Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft
File: QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft (raw, json)
Hash identifier: GyZsazI0VF0nzMYSR4CYP4btQHGkfpjjUGg2WJ9SDr4=
Subject key identifier: 7A:E4:CF:75:AE:57:AE:C6:83:C4:33:FF:5B:BE:9E:9B:11:46:8C:7D
Authority key identifier: 40:E3:95:3C:5C:B4:52:F1:59:F8:E1:50:5F:C7:02:E8:83:65:7E:72
Certificate issuer: /CN=40e3953c5cb452f159f8e1505fc702e883657e72
Certificate serial: 019D9886D6DBD8798D371D1284E8B04F8754
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QOOVPFy0UvFZ-OFQX8cC6INlfnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft
Manifest number: 18C8
Signing time: Thu 16 Apr 2026 23:01:06 +0000
Manifest this update: Thu 16 Apr 2026 23:01:06 +0000
Manifest next update: Fri 17 Apr 2026 23:01:06 +0000
Files and hashes: 1: 2pkPSs8gVn643UGplZoHfvgJ4jU.roa (hash: X1hpztinQvCh1GRCCDgW40Mdj2XAHD7UuWOgieEm9aw=)
2: 5_3H5oUB0Z5mLwXi_W_cQfYMDuk.roa (hash: NEc7QIS1126HxAUD9gRMIkc83/j75nLK/QAT5XjvVaU=)
3: JzhyAViO7IK7RlS2hXx7L9AIs80.roa (hash: DNuJU3HK3yevWo0xWtq0yRqUiOXXwFV8rL1Um11rKUA=)
4: QOOVPFy0UvFZ-OFQX8cC6INlfnI.crl (hash: 864uLzHDZBQcNWfl6p1kv25flzWj1dpZg9Hq/MTyzhg=)
5: zdUU6xh-U_UhQuIpzwDv3G1TgNc.roa (hash: Xcmlw4uYbZey4RR44rfO/TAhXzqgGs0gxnMsef5qoaI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QOOVPFy0UvFZ-OFQX8cC6INlfnI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:86:d6:db:d8:79:8d:37:1d:12:84:e8:b0:4f:87:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40e3953c5cb452f159f8e1505fc702e883657e72
Validity
Not Before: Apr 16 23:01:06 2026 GMT
Not After : Apr 17 23:01:06 2026 GMT
Subject: CN=7ae4cf75ae57aec683c433ff5bbe9e9b11468c7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:4f:47:68:f2:52:36:a1:fd:f0:d7:0f:4f:4c:
ca:6f:52:7d:32:50:5b:4b:45:1a:a8:cb:aa:87:30:
f1:f1:69:6f:02:61:f5:d5:6f:c2:6e:10:a1:96:b7:
e5:6c:90:52:b3:44:a6:47:64:8b:cf:88:fa:ac:e1:
93:ea:dc:d0:30:95:c3:51:01:fb:43:3e:76:b4:4a:
50:17:ac:04:03:f6:51:d6:12:07:b5:da:39:c1:23:
f8:72:67:2b:b1:86:08:4b:ec:80:95:54:65:49:6b:
fa:15:c0:47:33:4c:4f:9d:30:7a:f3:5e:ed:f2:c7:
67:36:0b:0f:22:21:1e:ff:2c:fc:42:bf:b3:d9:36:
f9:03:53:fd:62:59:18:d6:fa:4c:d0:5b:70:65:e2:
66:8a:9f:70:3f:54:66:d7:52:eb:92:2d:47:33:f6:
1a:12:6b:7f:c0:5a:75:b2:f1:f6:aa:28:be:eb:f2:
6f:3d:5c:87:e0:78:c4:bf:ba:0e:cf:68:70:d9:f4:
26:6c:ff:af:1f:c8:1f:82:53:ea:ba:6e:2c:fb:f7:
c6:73:0b:73:34:9d:d7:1d:fe:cb:a1:7f:a0:97:27:
54:1e:b6:85:6e:0c:ab:e2:5f:1c:8e:f7:97:ad:d7:
12:ec:1b:50:42:6c:a0:7f:ba:f4:ab:50:38:f9:b5:
2a:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:E4:CF:75:AE:57:AE:C6:83:C4:33:FF:5B:BE:9E:9B:11:46:8C:7D
X509v3 Authority Key Identifier:
keyid:40:E3:95:3C:5C:B4:52:F1:59:F8:E1:50:5F:C7:02:E8:83:65:7E:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QOOVPFy0UvFZ-OFQX8cC6INlfnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:dd:23:ae:bf:e9:54:d4:87:2d:a1:2d:46:06:4b:ff:1b:45:
ba:ec:da:3d:85:ab:4d:1f:6a:f5:0a:34:b8:bd:e9:3e:df:6a:
82:f2:34:b3:1c:64:c7:22:7b:d5:46:cd:c7:22:61:5c:f8:d7:
53:57:87:c4:fc:ae:01:41:4d:fc:78:36:75:4c:ba:95:ea:f3:
d7:74:8c:ea:14:53:83:0f:40:dd:1e:b2:e3:d2:82:bc:65:c7:
90:6d:b2:17:89:bc:ab:b6:56:c1:28:33:e5:3b:38:c2:23:18:
ee:e8:27:eb:fe:19:bf:bd:53:7e:4a:d0:19:fb:92:65:4d:d1:
31:e0:0f:2b:dd:ad:ec:bb:2a:ce:69:8b:ff:84:73:ed:ae:2a:
69:4a:93:02:6c:4b:d3:9c:42:09:78:61:ff:80:54:ac:f4:d5:
41:f1:8b:84:2d:f6:ed:55:11:f7:16:6b:4c:45:80:d7:4f:af:
8b:0e:44:ae:f3:58:63:cd:71:7f:d9:f7:f8:71:8f:65:ab:ad:
6b:65:32:af:7b:07:5a:e8:32:b8:4e:ed:96:ba:2f:32:f7:1c:
62:aa:ed:92:1b:2a:a9:53:ef:a9:32:92:67:d4:34:03:23:36:
55:91:e0:c0:f8:70:e0:a5:77:1b:d9:c7:04:df:12:f0:35:34:
99:ef:31:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:44:14 2026 by rpki-client