Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
File: QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft (raw, json)
Hash identifier: HcEuofqUgMzcBnZSdMU5LsmoATXbQTIetycSZXUVEjU=
Subject key identifier: 8B:CD:B3:16:34:A5:2F:D9:8F:74:FB:7E:B8:35:3A:81:B8:DC:69:6E
Authority key identifier: 42:1B:4C:D4:0B:AE:47:D4:8F:51:C9:CC:CC:60:7C:CE:57:CE:00:F7
Certificate issuer: /CN=421b4cd40bae47d48f51c9cccc607cce57ce00f7
Certificate serial: 019DA4C17F09ED6690C8A06D8E1314783DCE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhtM1AuuR9SPUcnMzGB8zlfOAPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
Manifest number: 18C7
Signing time: Sun 19 Apr 2026 08:00:37 +0000
Manifest this update: Sun 19 Apr 2026 08:00:37 +0000
Manifest next update: Mon 20 Apr 2026 08:00:37 +0000
Files and hashes: 1: QhtM1AuuR9SPUcnMzGB8zlfOAPc.crl (hash: qiPnGwTFZvX/eOt7tD8Xy5EjLlbjWQQuerepl1rxB7M=)
2: vvBOQ04V9GOEp_xWifhOTx36DlE.roa (hash: kyJgbX8RGqWByplGJZ1fz/UdnF/eQPqYIRllvHcTi70=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
rsync://rpki.ripe.net/repository/DEFAULT/QhtM1AuuR9SPUcnMzGB8zlfOAPc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:c1:7f:09:ed:66:90:c8:a0:6d:8e:13:14:78:3d:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=421b4cd40bae47d48f51c9cccc607cce57ce00f7
Validity
Not Before: Apr 19 08:00:37 2026 GMT
Not After : Apr 20 08:00:37 2026 GMT
Subject: CN=8bcdb31634a52fd98f74fb7eb8353a81b8dc696e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:eb:d1:04:4d:3e:ef:d7:9d:eb:78:b6:8a:27:
35:e9:6b:33:b3:f8:23:33:d0:7a:17:b8:2a:63:46:
6d:70:f1:83:29:0e:1e:f1:d5:55:a8:c6:ad:04:e1:
4b:c2:cc:b8:a8:c5:2e:0e:4d:7e:c9:c8:31:a9:90:
75:6e:7b:d6:88:9c:38:a5:45:4c:30:74:0d:3a:6f:
6d:b7:02:5a:64:8a:d8:71:3a:e0:2f:ff:8b:9a:92:
67:49:9f:ea:fa:55:75:9a:e5:df:3a:ae:cc:52:26:
0d:b6:5a:b4:d2:3e:80:a0:be:b1:24:a5:35:0b:60:
a8:a6:1a:9b:41:d1:90:fd:a3:5d:a9:36:a7:ca:d5:
1d:30:a2:a4:68:37:ca:18:da:b2:72:9c:fd:c5:7a:
6c:8c:50:cf:a1:75:28:33:0b:bd:ad:a3:fc:26:f1:
8c:fa:c1:23:3b:e3:f6:2a:f0:c2:b4:c8:54:e3:8c:
c4:4f:40:28:f5:60:5b:c1:e2:d2:80:bb:0d:7f:9c:
a2:50:68:35:01:49:5e:bd:ae:92:c9:31:94:61:8b:
c4:7d:a3:ab:b7:bc:73:f7:ca:10:1b:37:72:17:93:
20:5b:09:74:f5:dd:0c:b5:19:d6:89:00:61:31:20:
ad:a7:1a:d7:40:8f:5f:0a:01:89:d9:04:4d:87:ae:
c8:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:CD:B3:16:34:A5:2F:D9:8F:74:FB:7E:B8:35:3A:81:B8:DC:69:6E
X509v3 Authority Key Identifier:
keyid:42:1B:4C:D4:0B:AE:47:D4:8F:51:C9:CC:CC:60:7C:CE:57:CE:00:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhtM1AuuR9SPUcnMzGB8zlfOAPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:3e:30:b9:a5:8c:fb:21:e6:d2:48:d3:bd:bc:2f:1d:35:c2:
77:59:29:60:c2:8c:2a:9e:7a:c9:c4:b1:0c:b1:92:05:eb:9b:
1f:ff:7c:c4:34:fd:b5:38:0a:a5:57:1c:1d:0a:43:ea:3b:4d:
4d:a9:58:8c:6a:18:d0:dc:9d:03:90:71:60:a3:b4:cd:d5:36:
46:dd:3b:ce:e2:a5:e2:a0:a8:3d:32:b5:a2:c8:7b:0c:ad:16:
09:14:00:82:1e:bb:df:a5:4b:06:f5:91:53:d8:ef:25:ed:50:
1e:1c:21:f1:ac:eb:9a:8c:55:dc:6a:42:8b:6b:3c:2a:c7:80:
c9:0f:aa:06:a8:ce:f3:ac:35:84:f7:c9:9e:1e:7e:20:dd:a3:
35:2a:92:96:c1:57:57:00:fd:9f:d7:67:46:99:49:66:30:2d:
db:7a:f2:95:ae:b4:af:56:8f:e3:f5:ab:f5:c0:6f:86:ee:25:
11:c3:bf:14:c7:4a:de:83:0e:64:95:50:bd:6f:06:14:09:76:
53:eb:ab:8d:e2:3b:ac:a4:05:8a:36:02:c9:be:11:24:e6:c7:
a7:c2:d3:09:92:ce:12:39:a4:2f:de:92:f7:2e:32:50:ab:43:
91:25:6f:e3:bc:ab:bb:79:20:13:ad:60:62:c0:36:40:37:7e:
07:14:a5:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 13:43:13 2026 by rpki-client