Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/52a97f-2ad6-4059-8646-0686160a7e68/1/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.mft
File: Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.mft (raw, json)
Hash identifier: PyVAx8rfm14jctXykEmi39Y7eQbCWiOC/a4tveqtcQo=
Subject key identifier: 08:97:0C:AB:59:CB:74:79:5B:01:8B:5B:98:CA:63:D5:32:44:8E:A3
Authority key identifier: 43:0E:09:49:DF:59:30:F6:B7:9E:FC:BD:9C:BA:17:4C:A2:13:F5:69
Certificate issuer: /CN=430e0949df5930f6b79efcbd9cba174ca213f569
Certificate serial: 019D98F45E069436D016858E6D4F9FF4FC3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/52a97f-2ad6-4059-8646-0686160a7e68/1/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.mft
Manifest number: 1855
Signing time: Fri 17 Apr 2026 01:00:44 +0000
Manifest this update: Fri 17 Apr 2026 01:00:44 +0000
Manifest next update: Sat 18 Apr 2026 01:00:44 +0000
Files and hashes: 1: Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.crl (hash: Ed66qnmKDDeVYN4ls9leWslny6/7X3jVS5am2/XulrU=)
2: e3szWYnRwcnVrlDIwYxJ3pYMom4.roa (hash: BKtUpfmwzLTGUQniKBkvPeoFHhYGa5oaDqKuTCxUab8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/52a97f-2ad6-4059-8646-0686160a7e68/1/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/52a97f-2ad6-4059-8646-0686160a7e68/1/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:5e:06:94:36:d0:16:85:8e:6d:4f:9f:f4:fc:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=430e0949df5930f6b79efcbd9cba174ca213f569
Validity
Not Before: Apr 17 01:00:44 2026 GMT
Not After : Apr 18 01:00:44 2026 GMT
Subject: CN=08970cab59cb74795b018b5b98ca63d532448ea3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:06:42:60:82:e9:19:50:6c:b2:d4:89:29:02:
02:5c:70:91:bb:d1:30:7d:8b:a2:fb:6e:9a:3d:a9:
9b:c9:13:43:12:8e:e5:40:85:6d:38:d2:e9:d2:b7:
7b:ac:65:9d:b2:40:a6:cc:64:7c:08:6e:d7:2e:24:
c3:18:04:11:fb:19:04:64:7f:64:f3:76:9b:43:1e:
06:42:4d:ed:4b:da:f7:5a:cd:5e:bb:56:f2:b3:34:
9d:93:10:11:41:2c:b6:77:aa:0d:ab:35:e2:62:22:
93:d6:ef:a2:cb:b3:a8:3c:df:c3:1f:15:bc:56:b2:
06:ca:b2:bc:a3:8e:20:33:ee:97:48:19:01:06:d7:
30:a7:a5:b1:95:7b:8e:0b:91:10:14:8d:c6:f7:6e:
65:d3:6e:c7:ca:14:1f:82:02:b3:82:86:8e:ee:56:
08:6c:d8:e8:8d:5b:ea:38:b8:61:d1:7f:8a:90:65:
66:53:0a:7f:df:c4:7e:63:6a:72:da:a2:ab:b3:9f:
d9:88:ec:f6:95:80:0b:68:30:a7:6b:52:b4:50:59:
ae:c2:9e:c8:f2:90:3c:e6:44:a2:df:0e:98:71:6b:
fa:2a:5a:ee:e3:28:0e:63:d7:34:25:92:27:52:80:
3c:7a:55:54:5b:f4:e2:e9:9e:67:2e:1a:5f:cd:44:
fe:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:97:0C:AB:59:CB:74:79:5B:01:8B:5B:98:CA:63:D5:32:44:8E:A3
X509v3 Authority Key Identifier:
keyid:43:0E:09:49:DF:59:30:F6:B7:9E:FC:BD:9C:BA:17:4C:A2:13:F5:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/52a97f-2ad6-4059-8646-0686160a7e68/1/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/52a97f-2ad6-4059-8646-0686160a7e68/1/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:3a:3c:f4:4a:04:d4:39:2e:aa:e8:2b:a3:3d:06:01:64:57:
10:0f:4e:02:c2:45:e8:bc:f0:64:50:dd:16:b4:26:5c:0c:f0:
90:f5:cc:7a:32:34:34:74:32:91:22:5a:64:15:d1:45:1b:97:
a4:a9:d8:64:15:41:e6:2a:b4:4d:ca:dc:94:43:22:28:35:f6:
d8:e5:be:08:8b:15:6e:aa:63:22:cd:fe:18:a0:6f:84:f3:96:
61:58:55:36:0c:98:91:20:67:b9:6a:7c:8b:4f:ae:35:6c:eb:
04:fe:62:c4:5f:bb:7e:7d:ec:67:41:6e:f7:b9:e5:7b:4b:e3:
3e:5e:3d:8f:a2:e5:e6:29:46:43:66:d3:63:d3:cd:4a:5c:95:
6b:55:23:44:79:25:9e:67:f1:47:d2:50:10:9e:32:6c:a3:f8:
08:88:70:6a:23:e1:a3:fd:9b:6c:26:28:2a:fb:8b:17:bc:c8:
d4:36:86:2a:47:dc:ae:1f:dc:cd:03:c9:34:cb:b7:b5:68:04:
af:18:a6:54:9e:91:00:e2:79:ae:5e:42:9a:9d:00:f5:08:ab:
dc:ae:9d:82:c4:dc:94:cc:a8:24:38:e2:61:f0:61:3e:77:3d:
bc:f6:f3:f3:a6:1b:e7:ad:f5:e1:37:13:ce:00:ce:7b:fa:12:
5d:4f:6e:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 03:22:21 2026 by rpki-client