Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.mft
File: QdD5FclU2DtKG_GEz7wTjEftpR4.mft (raw, json)
Hash identifier: MMu/aG0Kt0FcZnkmlxCExKYqCWac+ye04jfm1loo/mI=
Subject key identifier: F3:4E:E0:A4:1A:EF:AF:15:6C:0B:6D:BF:16:EB:F2:46:14:13:F0:3E
Authority key identifier: 41:D0:F9:15:C9:54:D8:3B:4A:1B:F1:84:CF:BC:13:8C:47:ED:A5:1E
Certificate issuer: /CN=41d0f915c954d83b4a1bf184cfbc138c47eda51e
Certificate serial: 019D992B8207E4ADA70DC94689BB40BCF136
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QdD5FclU2DtKG_GEz7wTjEftpR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.mft
Manifest number: 1554
Signing time: Fri 17 Apr 2026 02:00:58 +0000
Manifest this update: Fri 17 Apr 2026 02:00:58 +0000
Manifest next update: Sat 18 Apr 2026 02:00:58 +0000
Files and hashes: 1: QdD5FclU2DtKG_GEz7wTjEftpR4.crl (hash: MEmxsC3vag5tKPxleQnYFM85ej6qkeb+KXjmxufjF/M=)
2: fpHmAafjOGhBaMS1gbhoimd-T64.roa (hash: tNORG3Af35zgXnyNJfcnl9XFHgufLnvK+eM/0nmyONM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.mft
rsync://rpki.ripe.net/repository/DEFAULT/QdD5FclU2DtKG_GEz7wTjEftpR4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 02:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:82:07:e4:ad:a7:0d:c9:46:89:bb:40:bc:f1:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41d0f915c954d83b4a1bf184cfbc138c47eda51e
Validity
Not Before: Apr 17 02:00:58 2026 GMT
Not After : Apr 18 02:00:58 2026 GMT
Subject: CN=f34ee0a41aefaf156c0b6dbf16ebf2461413f03e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:e9:07:d1:ef:43:37:e0:88:f4:5a:a9:54:8a:
d3:1e:79:f8:3a:9e:7a:dc:17:a6:99:8c:5e:cc:93:
87:4e:c1:45:52:73:4b:d8:a7:2d:8c:da:89:ec:98:
5a:f3:e0:4d:90:b2:22:e5:dc:af:29:a4:b9:b8:b5:
78:fd:96:08:05:16:bf:f8:4b:7e:b3:e2:d5:e2:d4:
43:7e:e2:c0:44:07:00:25:1d:7f:98:b1:ce:a7:63:
32:c0:16:a0:5c:d4:76:24:3a:0b:0f:6f:5f:31:8f:
13:89:93:70:78:8e:1c:f3:b7:73:a8:92:80:07:41:
3a:90:a9:2d:59:44:5e:9e:20:39:49:f9:9c:5d:7b:
e8:fb:11:12:fc:50:77:81:fc:65:d6:19:15:0f:5f:
c8:65:aa:e4:7b:c1:3b:ca:78:1d:8b:b2:9b:1d:74:
5b:7b:9a:72:46:f3:b7:92:e5:c7:95:b2:12:77:66:
d6:28:8a:a6:08:f0:f6:aa:a5:71:f8:78:1c:a8:fe:
a5:80:d8:2a:6a:14:27:4a:7d:4a:b2:95:b6:51:7e:
2c:c6:af:ea:11:fd:81:a4:05:a2:d9:8c:78:e2:d4:
07:3d:b2:3c:9e:17:6a:14:3b:7a:6f:b5:7a:10:99:
5d:db:b8:b8:52:4f:24:3b:e0:ed:51:c3:76:58:a4:
8b:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:4E:E0:A4:1A:EF:AF:15:6C:0B:6D:BF:16:EB:F2:46:14:13:F0:3E
X509v3 Authority Key Identifier:
keyid:41:D0:F9:15:C9:54:D8:3B:4A:1B:F1:84:CF:BC:13:8C:47:ED:A5:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QdD5FclU2DtKG_GEz7wTjEftpR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:9b:c5:eb:88:3a:b2:a3:36:2d:cb:d8:0a:16:ed:a8:6d:bf:
a7:94:23:20:6a:88:86:f3:43:db:7e:40:12:7e:a2:23:9b:4b:
e5:fb:73:99:97:ec:86:cf:6c:b3:e7:1e:e8:7f:b8:87:2e:32:
33:69:37:18:58:44:70:88:b4:ae:7e:96:63:76:a5:7b:c9:a7:
43:ac:1f:b4:0b:d4:9e:89:ec:a8:93:27:09:31:a7:fb:3c:29:
65:cf:38:cd:36:fc:4e:f7:aa:25:92:7a:4b:ec:3d:df:f2:e4:
a6:cf:5f:04:21:74:a7:d9:b2:8e:ce:8b:8b:9d:83:5f:de:96:
2a:e2:25:b9:2d:cd:f3:01:d2:2d:15:d7:c3:1e:d3:69:14:5a:
ea:1b:a1:47:2d:e0:5d:c2:5f:e9:6f:96:88:40:c8:78:46:24:
f4:dd:0d:91:2c:81:12:85:0d:5d:a6:c7:1a:2e:02:3a:8e:4a:
74:ae:3b:93:bd:87:09:f9:8a:c5:6a:73:79:2a:92:9f:66:0d:
00:f9:37:63:87:cf:e0:93:ba:21:41:d0:e6:a1:4b:fa:4b:a4:
99:19:22:e9:94:7d:e8:a9:2c:08:be:f0:4e:76:49:5f:d1:ca:
8e:f5:1d:c4:84:c7:ff:50:8e:42:9d:ab:05:bd:51:9b:43:3b:
56:9d:14:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:57:17 2026 by rpki-client