Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/5f6aff-13bb-4db8-957f-8d23ac5cb502/1/1QaXlDZ2OZrFysaj5HZUWvDfSd0.mft
File: 1QaXlDZ2OZrFysaj5HZUWvDfSd0.mft (raw, json)
Hash identifier: 9cpLzpbCA/yEUGdzSsA3NolqrN9AE6DTgjMAZcBBXiA=
Subject key identifier: AB:DC:98:82:2D:83:77:C8:DC:35:D7:33:AE:1C:9F:E3:CD:75:7D:B3
Authority key identifier: D5:06:97:94:36:76:39:9A:C5:CA:C6:A3:E4:76:54:5A:F0:DF:49:DD
Certificate issuer: /CN=d50697943676399ac5cac6a3e476545af0df49dd
Certificate serial: 019DA2D39B58134BCCE361706B754B8853E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1QaXlDZ2OZrFysaj5HZUWvDfSd0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/5f6aff-13bb-4db8-957f-8d23ac5cb502/1/1QaXlDZ2OZrFysaj5HZUWvDfSd0.mft
Manifest number: 0B0F
Signing time: Sat 18 Apr 2026 23:01:09 +0000
Manifest this update: Sat 18 Apr 2026 23:01:09 +0000
Manifest next update: Sun 19 Apr 2026 23:01:09 +0000
Files and hashes: 1: 1QaXlDZ2OZrFysaj5HZUWvDfSd0.crl (hash: gFIGv9mpiTvaj0POthKBYfs8g5uh0pzWVokykKCzdB4=)
2: Rb6ICVosTC_zaZ16edh9MPPlC-4.roa (hash: f7bv124K8RG4yyZpz3BCEJydd5vMDmuet5IH5Sqpc1Q=)
3: X9Dk1AunWGE1Dosy-zP1Hnz0r7o.roa (hash: /pQF82MMJDZaxsI41JYaoLCQk3D/NV9NF4tHkKVR/m4=)
4: oTAnj8V3sccufxLPJpZJ2av8j-A.roa (hash: +rK4QlG7dHwB2u8oBpVxeumts0TuXiCtUppM0dEFMEE=)
5: y81jmZh2IG1vc4T2rX8QCQEOL9E.roa (hash: Y1jjyD/MrRS3ujVJRgR28FUQy55OTENwus5vMZGjmSg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/5f6aff-13bb-4db8-957f-8d23ac5cb502/1/1QaXlDZ2OZrFysaj5HZUWvDfSd0.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/5f6aff-13bb-4db8-957f-8d23ac5cb502/1/1QaXlDZ2OZrFysaj5HZUWvDfSd0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1QaXlDZ2OZrFysaj5HZUWvDfSd0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 Apr 2026 23:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a2:d3:9b:58:13:4b:cc:e3:61:70:6b:75:4b:88:53:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d50697943676399ac5cac6a3e476545af0df49dd
Validity
Not Before: Apr 18 23:01:09 2026 GMT
Not After : Apr 19 23:01:09 2026 GMT
Subject: CN=abdc98822d8377c8dc35d733ae1c9fe3cd757db3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:3f:3e:6d:3b:c5:7d:8e:a7:57:1b:83:56:cf:
87:fd:43:b7:f2:f7:58:49:78:83:6f:d7:a1:f5:6e:
ca:b0:ad:05:3b:f6:2f:29:7a:ef:15:b7:67:4f:44:
18:f8:a2:11:a6:c1:fc:15:5a:ab:56:6a:a8:1a:4b:
67:4c:06:94:ec:8a:4d:c2:90:9a:b1:10:28:07:5b:
b7:c3:43:4a:38:3f:8d:29:40:20:a1:f8:47:98:e5:
6d:fd:a7:f1:bf:ba:8a:19:0e:e4:22:0f:0a:d7:e6:
6f:7c:5f:52:51:5a:9f:49:d1:30:77:41:ff:07:80:
fa:0f:33:bf:66:d4:24:d5:b3:59:d3:5f:27:e8:ca:
3b:e0:cd:d1:f1:61:9b:03:65:79:ba:f8:8e:07:c3:
46:21:71:fb:4d:ad:90:45:c2:e2:7a:e7:38:82:30:
a7:e2:c8:6c:01:85:cc:93:23:6b:c0:bf:55:03:39:
d8:00:92:a4:e3:4d:ce:5b:8e:63:32:dc:3d:6d:3d:
a3:9f:ce:f7:08:ee:4b:ff:d9:14:59:20:30:79:50:
5c:46:06:04:44:43:59:f4:a2:ac:bf:14:ca:b0:92:
02:48:3c:cd:1e:c0:2c:f4:9a:6e:89:9b:d8:b3:38:
93:f1:b2:11:38:84:b4:79:3d:84:0b:63:07:8b:74:
79:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:DC:98:82:2D:83:77:C8:DC:35:D7:33:AE:1C:9F:E3:CD:75:7D:B3
X509v3 Authority Key Identifier:
keyid:D5:06:97:94:36:76:39:9A:C5:CA:C6:A3:E4:76:54:5A:F0:DF:49:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1QaXlDZ2OZrFysaj5HZUWvDfSd0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/5f6aff-13bb-4db8-957f-8d23ac5cb502/1/1QaXlDZ2OZrFysaj5HZUWvDfSd0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/5f6aff-13bb-4db8-957f-8d23ac5cb502/1/1QaXlDZ2OZrFysaj5HZUWvDfSd0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:77:af:69:ab:49:71:6e:5e:21:46:46:dc:ea:b0:79:bc:57:
30:17:ea:a7:dd:9c:8c:70:78:7e:e9:89:f8:ed:1a:63:f6:c3:
cc:7d:ff:10:18:fe:3d:26:3b:bd:05:16:82:29:f6:7d:98:b5:
ae:37:36:fa:0c:22:68:40:6a:b3:8a:12:8d:99:b0:98:ae:0b:
9a:cc:5e:cb:6a:fd:b9:a3:c5:4c:bb:84:3a:bf:36:d9:5a:0a:
da:7a:a6:50:9c:e5:62:e5:d4:a5:eb:ff:4e:2f:39:01:ee:6a:
40:6b:d4:e0:3a:5a:da:76:83:c3:cb:3f:2f:b8:2a:b5:af:89:
6b:00:a3:76:5f:b5:4d:24:dd:a5:d6:54:ff:e6:c1:55:26:eb:
49:37:fc:53:07:43:1d:68:c2:14:98:c3:64:67:f4:37:de:07:
c5:fd:a9:cb:b8:df:c8:88:34:5b:7b:1c:9d:2f:19:13:28:fe:
a1:39:b6:0b:80:bc:e3:31:82:9a:69:bd:b9:33:90:80:96:83:
b9:42:a4:67:53:6a:a1:24:3e:46:45:01:0f:2d:bb:e3:65:7f:
ad:da:e3:2d:e7:64:9f:a9:4b:ae:01:f7:ff:ea:ce:41:f2:e5:
71:73:8a:fb:e9:43:0a:04:fb:95:21:b0:c8:4d:fa:0e:f1:80:
5a:5d:9d:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 09:44:02 2026 by rpki-client