Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/eb31db-e654-491e-a141-91d50738d1e8/1/qsqNwMC5IbCJ8WAmGORVN5enR0I.mft
File: qsqNwMC5IbCJ8WAmGORVN5enR0I.mft (raw, json)
Hash identifier: d8ijJqofY+7/p+DA68+ItTPqoT2PPPYhUeHAzAeOdqQ=
Subject key identifier: 2D:A5:B8:D2:18:8B:92:E9:19:94:37:F1:92:67:BB:7D:EC:3D:B3:05
Authority key identifier: AA:CA:8D:C0:C0:B9:21:B0:89:F1:60:26:18:E4:55:37:97:A7:47:42
Certificate issuer: /CN=aaca8dc0c0b921b089f1602618e4553797a74742
Certificate serial: 019D9AE39FFAAA88FED387282CD7EFD7EF8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qsqNwMC5IbCJ8WAmGORVN5enR0I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/eb31db-e654-491e-a141-91d50738d1e8/1/qsqNwMC5IbCJ8WAmGORVN5enR0I.mft
Manifest number: 0465
Signing time: Fri 17 Apr 2026 10:01:42 +0000
Manifest this update: Fri 17 Apr 2026 10:01:42 +0000
Manifest next update: Sat 18 Apr 2026 10:01:42 +0000
Files and hashes: 1: G8uE_YXvAUsbhoJ7QQgS2ptGK4I.roa (hash: BCzWL8FjjNpuELNVuLODI9jH/96WSdwiWl+ywyyb3Cc=)
2: qsqNwMC5IbCJ8WAmGORVN5enR0I.crl (hash: p+zOc1cZdoeniiULYiTAVlADTzjpbFDIxu9CvXi5Bu8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/eb31db-e654-491e-a141-91d50738d1e8/1/qsqNwMC5IbCJ8WAmGORVN5enR0I.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/eb31db-e654-491e-a141-91d50738d1e8/1/qsqNwMC5IbCJ8WAmGORVN5enR0I.mft
rsync://rpki.ripe.net/repository/DEFAULT/qsqNwMC5IbCJ8WAmGORVN5enR0I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 10:01:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e3:9f:fa:aa:88:fe:d3:87:28:2c:d7:ef:d7:ef:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aaca8dc0c0b921b089f1602618e4553797a74742
Validity
Not Before: Apr 17 10:01:42 2026 GMT
Not After : Apr 18 10:01:42 2026 GMT
Subject: CN=2da5b8d2188b92e9199437f19267bb7dec3db305
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:2a:9b:29:4a:d1:5e:0c:99:b8:ce:58:d5:69:
a1:c7:d6:90:0a:8c:16:5f:3e:a9:4e:e1:b8:3a:ae:
2b:02:f8:47:18:f7:a8:4a:f2:87:8b:d2:e0:a2:c3:
29:2f:8f:14:38:8d:7f:2f:b4:66:59:4e:77:8e:5d:
c4:e8:c5:b6:6d:77:4b:70:17:5d:35:e9:3b:1c:62:
53:5e:f9:c2:7a:6d:2a:0e:10:80:63:de:45:2f:56:
5e:c5:3c:7b:dc:12:9d:97:ed:22:fb:12:c6:75:e9:
2e:7e:77:13:a7:75:68:59:94:ac:c7:65:6e:ec:5e:
44:b7:d6:0a:51:cd:0d:19:d3:02:a3:ef:3b:92:e3:
04:da:ce:10:ba:11:17:35:f7:65:ce:a1:7a:9c:f8:
99:ca:1c:ac:eb:01:6a:aa:43:17:89:5c:a3:67:22:
68:6d:ed:03:12:82:ec:a7:af:6d:9f:a9:86:44:87:
79:b1:0a:aa:2b:60:dd:1b:06:47:bd:8b:e1:30:a9:
b2:4b:27:cb:a9:f4:f3:d3:32:06:b7:a6:b0:77:25:
1c:35:e1:e3:b8:57:07:e8:fa:4e:56:51:dd:49:5b:
d0:ac:f8:7b:0e:96:b4:42:de:76:79:98:f8:99:31:
0f:4a:d9:87:fd:1f:6c:35:86:a0:b3:0a:b3:54:31:
46:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:A5:B8:D2:18:8B:92:E9:19:94:37:F1:92:67:BB:7D:EC:3D:B3:05
X509v3 Authority Key Identifier:
keyid:AA:CA:8D:C0:C0:B9:21:B0:89:F1:60:26:18:E4:55:37:97:A7:47:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qsqNwMC5IbCJ8WAmGORVN5enR0I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/eb31db-e654-491e-a141-91d50738d1e8/1/qsqNwMC5IbCJ8WAmGORVN5enR0I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/eb31db-e654-491e-a141-91d50738d1e8/1/qsqNwMC5IbCJ8WAmGORVN5enR0I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:d8:54:89:d7:d6:47:68:eb:03:9c:39:21:4f:be:ca:17:ac:
64:d9:dc:cf:77:21:05:7a:67:6a:21:b2:c6:0e:7b:70:f7:1e:
bc:50:ba:5a:c6:cb:c8:6e:53:d2:50:61:27:ce:34:7d:1b:5e:
b8:92:20:a2:b3:c5:e3:ab:75:92:5d:eb:ec:6c:6b:64:32:21:
19:6d:e0:85:a8:a4:5f:3e:0f:5b:ef:93:3f:20:ee:3c:5a:db:
7d:8d:d8:fb:4d:75:e6:92:7f:25:e5:1b:df:21:07:92:46:50:
75:d9:e9:b6:84:bb:94:c4:3e:26:76:66:ff:56:d0:94:8d:3b:
50:8f:b9:46:d4:20:1c:43:16:ae:92:7e:61:68:93:60:b9:b1:
7f:54:b6:4a:23:97:8b:66:c4:f9:ed:1f:c6:71:f0:00:5f:ce:
df:85:2a:d1:81:69:35:64:21:52:64:c4:83:91:f9:d0:56:d2:
b8:be:f0:20:fe:19:a0:10:4d:df:1e:84:b2:97:34:76:b6:e1:
e3:62:9f:0a:0e:63:cf:0d:42:ab:b0:81:7e:22:62:52:e3:3e:
91:f8:9f:de:18:31:15:e1:f9:af:fd:e0:4b:e9:8f:7c:ed:b8:
67:85:7a:c9:27:fe:7c:d3:ab:95:ca:4c:02:0e:e5:5b:2d:c4:
ad:dd:1c:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 20:18:00 2026 by rpki-client