Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/2884aa-0ccb-49f2-90c5-3385d9bf1d80/1/QWkOI5DpC72N5AIYrSIeCTvM7L8.mft
File: QWkOI5DpC72N5AIYrSIeCTvM7L8.mft (raw, json)
Hash identifier: ljoAJrPtYYjjHVgPL8YiZMxAeAxcfSlKmVHUKCIzvrw=
Subject key identifier: 9D:60:54:03:37:19:E8:B0:61:1B:C5:79:A1:57:EF:1A:F9:C9:61:DB
Authority key identifier: 41:69:0E:23:90:E9:0B:BD:8D:E4:02:18:AD:22:1E:09:3B:CC:EC:BF
Certificate issuer: /CN=41690e2390e90bbd8de40218ad221e093bccecbf
Certificate serial: 019D98BD5B5BA0D035DB46B087F2559153BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QWkOI5DpC72N5AIYrSIeCTvM7L8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/2884aa-0ccb-49f2-90c5-3385d9bf1d80/1/QWkOI5DpC72N5AIYrSIeCTvM7L8.mft
Manifest number: 18C0
Signing time: Fri 17 Apr 2026 00:00:39 +0000
Manifest this update: Fri 17 Apr 2026 00:00:39 +0000
Manifest next update: Sat 18 Apr 2026 00:00:39 +0000
Files and hashes: 1: 8IknHpKPRllW0MQBiUdxVDr9GKY.roa (hash: TR9K0gn1/vvxwOrEB1fss/ul5XwSQYatd14/mtJabTU=)
2: QWkOI5DpC72N5AIYrSIeCTvM7L8.crl (hash: kaaH4owqfX8eyirbIQxjsSkHE8FJlr9CZqphEUGTmlQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/2884aa-0ccb-49f2-90c5-3385d9bf1d80/1/QWkOI5DpC72N5AIYrSIeCTvM7L8.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/2884aa-0ccb-49f2-90c5-3385d9bf1d80/1/QWkOI5DpC72N5AIYrSIeCTvM7L8.mft
rsync://rpki.ripe.net/repository/DEFAULT/QWkOI5DpC72N5AIYrSIeCTvM7L8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:bd:5b:5b:a0:d0:35:db:46:b0:87:f2:55:91:53:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41690e2390e90bbd8de40218ad221e093bccecbf
Validity
Not Before: Apr 17 00:00:39 2026 GMT
Not After : Apr 18 00:00:39 2026 GMT
Subject: CN=9d6054033719e8b0611bc579a157ef1af9c961db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:03:e7:d0:ff:43:bb:42:2b:a1:e9:d7:64:86:
23:a3:1a:30:75:51:c9:30:62:16:41:a7:3c:4d:e6:
46:1c:40:29:a7:71:9c:f2:86:4e:18:74:ad:d8:bc:
ad:40:31:32:df:55:ae:c6:79:d0:53:80:64:4e:2a:
07:64:f4:14:17:1c:6f:4a:f5:36:31:ee:5e:b1:14:
50:f9:c4:57:2a:30:c7:24:b5:cf:7d:65:f5:d7:a8:
3c:3e:da:de:20:28:56:fa:db:85:b6:85:ac:3f:2d:
15:3f:a5:25:6d:bd:af:14:8f:7c:45:7c:99:ec:91:
d8:99:ae:ea:29:c3:c8:16:ef:e8:b6:e1:77:b1:d6:
61:1b:0b:ac:98:8f:24:6d:b9:bf:66:0d:23:9d:99:
cf:e4:49:8e:a8:61:93:b2:8e:58:ab:b8:e5:c8:86:
c9:a8:6c:40:9a:f4:4b:17:3f:53:5e:35:0a:18:7e:
73:c2:bc:2a:ff:d9:4f:b1:2f:de:2d:51:4f:99:35:
55:1b:59:35:bd:81:b2:d0:b6:df:a7:95:3b:19:bf:
ac:1c:50:f0:87:07:36:07:78:d0:f2:96:04:e7:31:
2f:3f:5f:8b:e0:71:d6:bd:cd:1a:16:b1:74:fb:44:
66:01:6b:4c:2a:17:f5:55:60:f4:01:18:ae:ca:8b:
df:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:60:54:03:37:19:E8:B0:61:1B:C5:79:A1:57:EF:1A:F9:C9:61:DB
X509v3 Authority Key Identifier:
keyid:41:69:0E:23:90:E9:0B:BD:8D:E4:02:18:AD:22:1E:09:3B:CC:EC:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QWkOI5DpC72N5AIYrSIeCTvM7L8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/2884aa-0ccb-49f2-90c5-3385d9bf1d80/1/QWkOI5DpC72N5AIYrSIeCTvM7L8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/2884aa-0ccb-49f2-90c5-3385d9bf1d80/1/QWkOI5DpC72N5AIYrSIeCTvM7L8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:fe:76:e0:75:35:ac:4c:49:c9:51:70:fc:63:14:27:b2:9c:
6a:18:97:97:30:79:3f:b0:bf:ce:c2:9d:7e:82:e6:6d:dd:4e:
17:bc:4d:a9:18:6f:3f:f7:5a:9c:df:5c:05:7e:f6:d5:71:6a:
ed:d1:9d:5b:3a:54:35:78:d7:70:f2:e9:be:72:24:a4:f3:9e:
ee:bf:7c:cb:cc:25:d0:55:22:69:ba:91:80:37:10:4c:29:0b:
f9:1f:5a:dc:37:2d:21:83:37:17:e5:74:d7:95:2f:ca:52:54:
93:98:53:4a:86:cd:d7:53:68:d1:4d:a3:a9:ce:2d:ef:29:e2:
13:94:3a:7c:03:c6:d6:33:47:3f:48:66:7f:a6:6d:c0:9f:eb:
d3:64:60:cf:08:43:93:2a:47:81:c4:de:08:5e:1c:83:10:f6:
53:4c:b6:ce:1a:81:66:d8:03:7e:e7:7d:ec:84:60:7e:a0:75:
21:60:52:b2:9f:0f:19:d2:61:f6:a2:ba:50:9d:04:6e:5a:f2:
c6:85:45:23:ec:79:8f:ac:8e:f1:70:cc:f1:2f:49:92:b5:bd:
44:0a:82:b0:30:41:4f:6f:6d:e8:d6:92:e1:0d:ab:af:cb:7d:
8b:be:fe:37:ff:ad:90:29:b6:1d:ce:68:4e:d5:91:8f:2c:72:
72:1f:54:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 08:05:44 2026 by rpki-client