Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.mft
File: qHxnPzWntwWmtCTTORT6OS07li4.mft (raw, json)
Hash identifier: OiHl5M5T7iqkn71IDlulF3H9GPUPvy90RM9X+/jCXPM=
Subject key identifier: 90:E3:62:53:EE:53:8A:D7:FB:35:83:C4:3A:A3:5D:36:BD:51:D3:43
Authority key identifier: A8:7C:67:3F:35:A7:B7:05:A6:B4:24:D3:39:14:FA:39:2D:3B:96:2E
Certificate issuer: /CN=a87c673f35a7b705a6b424d33914fa392d3b962e
Certificate serial: 019D98F4FEC04308B7A2C5DBCC4EC1B21591
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qHxnPzWntwWmtCTTORT6OS07li4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.mft
Manifest number: 0B3C
Signing time: Fri 17 Apr 2026 01:01:25 +0000
Manifest this update: Fri 17 Apr 2026 01:01:25 +0000
Manifest next update: Sat 18 Apr 2026 01:01:25 +0000
Files and hashes: 1: MdQ19d3eFkD78fJxuXq5iy-2rpM.roa (hash: rp9j2xxR/tRXFv1++j74kJ2PghVMO1/nSR5xC0/6LuE=)
2: qHxnPzWntwWmtCTTORT6OS07li4.crl (hash: GGaVHR29ShizfhSAihlvXMTmpVd3COXE4cAnE6fS8I0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.mft
rsync://rpki.ripe.net/repository/DEFAULT/qHxnPzWntwWmtCTTORT6OS07li4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:fe:c0:43:08:b7:a2:c5:db:cc:4e:c1:b2:15:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a87c673f35a7b705a6b424d33914fa392d3b962e
Validity
Not Before: Apr 17 01:01:25 2026 GMT
Not After : Apr 18 01:01:25 2026 GMT
Subject: CN=90e36253ee538ad7fb3583c43aa35d36bd51d343
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:1e:7d:10:d2:da:6b:b9:61:64:bd:e8:b2:11:
e3:ff:e5:7e:54:bf:78:db:75:86:33:85:16:5e:2c:
78:22:55:79:3e:3c:a7:d7:4f:92:08:34:3d:80:9f:
e9:22:4b:45:24:9d:cc:47:60:f4:f1:b9:a4:ba:44:
9c:5b:42:5f:d3:23:3c:67:91:14:01:42:fe:93:6e:
f2:36:1b:dd:14:36:b0:30:32:b0:93:2f:61:a4:5f:
ee:31:59:33:44:28:ac:21:d4:54:ea:db:19:b5:20:
4c:78:74:61:0a:f9:44:6a:a6:a9:39:6a:e7:39:2d:
0f:46:41:bd:55:ae:e9:bd:1b:2d:49:a3:53:7f:6f:
b7:87:c2:b1:79:33:ef:66:5f:ea:b6:c7:1d:b1:78:
5c:7d:49:b7:7e:4b:26:03:ef:9c:bf:72:81:ec:cb:
29:41:3b:f9:bf:fb:38:bb:ec:51:88:58:1a:98:75:
ac:f2:8f:2c:e5:f0:e5:2a:af:31:1c:1f:2f:95:50:
1b:68:7b:e4:cc:f3:8a:1b:f7:64:71:a3:70:36:ec:
6e:0e:b7:67:5b:88:6f:2e:ee:51:47:c2:d2:b5:a5:
b2:09:4c:63:c5:f6:7f:ab:2f:da:86:3a:79:a0:99:
97:48:dc:cd:94:e7:c0:2d:8a:b4:4b:4a:4c:7d:5e:
31:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:E3:62:53:EE:53:8A:D7:FB:35:83:C4:3A:A3:5D:36:BD:51:D3:43
X509v3 Authority Key Identifier:
keyid:A8:7C:67:3F:35:A7:B7:05:A6:B4:24:D3:39:14:FA:39:2D:3B:96:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qHxnPzWntwWmtCTTORT6OS07li4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:f3:52:80:07:87:b7:3a:88:cc:49:03:10:da:00:c1:ca:30:
cb:e2:b9:8b:fe:7b:30:2c:5f:52:ed:f3:4d:e3:66:e5:59:f9:
67:36:24:73:ff:24:3e:ff:7d:36:89:88:28:31:73:66:9a:dd:
13:0f:53:85:cf:76:1c:83:29:91:91:27:7c:52:7f:1d:c8:53:
a2:9f:49:1c:f7:db:8a:6f:ef:f2:2b:dd:9e:db:cc:9f:17:b5:
40:74:ec:a2:16:04:a3:9c:b2:e6:5f:3f:35:5e:c6:a0:4a:36:
83:75:a8:17:f8:63:43:da:48:e4:e9:c0:a3:0f:40:95:6f:b6:
7a:13:83:1e:da:af:9e:da:da:38:ee:0e:94:9d:07:96:36:d0:
01:65:01:e7:41:1a:fc:df:59:c6:9c:42:49:c4:09:b0:0c:bc:
9e:67:b7:38:e9:6a:c4:08:93:00:84:97:0e:bc:0f:a2:75:58:
f0:0b:8e:67:99:ff:17:1a:df:f9:75:5a:aa:1f:11:79:47:b7:
28:1a:7c:d7:4e:4d:67:98:12:5c:94:9e:bb:71:9d:2b:6b:64:
00:c1:0b:ac:41:26:5b:da:b0:2c:de:2a:57:3e:28:83:0e:d1:
25:ba:d1:65:5b:59:08:c1:5d:68:8c:87:76:15:29:17:c6:6e:
fd:11:8e:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 08:05:29 2026 by rpki-client