Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/3b3215-5721-4345-841b-2ad9308f1f6c/1/Qkq4x890A7ViChuBPmrR2g2stE0.mft
File: Qkq4x890A7ViChuBPmrR2g2stE0.mft (raw, json)
Hash identifier: nFIHroZWrsdpPN48YSSiSrXKNggCY4uF9vtJZ8rSVxU=
Subject key identifier: 1F:CC:61:3B:34:91:71:A3:34:4A:DE:40:50:64:8D:07:FE:AA:67:BF
Authority key identifier: 42:4A:B8:C7:CF:74:03:B5:62:0A:1B:81:3E:6A:D1:DA:0D:AC:B4:4D
Certificate issuer: /CN=424ab8c7cf7403b5620a1b813e6ad1da0dacb44d
Certificate serial: 019D9818819172B513FE3A9A9E217847D14B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qkq4x890A7ViChuBPmrR2g2stE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/3b3215-5721-4345-841b-2ad9308f1f6c/1/Qkq4x890A7ViChuBPmrR2g2stE0.mft
Manifest number: 18C3
Signing time: Thu 16 Apr 2026 21:00:36 +0000
Manifest this update: Thu 16 Apr 2026 21:00:36 +0000
Manifest next update: Fri 17 Apr 2026 21:00:36 +0000
Files and hashes: 1: Qkq4x890A7ViChuBPmrR2g2stE0.crl (hash: QqVO981AaFqW7WId/R1v3K1vI5qzsJWcSGpyP6rAzR0=)
2: dzTzYf-TKYJMVkOvvaBfstjTJ9w.roa (hash: ZIgS2/isxUOPCfVNIh153dBZ1pmUGjEqXD0BSekDaHQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/3b3215-5721-4345-841b-2ad9308f1f6c/1/Qkq4x890A7ViChuBPmrR2g2stE0.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/3b3215-5721-4345-841b-2ad9308f1f6c/1/Qkq4x890A7ViChuBPmrR2g2stE0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Qkq4x890A7ViChuBPmrR2g2stE0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 21:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:18:81:91:72:b5:13:fe:3a:9a:9e:21:78:47:d1:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=424ab8c7cf7403b5620a1b813e6ad1da0dacb44d
Validity
Not Before: Apr 16 21:00:36 2026 GMT
Not After : Apr 17 21:00:36 2026 GMT
Subject: CN=1fcc613b349171a3344ade4050648d07feaa67bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:54:d1:3d:e5:55:d7:58:0f:fc:f7:43:96:fa:
f9:90:a1:5f:5c:95:75:78:32:35:7a:42:22:6d:d8:
ea:99:18:2e:7a:92:2e:04:bf:18:5d:10:ce:4d:0d:
97:7f:9a:3e:09:54:4e:38:4c:89:45:0c:f2:f7:98:
5c:00:cc:a0:78:30:91:83:4c:f1:6b:a8:2c:0c:16:
f2:eb:1f:62:b1:23:9d:35:8d:72:3b:12:d9:da:39:
cb:bf:14:39:ff:0e:c8:1c:b4:a5:9b:12:78:27:96:
50:a9:67:5d:29:f6:d6:40:ed:20:d6:b3:bc:32:8c:
08:fd:0e:32:f9:d9:ed:76:9d:0c:4d:28:cf:86:da:
36:1e:d8:04:b2:dc:ef:8e:3c:60:8b:35:3e:b9:f7:
c2:0d:59:e5:58:3e:86:d2:fd:ea:70:00:d5:e1:02:
be:42:99:bf:31:e2:08:41:ff:a9:5a:2f:08:ad:38:
aa:10:39:46:5e:36:79:3b:e4:d6:e9:7e:05:ea:c1:
e9:a0:47:5e:2b:4a:15:25:31:2c:56:90:5d:ba:a2:
ee:54:87:c8:e5:d5:41:d1:c1:6a:bb:3a:13:93:de:
8d:2f:ce:15:2e:fa:53:ba:93:e0:33:8b:f7:1c:58:
77:d0:10:e6:ad:ae:35:ac:1d:ce:a8:c6:e2:6b:e7:
aa:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:CC:61:3B:34:91:71:A3:34:4A:DE:40:50:64:8D:07:FE:AA:67:BF
X509v3 Authority Key Identifier:
keyid:42:4A:B8:C7:CF:74:03:B5:62:0A:1B:81:3E:6A:D1:DA:0D:AC:B4:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qkq4x890A7ViChuBPmrR2g2stE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3b3215-5721-4345-841b-2ad9308f1f6c/1/Qkq4x890A7ViChuBPmrR2g2stE0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3b3215-5721-4345-841b-2ad9308f1f6c/1/Qkq4x890A7ViChuBPmrR2g2stE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:5b:4b:90:05:6c:04:45:95:df:46:6d:9a:fa:3b:c7:21:d7:
d4:56:53:49:62:cc:4f:15:09:59:23:a0:15:46:b2:83:bf:ae:
cc:c9:ae:c9:f1:c2:a4:63:e8:7f:dd:81:56:4d:a3:43:9e:7c:
51:d3:40:03:6e:15:27:e9:e6:a7:83:20:e0:87:08:eb:0e:8d:
78:74:94:d8:ff:1c:8d:a2:e4:e1:df:f7:d9:53:d1:2a:5a:60:
c3:45:74:da:8e:26:89:69:2a:2e:fd:94:08:dd:26:3c:fb:3c:
91:b3:e8:70:ea:46:18:fc:2e:5b:8a:5f:53:86:36:b9:82:49:
8e:a0:14:dc:88:80:03:a5:70:d9:f5:6a:ef:a1:49:2a:1c:2c:
71:46:f7:ee:32:aa:53:4d:da:ef:4e:e5:fd:4e:1f:aa:65:90:
32:47:b9:ed:40:e7:9a:2f:36:54:8c:08:8b:bd:44:4a:52:07:
8b:d7:2c:f0:13:28:44:0e:a0:33:72:06:1c:25:fc:ee:ce:b8:
c6:f8:27:fa:fe:ba:d9:ed:4a:3c:b5:46:df:22:54:f4:4d:22:
97:67:2a:9e:f1:3b:b9:8a:99:21:f4:66:6e:0f:cb:16:59:0c:
22:1d:c8:a9:7d:39:37:19:39:3c:5d:08:01:bd:f5:fe:23:24:
c3:74:a2:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 03:57:04 2026 by rpki-client