Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/3f9619-4bd0-4aba-90e2-7c3f8c40c510/1/q9lqrojvmbTVDknsrpyuSPN4gfc.mft
File: q9lqrojvmbTVDknsrpyuSPN4gfc.mft (raw, json)
Hash identifier: n6penG7zqw8ZPwpKKT58YX/kCprp7f0vRUd0vS64Arc=
Subject key identifier: 88:B4:DD:79:7E:62:35:2B:A1:BF:FA:1F:A9:6E:CC:8E:98:4F:2E:5E
Authority key identifier: AB:D9:6A:AE:88:EF:99:B4:D5:0E:49:EC:AE:9C:AE:48:F3:78:81:F7
Certificate issuer: /CN=abd96aae88ef99b4d50e49ecae9cae48f37881f7
Certificate serial: 019DA41D323F6385AB5ADB13421C6D59D455
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q9lqrojvmbTVDknsrpyuSPN4gfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/3f9619-4bd0-4aba-90e2-7c3f8c40c510/1/q9lqrojvmbTVDknsrpyuSPN4gfc.mft
Manifest number: 0516
Signing time: Sun 19 Apr 2026 05:01:09 +0000
Manifest this update: Sun 19 Apr 2026 05:01:09 +0000
Manifest next update: Mon 20 Apr 2026 05:01:09 +0000
Files and hashes: 1: 1-DN9R_xhKOI4mV80WkUcPVaagQc.roa (hash: ASJpdR212uLae0GK1ckKJRJ0hpliZAorVI6HruZ1pYo=)
2: q9lqrojvmbTVDknsrpyuSPN4gfc.crl (hash: veWTELfTUICBU5MGI5bqnIGIGh2dnXnf9xwW/i6RXrs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/3f9619-4bd0-4aba-90e2-7c3f8c40c510/1/q9lqrojvmbTVDknsrpyuSPN4gfc.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/3f9619-4bd0-4aba-90e2-7c3f8c40c510/1/q9lqrojvmbTVDknsrpyuSPN4gfc.mft
rsync://rpki.ripe.net/repository/DEFAULT/q9lqrojvmbTVDknsrpyuSPN4gfc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:1d:32:3f:63:85:ab:5a:db:13:42:1c:6d:59:d4:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abd96aae88ef99b4d50e49ecae9cae48f37881f7
Validity
Not Before: Apr 19 05:01:09 2026 GMT
Not After : Apr 20 05:01:09 2026 GMT
Subject: CN=88b4dd797e62352ba1bffa1fa96ecc8e984f2e5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a4:11:d3:74:7b:df:26:1d:a9:85:a0:03:7f:
09:e8:ce:d5:2a:b3:a3:c8:8e:c5:ba:ab:47:bb:bc:
09:03:d0:fc:aa:22:79:59:6c:9d:5c:52:65:ff:b8:
aa:7d:82:f9:4d:d6:8a:b6:1e:b1:0c:82:54:b3:f7:
91:ac:94:e9:e1:48:77:08:c9:59:79:7c:07:1c:4f:
3c:a7:2c:a5:b2:0e:ce:b0:b0:93:26:43:e7:83:32:
21:5e:28:4e:90:2c:0d:dd:da:08:76:e1:80:8e:2e:
94:5a:7e:b3:29:b5:e5:21:f9:ab:ab:8e:33:f8:75:
f3:43:f4:5f:36:6b:9b:11:78:4c:40:74:06:c6:74:
2b:68:ea:6f:6e:e9:d2:f0:e8:88:89:4e:77:30:ed:
73:06:d6:a6:48:f0:a8:e3:2e:80:60:f5:68:1a:d9:
af:36:6e:a8:ce:2f:90:cd:67:c1:5c:56:47:3f:f9:
7f:78:a6:3b:57:4f:e8:96:92:2d:4b:da:d4:fb:a0:
42:b9:3b:b0:4f:84:19:ac:c9:2f:d5:d2:9f:08:d5:
f0:a4:19:f7:cb:38:ad:56:29:cb:6e:c7:e0:21:d8:
7d:fc:ec:f4:0d:14:6e:65:66:e6:2d:ad:c9:32:5b:
7e:6c:54:0c:a4:58:db:ea:47:97:f8:d8:11:78:ca:
0a:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:B4:DD:79:7E:62:35:2B:A1:BF:FA:1F:A9:6E:CC:8E:98:4F:2E:5E
X509v3 Authority Key Identifier:
keyid:AB:D9:6A:AE:88:EF:99:B4:D5:0E:49:EC:AE:9C:AE:48:F3:78:81:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q9lqrojvmbTVDknsrpyuSPN4gfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3f9619-4bd0-4aba-90e2-7c3f8c40c510/1/q9lqrojvmbTVDknsrpyuSPN4gfc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3f9619-4bd0-4aba-90e2-7c3f8c40c510/1/q9lqrojvmbTVDknsrpyuSPN4gfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:19:8d:3a:aa:c9:aa:d0:56:01:a4:f3:cf:b8:8d:ad:90:e3:
0b:b9:41:cd:e1:02:1c:7e:f8:e6:50:73:19:34:37:19:33:15:
80:a0:fd:45:9a:f1:b0:ea:4d:d4:8b:7c:2e:22:61:dd:9f:0f:
7a:94:7a:2a:e8:55:58:ea:c7:b7:dc:39:96:a7:6a:d6:f7:0e:
ee:51:81:54:a2:72:c5:f1:61:94:3a:33:a0:b7:f7:41:0f:87:
4d:a9:22:3a:b1:04:fa:54:60:fd:88:d9:f4:9a:df:a9:c8:a4:
a0:fb:6f:af:87:37:60:fe:41:81:a4:eb:54:0c:64:7e:ce:ed:
93:83:09:45:f8:12:21:5b:87:5d:59:ee:88:09:70:58:2a:a9:
a1:7b:94:77:e7:63:d3:16:17:07:c9:78:0c:3a:80:82:52:a0:
38:65:80:66:3a:4c:7b:5a:6c:10:6d:85:b9:d1:47:db:f2:61:
e0:38:68:60:40:c3:e4:63:ae:a4:28:7a:78:b4:ab:80:23:bf:
b0:a0:1e:a2:b9:98:0d:69:f8:ec:44:79:50:62:ed:86:03:91:
2c:57:05:ce:cd:d7:83:34:72:60:b3:c5:55:5f:fc:92:02:d5:
3d:3d:7e:3a:46:2a:83:4f:82:ea:84:22:90:3e:20:d2:0f:9f:
63:bc:8d:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 08:54:01 2026 by rpki-client