Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/42b3bb-1935-478b-a302-cb7a5fd1ac47/1/qS25uA37nJVniwfvLJU9YxB_X2I.mft
File: qS25uA37nJVniwfvLJU9YxB_X2I.mft (raw, json)
Hash identifier: 41mKwB0SnNjvgn/3K4xaJruINHBqtYhOf6YlrwdS9sU=
Subject key identifier: 49:61:B6:D8:C7:F6:B6:F4:F2:2C:1B:6F:90:95:56:BD:BF:76:BA:60
Authority key identifier: A9:2D:B9:B8:0D:FB:9C:95:67:8B:07:EF:2C:95:3D:63:10:7F:5F:62
Certificate issuer: /CN=a92db9b80dfb9c95678b07ef2c953d63107f5f62
Certificate serial: 019D9A07725A88C27A1BECC9CD7B052B000F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qS25uA37nJVniwfvLJU9YxB_X2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/42b3bb-1935-478b-a302-cb7a5fd1ac47/1/qS25uA37nJVniwfvLJU9YxB_X2I.mft
Manifest number: 0B23
Signing time: Fri 17 Apr 2026 06:01:12 +0000
Manifest this update: Fri 17 Apr 2026 06:01:12 +0000
Manifest next update: Sat 18 Apr 2026 06:01:12 +0000
Files and hashes: 1: AHY4ZcpWBg0aIiFkhUXaY2emMvk.roa (hash: XYjuOSawg9GbeUiAsIFDnNUeoKdfUJFTjZesq9ksMa4=)
2: qS25uA37nJVniwfvLJU9YxB_X2I.crl (hash: zYd7AAHVG3AmAv7VLBl4EnepJklohFdH8y4piGc/3b0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/42b3bb-1935-478b-a302-cb7a5fd1ac47/1/qS25uA37nJVniwfvLJU9YxB_X2I.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/42b3bb-1935-478b-a302-cb7a5fd1ac47/1/qS25uA37nJVniwfvLJU9YxB_X2I.mft
rsync://rpki.ripe.net/repository/DEFAULT/qS25uA37nJVniwfvLJU9YxB_X2I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 06:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:07:72:5a:88:c2:7a:1b:ec:c9:cd:7b:05:2b:00:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a92db9b80dfb9c95678b07ef2c953d63107f5f62
Validity
Not Before: Apr 17 06:01:12 2026 GMT
Not After : Apr 18 06:01:12 2026 GMT
Subject: CN=4961b6d8c7f6b6f4f22c1b6f909556bdbf76ba60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:b5:60:7e:c9:1a:ae:58:21:19:80:6c:07:9f:
ae:36:40:24:7c:16:d6:94:9a:54:af:38:e8:c5:f7:
74:74:ae:54:3b:d3:b9:57:82:e5:cd:ce:c6:7f:14:
38:0a:6c:cb:6b:dd:0d:00:bb:70:98:d1:e4:63:46:
54:08:6e:7f:ef:26:94:76:23:62:fe:a7:8e:bb:9b:
ad:73:42:25:9e:5b:bc:71:b0:c8:c4:24:12:fd:18:
58:42:9d:86:61:92:fc:9c:2e:50:ba:d1:ff:67:25:
69:9c:d1:e2:06:76:a0:98:78:24:8b:70:0d:7a:28:
40:ee:c5:5b:5b:d7:64:3f:45:e5:86:87:4f:28:97:
d8:ad:0e:b0:9b:ca:a3:0e:e8:94:79:d5:d9:75:98:
db:ad:ec:19:64:70:b3:12:21:cd:16:bc:26:40:f9:
37:5d:dd:0a:4e:e8:c6:8e:f4:f2:c6:8b:23:c1:e7:
88:71:41:7a:d7:33:87:c2:7d:88:d2:c5:65:c1:c4:
0a:8c:0f:5a:df:2a:5f:d2:29:0e:f8:1a:0a:47:6f:
dc:a4:06:4d:fa:5d:c8:32:bb:87:30:5e:67:54:4c:
87:b1:e8:26:83:90:2c:28:d4:a1:41:69:b9:b3:25:
df:79:d7:22:ad:70:83:fd:32:26:3b:df:b7:b4:df:
f3:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:61:B6:D8:C7:F6:B6:F4:F2:2C:1B:6F:90:95:56:BD:BF:76:BA:60
X509v3 Authority Key Identifier:
keyid:A9:2D:B9:B8:0D:FB:9C:95:67:8B:07:EF:2C:95:3D:63:10:7F:5F:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qS25uA37nJVniwfvLJU9YxB_X2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/42b3bb-1935-478b-a302-cb7a5fd1ac47/1/qS25uA37nJVniwfvLJU9YxB_X2I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/42b3bb-1935-478b-a302-cb7a5fd1ac47/1/qS25uA37nJVniwfvLJU9YxB_X2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:e3:66:ea:5b:a1:1e:86:1e:e5:db:13:d9:51:32:e2:74:93:
fe:47:bd:e1:b7:28:02:23:93:50:1e:4b:3d:da:ba:07:bd:03:
3c:62:c9:c5:d2:d3:62:81:d9:bb:56:90:2b:6c:91:7e:e6:89:
d3:a7:e2:e2:23:93:c7:55:0f:a7:8d:30:eb:24:d9:6c:77:91:
fc:e9:8c:c7:aa:30:e1:d3:52:82:36:16:ae:ba:c7:49:be:e0:
a3:1d:58:4c:3c:60:21:6e:da:f0:39:c7:38:89:78:15:4a:a4:
e4:3c:5b:4a:4f:e2:a5:73:ad:58:22:2f:8a:11:fb:63:ba:5b:
b6:25:3f:78:95:87:a6:ce:1b:ae:76:a3:20:da:ad:44:d1:cc:
11:ab:1c:2a:18:4f:25:39:ce:4e:6a:da:f7:bd:7a:c7:e1:8d:
a4:ba:f4:30:21:1d:6b:f2:d5:aa:7d:df:33:1b:93:fa:c5:98:
51:d4:7d:54:f8:dd:ad:ab:8a:28:f9:2f:c3:e7:bd:8f:cb:ca:
b2:e7:b5:15:92:86:c4:14:0f:30:65:36:e5:55:d7:00:02:65:
73:6c:49:bc:65:2c:00:11:df:46:50:a6:c9:62:94:bc:c3:c1:
75:10:62:f5:4b:66:c9:f6:1c:26:0b:47:8c:06:c7:a1:08:22:
a0:7f:99:34
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2aB3JaiMJ6G+zJzXsFKwAPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE5MmRiOWI4MGRmYjljOTU2NzhiMDdlZjJjOTUzZDYzMTA3
ZjVmNjIwHhcNMjYwNDE3MDYwMTEyWhcNMjYwNDE4MDYwMTEyWjAzMTEwLwYDVQQD
Eyg0OTYxYjZkOGM3ZjZiNmY0ZjIyYzFiNmY5MDk1NTZiZGJmNzZiYTYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxLVgfskarlghGYBsB5+uNkAkfBbW
lJpUrzjoxfd0dK5UO9O5V4Llzc7GfxQ4CmzLa90NALtwmNHkY0ZUCG5/7yaUdiNi
/qeOu5utc0Ilnlu8cbDIxCQS/RhYQp2GYZL8nC5QutH/ZyVpnNHiBnagmHgki3AN
eihA7sVbW9dkP0XlhodPKJfYrQ6wm8qjDuiUedXZdZjbrewZZHCzEiHNFrwmQPk3
Xd0KTujGjvTyxosjweeIcUF61zOHwn2I0sVlwcQKjA9a3ypf0ikO+BoKR2/cpAZN
+l3IMruHMF5nVEyHsegmg5AsKNShQWm5syXfedcirXCD/TImO9+3tN/z/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFElhttjH9rb08iwbb5CVVr2/drpgMB8GA1UdIwQY
MBaAFKktubgN+5yVZ4sH7yyVPWMQf19iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcVMyNXVBMzduSlZuaXdmdkxKVTlZeEJfWDJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC80MmIzYmItMTkzNS00NzhiLWEzMDIt
Y2I3YTVmZDFhYzQ3LzEvcVMyNXVBMzduSlZuaXdmdkxKVTlZeEJfWDJJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OC80MmIzYmItMTkzNS00NzhiLWEzMDItY2I3YTVmZDFhYzQ3
LzEvcVMyNXVBMzduSlZuaXdmdkxKVTlZeEJfWDJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjONm6luh
HoYe5dsT2VEy4nST/ke94bcoAiOTUB5LPdq6B70DPGLJxdLTYoHZu1aQK2yRfuaJ
06fi4iOTx1UPp40w6yTZbHeR/OmMx6ow4dNSgjYWrrrHSb7gox1YTDxgIW7a8DnH
OIl4FUqk5DxbSk/ipXOtWCIvihH7Y7pbtiU/eJWHps4brnajINqtRNHMEascKhhP
JTnOTmra9716x+GNpLr0MCEda/LVqn3fMxuT+sWYUdR9VPjdrauKKPkvw+e9j8vK
sue1FZKGxBQPMGU25VXXAAJlc2xJvGUsABHfRlCmyWKUvMPBdRBi9UtmyfYcJgtH
jAbHoQgioH+ZNA==
-----END CERTIFICATE-----
Generated at Fri Apr 17 14:47:18 2026 by rpki-client