Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.mft
File: SQ25mcpM4ofFySqxZ6UAkCJZuwU.mft (raw, json)
Hash identifier: aL347KW/JpiXHfhpZLTQo4UOZU/Xy9zlv8s+75EoQpo=
Subject key identifier: F8:0E:0C:B5:64:30:25:4C:72:05:C8:06:F7:D3:54:C5:CC:A0:1F:B4
Authority key identifier: 49:0D:B9:99:CA:4C:E2:87:C5:C9:2A:B1:67:A5:00:90:22:59:BB:05
Certificate issuer: /CN=490db999ca4ce287c5c92ab167a500902259bb05
Certificate serial: 019D9A3EFE9813112C4CE1E623B2E1D48C49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SQ25mcpM4ofFySqxZ6UAkCJZuwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.mft
Manifest number: 18C4
Signing time: Fri 17 Apr 2026 07:01:52 +0000
Manifest this update: Fri 17 Apr 2026 07:01:52 +0000
Manifest next update: Sat 18 Apr 2026 07:01:52 +0000
Files and hashes: 1: SQ25mcpM4ofFySqxZ6UAkCJZuwU.crl (hash: w75NRRrjupCn3//P0bcyU7naOPMlqoc2ux2979uaRjc=)
2: hAZrKewTVxZT3GF5DqzKsU9bNKo.roa (hash: fsGaTWUHmLGtuoOa159GIKQVUnBG8uk4RWTcKenk10M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.mft
rsync://rpki.ripe.net/repository/DEFAULT/SQ25mcpM4ofFySqxZ6UAkCJZuwU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3e:fe:98:13:11:2c:4c:e1:e6:23:b2:e1:d4:8c:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=490db999ca4ce287c5c92ab167a500902259bb05
Validity
Not Before: Apr 17 07:01:52 2026 GMT
Not After : Apr 18 07:01:52 2026 GMT
Subject: CN=f80e0cb56430254c7205c806f7d354c5cca01fb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:f1:24:75:aa:f2:b9:6a:e5:97:5a:01:90:fb:
27:50:ee:52:e1:f5:24:a8:e4:c4:d4:d1:ba:5d:50:
e6:b6:cd:a4:23:a1:bc:27:17:8e:38:0c:55:11:a4:
2d:44:2b:30:14:af:ad:37:b8:1c:f6:d4:02:cf:07:
af:5f:1f:aa:c5:a7:13:64:06:5b:dc:2b:8a:a4:11:
73:c9:34:9d:1f:f0:ae:4e:ee:0d:7f:54:d5:21:d7:
1d:22:52:e1:f8:56:c4:3e:cc:16:ca:cd:6e:7f:d6:
91:d5:e7:c9:29:73:b5:aa:9b:28:b8:46:ca:53:87:
00:e9:f6:75:39:59:e2:89:eb:02:a7:78:f4:8e:b4:
14:e1:93:a4:4c:3a:0e:52:34:07:d7:17:d4:36:c7:
d4:35:1f:9d:36:93:f3:7b:34:c0:10:8c:bf:ef:45:
d4:f2:4b:3b:99:2c:e6:a6:0b:1d:aa:50:86:95:f0:
d3:3e:18:ab:03:ed:39:ed:01:20:cc:92:36:be:79:
fe:7a:3c:e9:32:87:09:f1:66:35:c9:2e:a1:d3:03:
6e:82:7a:2f:c2:c5:46:d0:c6:88:df:12:b6:11:48:
26:c8:0b:ed:14:f7:7b:6e:33:91:dc:25:60:d0:54:
40:e8:4e:bd:36:3c:a5:c0:4b:41:90:8f:4a:28:06:
23:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:0E:0C:B5:64:30:25:4C:72:05:C8:06:F7:D3:54:C5:CC:A0:1F:B4
X509v3 Authority Key Identifier:
keyid:49:0D:B9:99:CA:4C:E2:87:C5:C9:2A:B1:67:A5:00:90:22:59:BB:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SQ25mcpM4ofFySqxZ6UAkCJZuwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:5b:e6:7b:aa:b2:86:ce:74:73:86:96:8c:00:09:55:0f:74:
1a:91:44:1b:f1:c4:57:13:26:da:46:72:b7:85:f5:52:04:e6:
43:eb:42:4d:21:8f:ae:86:a4:43:e1:7f:29:43:30:1b:b5:b7:
9f:b2:5e:cb:d2:b9:fe:e7:34:75:ea:e6:5e:8a:69:21:3f:66:
9a:1a:4b:2f:4e:d3:dd:3f:d5:5f:11:38:26:b7:4e:c1:6c:19:
c3:33:32:71:5d:73:6d:a7:a5:0d:9d:15:9a:b8:34:34:23:ec:
11:40:7f:63:4e:dc:8d:db:24:7a:1b:a7:ab:fd:d6:9c:92:cd:
ad:ea:38:77:48:f0:01:00:21:24:c2:cf:d2:d9:8f:45:27:5a:
78:7d:11:27:c6:92:a8:eb:e4:0d:e9:e8:67:f6:58:83:78:db:
de:5f:8e:32:d2:b3:89:17:1e:10:84:c0:97:db:0e:d2:6f:44:
14:90:85:c2:32:11:1b:63:fb:e8:72:7e:76:38:fe:6d:64:d0:
bf:97:c1:73:b0:23:50:f2:40:fc:55:ca:6e:7b:bb:41:0a:e4:
1f:b8:fd:30:78:5a:48:89:95:bd:26:15:9e:0c:30:74:07:28:
9b:85:5c:8e:6b:f6:55:cf:49:2a:b1:4d:75:f7:28:37:01:dc:
b3:cf:b9:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 16:00:16 2026 by rpki-client