Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft
File: QTKoayl3h-SMVXBZMe05NR-EFxo.mft (raw, json)
Hash identifier: sUBMHvF5K5/y1ktc05LTcnKE+kaYPlqzhHWYMX/+ZUQ=
Subject key identifier: 15:44:B6:58:12:A4:11:35:EE:51:A5:E6:C3:24:E4:10:B9:10:AF:71
Authority key identifier: 41:32:A8:6B:29:77:87:E4:8C:55:70:59:31:ED:39:35:1F:84:17:1A
Certificate issuer: /CN=4132a86b297787e48c55705931ed39351f84171a
Certificate serial: 019D98F51E1E906A8F92CBF1BEF8AD78EE7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QTKoayl3h-SMVXBZMe05NR-EFxo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft
Manifest number: 12A7
Signing time: Fri 17 Apr 2026 01:01:33 +0000
Manifest this update: Fri 17 Apr 2026 01:01:33 +0000
Manifest next update: Sat 18 Apr 2026 01:01:33 +0000
Files and hashes: 1: QTKoayl3h-SMVXBZMe05NR-EFxo.crl (hash: T4jDpwwzH2p9zioPJms231ZguZkEzDhmgVXHgBlvK7E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft
rsync://rpki.ripe.net/repository/DEFAULT/QTKoayl3h-SMVXBZMe05NR-EFxo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 01:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f5:1e:1e:90:6a:8f:92:cb:f1:be:f8:ad:78:ee:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4132a86b297787e48c55705931ed39351f84171a
Validity
Not Before: Apr 17 01:01:33 2026 GMT
Not After : Apr 18 01:01:33 2026 GMT
Subject: CN=1544b65812a41135ee51a5e6c324e410b910af71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:bc:8d:a2:5c:01:4e:1d:d7:cd:83:cf:5a:6f:
cb:d1:1c:6d:2d:29:d4:04:90:25:5e:bf:05:dc:1e:
1b:03:f9:d5:02:e9:7e:76:05:c1:c9:81:91:92:da:
b2:89:e8:22:3a:55:30:ad:44:24:24:61:6e:f6:d1:
30:d6:53:b6:42:d9:cc:a8:b3:85:95:fb:2c:0b:5b:
37:c6:e2:08:4d:c0:e5:06:f9:1b:7f:53:99:8c:c8:
bf:b8:0a:44:99:31:62:f8:ee:6c:23:2b:af:66:a7:
73:98:9f:90:6e:eb:90:ef:a0:3c:1c:6f:72:b1:e9:
e6:db:e7:71:0a:a0:d5:71:da:1d:de:44:92:d7:f3:
94:39:c3:16:8a:eb:1a:c4:87:d6:2f:5d:5a:55:df:
cb:dc:be:1d:4d:e1:7f:7c:f6:6c:8d:c7:c3:7d:df:
0d:4f:dd:d1:a9:0b:aa:cc:e7:37:75:47:65:65:1c:
48:80:88:66:1c:21:27:52:fa:4b:bd:19:70:3d:96:
9e:0d:79:69:bf:9c:ee:f5:fa:cf:76:51:51:c3:ff:
ff:a3:51:f4:6b:1d:ad:2f:40:52:cd:66:aa:22:c0:
cd:cd:bd:31:a9:e8:53:b7:bd:fa:7b:ae:26:dc:65:
fd:e1:5e:f3:62:8c:5a:05:80:ca:25:15:be:ea:3b:
05:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:44:B6:58:12:A4:11:35:EE:51:A5:E6:C3:24:E4:10:B9:10:AF:71
X509v3 Authority Key Identifier:
keyid:41:32:A8:6B:29:77:87:E4:8C:55:70:59:31:ED:39:35:1F:84:17:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QTKoayl3h-SMVXBZMe05NR-EFxo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:2e:e8:64:d7:b7:c3:3e:25:70:63:46:0c:29:86:28:4a:4a:
41:01:ed:01:3c:cc:7e:ba:3c:36:90:ab:6e:2e:ad:1f:97:2c:
60:d6:d8:41:3e:67:0b:0c:23:ba:f0:23:13:46:6e:73:64:31:
2f:03:a7:1f:7f:cc:a2:76:a9:88:2a:ea:33:48:d4:fd:7d:e4:
70:91:61:72:97:90:b2:1c:55:77:43:b5:7c:dd:e4:d3:e7:57:
e3:13:0f:09:e1:8d:39:92:fd:59:c9:9b:d5:7c:6f:64:5b:30:
42:39:24:74:5f:ab:ea:9c:1b:a6:64:2c:a7:71:68:94:ef:37:
9c:d6:0a:da:f8:71:e1:db:15:0e:b1:2a:63:f6:0e:53:c8:de:
bb:2f:55:1a:87:14:f6:4a:d2:2a:81:bc:0d:af:d6:32:bf:d9:
6b:79:10:ed:59:6e:75:d2:3e:44:52:1a:5f:c4:c1:c9:93:86:
e9:02:c3:8e:99:62:90:db:dd:bc:19:03:9f:3c:63:73:cc:4a:
41:02:79:be:2c:f3:2c:e1:e7:cc:33:71:c4:b7:28:d5:9e:55:
1a:1b:37:b0:dc:43:3e:2a:d0:b4:90:31:f1:a9:05:7e:3f:dd:
94:14:98:95:69:29:d7:ee:49:02:87:a6:9f:b1:0e:a5:9f:8c:
d2:5b:4a:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:24:47 2026 by rpki-client