Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft
File: RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft (raw, json)
Hash identifier: YNrcI/NhltaUtP64jRwxA6VhC2yj0aWnlzvNduFZJ5Q=
Subject key identifier: 14:C8:0C:C2:83:9B:A0:E4:54:FE:8C:6A:72:88:B3:3D:B4:03:9C:5E
Authority key identifier: 45:01:E8:5C:00:25:C4:AE:29:52:80:58:E2:32:D7:37:C2:F4:95:CE
Certificate issuer: /CN=4501e85c0025c4ae29528058e232d737c2f495ce
Certificate serial: 019D9A071661E176655D0900383C01A96C2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RQHoXAAlxK4pUoBY4jLXN8L0lc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft
Manifest number: 0524
Signing time: Fri 17 Apr 2026 06:00:48 +0000
Manifest this update: Fri 17 Apr 2026 06:00:48 +0000
Manifest next update: Sat 18 Apr 2026 06:00:48 +0000
Files and hashes: 1: OPpSZm1jWTTBpqUrYsOO8HLZeBs.roa (hash: bb6q72W6oNvno2eLB+s2W9k1FAddahs3TD0hpCigXCI=)
2: RQHoXAAlxK4pUoBY4jLXN8L0lc4.crl (hash: sdQqYVND+NxNQ2rnsrToIp/erxmOjja6/5WrrniXnmU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft
rsync://rpki.ripe.net/repository/DEFAULT/RQHoXAAlxK4pUoBY4jLXN8L0lc4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 06:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:07:16:61:e1:76:65:5d:09:00:38:3c:01:a9:6c:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4501e85c0025c4ae29528058e232d737c2f495ce
Validity
Not Before: Apr 17 06:00:48 2026 GMT
Not After : Apr 18 06:00:48 2026 GMT
Subject: CN=14c80cc2839ba0e454fe8c6a7288b33db4039c5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:9c:aa:9b:5a:a4:ac:55:68:c3:10:cd:9d:34:
67:8c:c9:cb:59:54:86:12:dd:00:90:80:ee:7d:94:
5d:a7:a2:43:78:57:39:e0:d8:49:dc:4f:ea:35:5d:
49:d1:f9:cb:2f:d6:4d:0a:18:31:b0:ee:f6:66:5c:
75:2f:75:c2:ca:2a:6c:17:8f:ba:1c:a0:a8:f0:70:
b5:87:43:c3:ee:90:4f:e7:95:f5:62:46:0a:5e:3c:
49:8b:d1:42:62:0d:d5:4f:57:9e:a7:df:95:90:1b:
15:79:ec:f2:c4:03:47:f6:e9:76:e5:55:43:1c:98:
99:92:e3:2c:f9:95:4e:e6:6a:21:13:d0:5e:57:c5:
d4:9c:28:a0:c3:33:95:d1:73:78:0e:f3:5d:1c:df:
55:58:8d:c8:3b:49:6f:ec:95:44:65:43:60:09:a3:
4c:73:ad:a1:d8:00:b5:80:76:80:98:0b:79:f1:82:
a5:e2:94:4b:60:93:52:ce:c0:a5:e1:37:4e:23:6e:
9a:0e:43:e2:f3:a9:b9:ef:1c:42:7b:e1:1a:47:9e:
71:81:37:ca:8f:51:64:7a:4f:f0:fc:99:9b:ce:17:
ae:5d:c8:4e:b4:37:7c:a6:db:26:d7:3f:87:30:6b:
da:d6:04:1e:13:c2:73:91:f7:3d:d7:e9:08:3d:27:
20:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:C8:0C:C2:83:9B:A0:E4:54:FE:8C:6A:72:88:B3:3D:B4:03:9C:5E
X509v3 Authority Key Identifier:
keyid:45:01:E8:5C:00:25:C4:AE:29:52:80:58:E2:32:D7:37:C2:F4:95:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RQHoXAAlxK4pUoBY4jLXN8L0lc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:5d:47:51:f4:65:2b:d1:1e:72:45:3e:6a:bc:5b:21:7e:35:
b7:eb:d8:67:a6:e3:98:6b:fa:55:43:8b:d6:0b:c2:c7:b0:22:
e8:9a:83:d6:96:be:6d:01:81:77:9d:37:7c:d1:d4:c3:98:4a:
cf:51:66:82:d7:18:2f:47:9d:cb:40:63:ee:0d:68:d0:49:cd:
29:18:7a:cd:e9:24:d5:cf:a3:23:5b:8d:1a:df:50:3e:e4:d9:
57:67:35:8c:9a:96:18:52:84:3e:61:f0:9b:be:07:b4:00:e8:
69:cb:bc:36:ef:59:56:a0:37:5e:01:db:7e:de:6d:10:04:25:
97:18:57:05:dc:94:fd:dc:f8:ff:62:5a:d7:a6:b3:d1:2a:4b:
35:e5:bc:e8:f3:9f:6d:44:38:1d:0f:82:5b:88:8b:19:90:40:
36:5e:ac:7c:6d:f9:5d:ed:e2:0a:24:e0:68:6f:55:ae:8d:bc:
00:50:71:e2:ff:70:02:2c:e6:f1:75:18:ca:83:ea:b6:ce:fc:
56:6c:a9:50:6a:d4:2c:de:36:4a:cf:b8:e4:da:65:e2:54:6c:
77:95:66:b8:10:c3:7d:10:04:45:a5:b1:92:a5:de:e8:20:28:
8d:54:10:23:bd:42:94:84:5e:54:5c:88:e6:4c:f3:29:91:e1:
61:0b:35:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:45:29 2026 by rpki-client