Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.mft
File: Q94YPxSj8k-bhtBE-HcphoC1Ers.mft (raw, json)
Hash identifier: GWzSnDtV+JjvG5bmUM4XVELxb7pnCZ62G2JEUeIN1dk=
Subject key identifier: 0D:7D:59:28:30:9C:56:A9:1B:09:FB:BC:54:BB:66:A1:B7:9F:A4:40
Authority key identifier: 43:DE:18:3F:14:A3:F2:4F:9B:86:D0:44:F8:77:29:86:80:B5:12:BB
Certificate issuer: /CN=43de183f14a3f24f9b86d044f877298680b512bb
Certificate serial: 019D98864D56B0775448D9E6421EE6006437
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q94YPxSj8k-bhtBE-HcphoC1Ers.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.mft
Manifest number: 072B
Signing time: Thu 16 Apr 2026 23:00:31 +0000
Manifest this update: Thu 16 Apr 2026 23:00:31 +0000
Manifest next update: Fri 17 Apr 2026 23:00:31 +0000
Files and hashes: 1: Q94YPxSj8k-bhtBE-HcphoC1Ers.crl (hash: oOAfLMC8MrmGNaHQ8vnNzB9/Trb6TETAoFYMIINmKqc=)
2: eRzoAPCehzYUsTKWzumpWnRkGv4.asa (hash: XuGTrIZBYEhP0vD01NV66qn1i9p1ktzdlWy+jaqHixE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q94YPxSj8k-bhtBE-HcphoC1Ers.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:86:4d:56:b0:77:54:48:d9:e6:42:1e:e6:00:64:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43de183f14a3f24f9b86d044f877298680b512bb
Validity
Not Before: Apr 16 23:00:31 2026 GMT
Not After : Apr 17 23:00:31 2026 GMT
Subject: CN=0d7d5928309c56a91b09fbbc54bb66a1b79fa440
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:12:ad:b3:1b:f3:cd:6f:21:07:51:37:91:c4:
95:a2:fc:39:0d:a4:a0:e1:06:bd:d7:78:0f:45:75:
57:b6:b9:c9:72:fc:fb:05:ff:bc:82:6a:56:c3:f9:
30:89:cb:86:af:33:2f:c8:2c:d7:1e:dd:c1:5e:96:
0a:38:32:f1:4d:90:cd:6d:dc:2c:53:f4:a3:16:64:
25:f6:11:3c:79:c1:08:ea:f4:0a:8f:62:61:d4:0b:
f3:cf:45:66:de:0a:b1:6f:5b:52:91:0a:a4:81:7b:
b4:0f:bb:c6:d5:fc:2d:31:f2:3b:84:f9:b5:ea:d4:
0d:e4:d5:7d:ad:68:28:fd:db:f9:ab:ed:ab:18:6f:
63:51:51:68:74:e9:39:af:8b:23:16:4e:c3:ef:79:
9a:8d:9c:01:54:a1:79:d6:41:fa:ec:9c:02:67:87:
b4:b9:ff:46:0c:d9:07:2c:ac:e6:08:cf:43:e4:a3:
28:25:5d:10:bb:6f:ab:4b:2e:a0:0b:a0:57:c2:8c:
a6:7e:42:d4:23:6f:90:b8:2b:e9:c8:66:95:cd:c3:
66:84:0b:85:91:d0:11:7e:e4:ce:3c:15:b4:64:00:
ae:34:5d:4b:a0:59:ac:04:10:d2:ee:5d:1b:2f:eb:
5e:e8:7e:a4:d6:a8:39:b0:df:e2:12:a5:3e:bf:91:
cf:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:7D:59:28:30:9C:56:A9:1B:09:FB:BC:54:BB:66:A1:B7:9F:A4:40
X509v3 Authority Key Identifier:
keyid:43:DE:18:3F:14:A3:F2:4F:9B:86:D0:44:F8:77:29:86:80:B5:12:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q94YPxSj8k-bhtBE-HcphoC1Ers.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:f0:2c:69:0d:34:fe:3e:09:1b:81:2f:ae:86:2e:de:c6:85:
a5:a7:a8:74:99:a9:6b:04:63:ae:3f:a8:23:14:02:86:6a:ac:
8a:a4:2e:61:09:07:dc:2d:92:48:a2:64:68:2c:b5:3b:95:a8:
98:11:1c:4b:40:42:78:3d:3a:5b:2f:90:1e:c9:00:b0:36:50:
83:cb:ac:f3:e9:a8:10:7a:29:63:3b:dc:f7:e5:2d:16:f4:c5:
b8:60:ca:f7:c5:72:14:f3:c1:69:78:a2:1d:fd:0d:48:19:e2:
2b:37:23:5d:a1:98:3c:ea:a5:97:10:9a:b6:c1:f1:04:c5:08:
95:8f:c4:95:cb:f2:e6:d6:4a:25:e8:57:77:c0:4e:88:ea:f0:
8c:76:7a:72:88:54:ce:71:88:c1:1d:da:48:14:a3:42:99:f8:
18:dc:22:70:dd:d1:03:51:ee:1e:31:91:f8:92:8f:0d:95:b3:
63:b0:f7:1c:e4:a2:fe:54:28:53:81:df:f9:eb:7f:d7:78:d8:
41:ce:52:16:87:05:33:88:73:b3:d0:70:7d:83:19:f4:e2:28:
95:0a:14:be:5c:15:e0:2a:b4:6c:50:e5:7f:5d:0b:b4:c6:6b:
81:62:4c:fc:37:04:2c:7b:11:6f:31:47:03:e0:ee:81:4b:02:
29:aa:72:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 05:07:48 2026 by rpki-client