Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft
File: QqbmQBmAE94SolHwhgMM14xzJRY.mft (raw, json)
Hash identifier: jq0vbGHHGzX+mov+aEUdm1b7n5Czznu7xTzEyI9/oQI=
Subject key identifier: A3:89:F4:3F:56:A2:35:3F:60:EE:48:41:F7:D6:B8:9D:66:4C:6B:DD
Authority key identifier: 42:A6:E6:40:19:80:13:DE:12:A2:51:F0:86:03:0C:D7:8C:73:25:16
Certificate issuer: /CN=42a6e640198013de12a251f086030cd78c732516
Certificate serial: 019DA29C25914F6194D67AFD5559E8FD0827
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QqbmQBmAE94SolHwhgMM14xzJRY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft
Manifest number: 1856
Signing time: Sat 18 Apr 2026 22:00:35 +0000
Manifest this update: Sat 18 Apr 2026 22:00:35 +0000
Manifest next update: Sun 19 Apr 2026 22:00:35 +0000
Files and hashes: 1: GEvyRWGXbdbHUTAehbJp3YhlTgY.roa (hash: b/xFEmDMbOi0xEK2SMYux/TUJuKIqsMzgBODuaUhYag=)
2: QqbmQBmAE94SolHwhgMM14xzJRY.crl (hash: yJjWRYGG69PU3l5nKoPzj7KNYU2lloP8wsUObaYPRUE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft
rsync://rpki.ripe.net/repository/DEFAULT/QqbmQBmAE94SolHwhgMM14xzJRY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 Apr 2026 22:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a2:9c:25:91:4f:61:94:d6:7a:fd:55:59:e8:fd:08:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42a6e640198013de12a251f086030cd78c732516
Validity
Not Before: Apr 18 22:00:35 2026 GMT
Not After : Apr 19 22:00:35 2026 GMT
Subject: CN=a389f43f56a2353f60ee4841f7d6b89d664c6bdd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:4c:f9:83:c7:fe:16:c9:08:0d:97:34:2a:35:
10:51:a1:7a:25:78:ea:90:8a:23:83:2a:0a:9d:6b:
5e:ae:9b:cb:6a:32:e0:e6:89:b4:30:e4:b9:3b:b2:
cd:a7:3a:dc:85:eb:3f:96:e6:6d:e5:60:7f:47:60:
41:bf:6f:9e:79:15:40:1d:59:90:75:ab:16:ab:28:
bb:0b:76:60:78:00:67:d1:23:c7:19:cc:14:a6:e3:
66:4b:6a:15:1a:79:ba:54:94:1e:14:4f:8f:a7:ab:
15:8f:15:87:67:2d:86:f0:9f:aa:53:2c:81:6d:f3:
4d:53:55:6e:41:7d:a4:5c:8d:65:6f:c3:c4:d6:56:
86:7c:4d:c1:78:af:8d:dd:d9:31:0b:19:81:36:03:
68:37:03:06:c4:68:fe:b9:42:59:25:02:00:ea:91:
8c:d8:9d:13:cc:df:8c:3d:25:f1:52:42:f0:88:7f:
12:54:c3:b1:6d:31:02:b8:8f:48:c8:39:3f:9c:35:
73:ab:d1:16:75:ce:ab:c6:33:2f:8d:6b:63:e1:f4:
d1:08:32:e4:fc:37:17:9b:b6:9e:3d:c0:07:72:ec:
51:a3:86:d0:69:80:a5:ba:09:3a:ca:99:29:ed:2c:
7a:9c:2f:15:84:8b:12:d3:ba:46:aa:36:5d:40:69:
d4:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:89:F4:3F:56:A2:35:3F:60:EE:48:41:F7:D6:B8:9D:66:4C:6B:DD
X509v3 Authority Key Identifier:
keyid:42:A6:E6:40:19:80:13:DE:12:A2:51:F0:86:03:0C:D7:8C:73:25:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QqbmQBmAE94SolHwhgMM14xzJRY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:1e:b6:b2:f7:10:0a:ed:bc:95:5e:46:ec:7b:a5:65:73:ce:
8e:46:0f:93:97:ce:bc:88:bb:8b:af:2c:46:26:9c:ef:7c:08:
d3:90:22:bc:3d:94:c7:40:0b:80:1d:2f:2c:09:99:cd:e6:71:
d6:61:0b:73:ab:de:30:a8:29:c5:62:85:d5:35:06:f0:f8:a0:
84:30:94:82:09:57:e4:e8:25:1d:41:a5:05:4d:09:db:59:ed:
02:70:0f:22:2e:69:ee:ea:28:f2:4c:6b:90:12:5a:a3:b7:1f:
37:ce:1d:34:5a:30:9f:14:4e:be:9a:0b:7f:e9:c0:55:b6:84:
f8:4a:31:c4:24:0c:da:22:bf:6e:a4:e3:19:f7:36:ce:1e:79:
33:cb:33:46:28:56:04:64:ca:9a:73:47:25:61:12:34:08:d6:
27:0b:38:5d:35:ec:d1:bf:dc:ff:2d:2b:f9:e3:84:af:c3:dc:
e3:9e:ce:17:c7:c2:47:4a:01:96:79:eb:c1:41:65:e5:d4:77:
a4:03:27:d8:b3:90:2d:6a:b0:a4:43:f8:8e:be:4b:41:df:4b:
81:bb:1c:f0:ca:4d:73:92:d2:c3:d3:51:be:ff:be:b0:26:36:
93:78:48:12:59:9d:ad:81:b9:59:b0:ce:69:a4:6f:9a:b1:70:
6c:4d:42:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 08:54:12 2026 by rpki-client