Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/ecda24-d7c3-446a-af36-fe5634c17cc9/1/Q5OKPegDvWyR8UrZZ71BQbigKK8.mft
File: Q5OKPegDvWyR8UrZZ71BQbigKK8.mft (raw, json)
Hash identifier: dof3D+iGbSaXWtAD5hjk0LX/DauyBcbts5xylStstnE=
Subject key identifier: 34:F7:DA:46:50:2B:40:D6:D6:70:3B:24:C9:64:83:D1:24:D8:A7:F3
Authority key identifier: 43:93:8A:3D:E8:03:BD:6C:91:F1:4A:D9:67:BD:41:41:B8:A0:28:AF
Certificate issuer: /CN=43938a3de803bd6c91f14ad967bd4141b8a028af
Certificate serial: 019D9BBE7BAD0B7A7E24B9BA47E0CBF095D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q5OKPegDvWyR8UrZZ71BQbigKK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/ecda24-d7c3-446a-af36-fe5634c17cc9/1/Q5OKPegDvWyR8UrZZ71BQbigKK8.mft
Manifest number: 15E3
Signing time: Fri 17 Apr 2026 14:00:45 +0000
Manifest this update: Fri 17 Apr 2026 14:00:45 +0000
Manifest next update: Sat 18 Apr 2026 14:00:45 +0000
Files and hashes: 1: Q5OKPegDvWyR8UrZZ71BQbigKK8.crl (hash: DYHCj0B27cekJtfyswXmW1RZ60lAqWhbArxzBSS3Je0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/ecda24-d7c3-446a-af36-fe5634c17cc9/1/Q5OKPegDvWyR8UrZZ71BQbigKK8.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/ecda24-d7c3-446a-af36-fe5634c17cc9/1/Q5OKPegDvWyR8UrZZ71BQbigKK8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q5OKPegDvWyR8UrZZ71BQbigKK8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:be:7b:ad:0b:7a:7e:24:b9:ba:47:e0:cb:f0:95:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43938a3de803bd6c91f14ad967bd4141b8a028af
Validity
Not Before: Apr 17 14:00:45 2026 GMT
Not After : Apr 18 14:00:45 2026 GMT
Subject: CN=34f7da46502b40d6d6703b24c96483d124d8a7f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:11:da:93:04:30:1f:4c:78:36:05:16:0c:a1:
92:7c:a6:d7:8e:c0:da:6d:85:89:24:85:a4:e4:dc:
df:f0:fe:bc:b3:cb:44:d4:a9:f9:60:70:6d:0a:0d:
db:cd:f0:9e:fd:f4:bf:51:c1:8c:86:d0:56:64:c6:
68:c0:5e:d0:3f:a2:0c:10:3f:99:ba:25:f1:1c:7e:
27:26:a8:fb:5c:b5:31:5a:3b:88:ce:cc:11:b1:4b:
4a:33:dc:1d:3f:51:db:f5:94:a1:04:77:14:b8:9a:
5e:35:1b:4a:07:b0:24:74:11:64:f4:89:b8:da:23:
c0:85:2d:3d:8f:19:6b:dc:3d:2b:5b:bf:7d:f1:7f:
31:6e:c3:c8:89:3a:fb:09:07:38:c1:ab:ff:1c:8f:
63:fa:82:1b:a9:b9:62:72:a3:b6:9e:85:31:76:0e:
ac:3a:2a:f8:40:89:ce:7e:cb:94:0b:c5:3c:a4:af:
47:4a:1e:e7:c0:3f:8c:68:b9:56:f6:8c:54:94:2e:
6d:f0:b0:69:20:f6:4e:fd:ba:15:f8:a6:5c:3b:3b:
0b:77:49:61:88:0c:41:55:bf:fb:71:ed:af:e8:a2:
9a:d9:72:9f:4c:b4:93:89:b6:a6:7c:97:92:01:1a:
5a:46:39:bf:1e:14:06:d6:b0:93:32:67:99:52:f6:
2b:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:F7:DA:46:50:2B:40:D6:D6:70:3B:24:C9:64:83:D1:24:D8:A7:F3
X509v3 Authority Key Identifier:
keyid:43:93:8A:3D:E8:03:BD:6C:91:F1:4A:D9:67:BD:41:41:B8:A0:28:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q5OKPegDvWyR8UrZZ71BQbigKK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/ecda24-d7c3-446a-af36-fe5634c17cc9/1/Q5OKPegDvWyR8UrZZ71BQbigKK8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/ecda24-d7c3-446a-af36-fe5634c17cc9/1/Q5OKPegDvWyR8UrZZ71BQbigKK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:1a:81:63:fa:9c:82:ac:04:32:3f:ea:aa:2e:07:e1:38:a2:
37:4a:5f:38:a5:eb:45:cb:58:55:3a:64:f3:13:03:46:06:6e:
c5:1b:50:df:66:aa:15:11:b0:80:97:78:43:8d:4b:23:e2:69:
57:18:46:eb:87:a3:42:f1:55:85:ec:23:e7:3d:b0:61:f7:47:
3e:ce:f9:0a:f2:99:79:e7:3b:68:82:0f:74:83:49:be:a3:39:
fa:ca:00:57:bf:5d:de:c5:39:03:c5:1b:32:ec:96:32:56:35:
58:9e:30:39:5f:c1:e5:d3:d4:98:87:3e:6f:72:bb:a4:90:9c:
89:6b:9f:eb:d4:15:37:34:c6:34:a4:1e:ee:bd:0e:98:04:e8:
26:e0:66:05:27:75:a3:eb:0e:c3:bf:b8:b8:94:f4:a8:12:fc:
86:81:c6:5d:c3:90:f5:76:28:42:8f:44:1b:27:90:40:0e:ca:
1f:c3:5c:b9:fc:b6:d7:72:a4:1f:33:d5:d9:b9:92:b8:28:2e:
ae:e3:13:20:9c:18:91:69:1d:15:bc:2a:0c:5a:fc:aa:98:51:
16:6e:25:6f:fa:ac:17:ed:d7:1c:e9:5d:74:11:11:6e:d4:58:
1f:ba:68:ee:79:be:28:0b:6f:22:2b:49:a8:3f:a3:1d:51:7a:
6a:53:9e:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:19:03 2026 by rpki-client