7:63:05:c3:50:de:f7:5f:6d:0d:91:87:73:6f:8a:
1e:9b:a3:d8:d0:c2:85:2a:ff:e3:99:9f:e1:ef:b3:
58:15:97:77:86:9e:01:a3:87:b5:11:92:7f:d2:29:
02:84:1a:0c:6a:ef:10:71:2e:4f:43:8a:81:15:ee:
b0:2c:9e:92:a3:0d:f5:4e:16:fa:a7:0c:d6:04:87:
5b:96:ab:06:d9:0c:49:02:46:63:54:b3:0b:48:36:
c3:32:2b:2b:a4:76:f8:ce:68:ad:90:eb:d6:64:9f:
15:13:a1:5f:b6:95:a0:73:a1:cf:c1:42:76:6e:cd:
a4:35:61:35:42:71:c5:78:65:12:e7:ef:05:08:50:
61:ea:f5:e7:62:7a:a9:27:3f:28:59:60:d2:bf:6c:
96:e9:16:f9:f1:e6:9d:d0:8a:df:72:92:ed:80:33:
7b:1c:7a:a9:25:c5:9b:5a:d5:16:aa:43:53:7e:f5:
16:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:30:39:9B:1E:9D:2B:04:B2:E5:69:F3:2D:EB:1F:61:B1:20:1F:69
X509v3 Authority Key Identifier:
keyid:42:C3:03:71:98:6D:F5:D5:64:EE:67:07:47:17:B6:6A:02:FF:57:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QsMDcZht9dVk7mcHRxe2agL_VxI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:4e:75:22:e6:dc:ce:ba:9d:27:79:8b:fb:63:97:fd:c7:4d:
49:a6:ac:be:99:39:11:14:58:f5:7a:10:82:ce:c0:59:e8:13:
92:eb:02:a3:63:d9:63:ab:c5:88:1f:78:05:fd:b8:ba:1d:5b:
aa:33:99:18:a4:b3:42:ff:65:c8:4f:3a:9e:44:26:6c:d8:a6:
d3:13:8c:19:6f:58:fd:99:3c:fd:8c:31:ac:d9:2f:55:38:98:
1f:4a:fe:7d:b0:1b:48:83:c4:57:70:f4:3a:14:59:9a:3d:9e:
1e:01:e4:75:4c:0f:7c:47:63:53:10:38:1b:6c:b6:c4:c6:34:
3c:1b:6b:08:49:7a:f6:c6:1b:ff:b7:fd:88:5d:e5:e9:71:3f:
c7:47:1f:14:e5:38:ff:cd:86:ab:7e:f0:ad:43:59:ca:4e:79:
4c:0b:f0:9e:25:bb:ec:4b:a8:ff:58:ae:65:a7:f0:26:de:c1:
37:6c:d4:19:56:23:fc:e5:b5:f0:1b:3c:2d:cc:ab:9e:17:6a:
97:14:08:d6:99:81:52:65:60:8d:b5:76:c1:d8:9d:eb:4f:58:
11:18:70:b1:0b:16:71:0a:33:26:6c:f3:14:04:6a:f6:ff:3d:
60:c2:02:27:73:f1:e2:db:a6:7e:d0:3c:8c:d5:14:29:a7:ef:
ab:07:08:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:48:25 2026 by rpki-client