Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/52a6de-7232-49b1-91c7-cfdfcd4ee0f2/1/QIVi4riWGyLinHYtbJkDMbo2Zm8.mft
File: QIVi4riWGyLinHYtbJkDMbo2Zm8.mft (raw, json)
Hash identifier: j9o4lwg9sThBimW6Fz7T0DKOuduowTvzQ4dcmLv/tT0=
Subject key identifier: BA:C7:EC:10:C1:5B:00:9B:AF:E6:93:47:2F:F1:4B:77:A9:B8:E6:55
Authority key identifier: 40:85:62:E2:B8:96:1B:22:E2:9C:76:2D:6C:99:03:31:BA:36:66:6F
Certificate issuer: /CN=408562e2b8961b22e29c762d6c990331ba36666f
Certificate serial: 019DA41D06B0D2732B9C0B9B57FE195CBDB0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QIVi4riWGyLinHYtbJkDMbo2Zm8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/52a6de-7232-49b1-91c7-cfdfcd4ee0f2/1/QIVi4riWGyLinHYtbJkDMbo2Zm8.mft
Manifest number: 1580
Signing time: Sun 19 Apr 2026 05:00:58 +0000
Manifest this update: Sun 19 Apr 2026 05:00:58 +0000
Manifest next update: Mon 20 Apr 2026 05:00:58 +0000
Files and hashes: 1: QIVi4riWGyLinHYtbJkDMbo2Zm8.crl (hash: JImEY6GH6ud9wUCg1nPeKv6dICdoD5s9PZ2/JGKfKRA=)
2: fJkHv2XKmgf3wdAAPhmkHMSymi8.roa (hash: moVcLbH6Jw6NJ/DI/9GEobHmBwmywaAnRhkWYEC9LnI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/52a6de-7232-49b1-91c7-cfdfcd4ee0f2/1/QIVi4riWGyLinHYtbJkDMbo2Zm8.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/52a6de-7232-49b1-91c7-cfdfcd4ee0f2/1/QIVi4riWGyLinHYtbJkDMbo2Zm8.mft
rsync://rpki.ripe.net/repository/DEFAULT/QIVi4riWGyLinHYtbJkDMbo2Zm8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:1d:06:b0:d2:73:2b:9c:0b:9b:57:fe:19:5c:bd:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=408562e2b8961b22e29c762d6c990331ba36666f
Validity
Not Before: Apr 19 05:00:58 2026 GMT
Not After : Apr 20 05:00:58 2026 GMT
Subject: CN=bac7ec10c15b009bafe693472ff14b77a9b8e655
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:a1:32:4d:c1:f9:2c:b6:6c:b9:8d:71:33:ff:
64:a6:73:85:17:61:f4:34:68:8b:94:7c:7c:6e:2f:
8d:7a:7d:bf:61:2a:56:14:d4:cc:75:b3:ef:40:5e:
31:03:5f:fd:b1:d8:d1:51:0a:cf:9f:0c:25:cd:df:
fd:f8:1c:21:b2:79:67:28:04:be:3d:20:04:57:4a:
ae:fc:42:f3:99:1b:64:61:f7:72:07:52:fb:0d:4a:
95:8e:30:76:e2:76:88:59:9c:18:f1:6a:96:8c:84:
02:8c:b8:34:30:bb:41:29:36:dc:d9:1b:ab:e2:c1:
11:c2:10:7b:2f:5a:d9:15:2a:48:41:cf:17:4b:ed:
7f:8a:3e:9f:09:1a:e5:3e:a7:ac:04:0d:d7:4c:3e:
b5:f0:95:47:b3:27:7e:5a:cf:20:72:26:2e:ba:35:
85:4c:5a:43:7a:22:10:e9:66:d1:44:0b:4b:dc:dc:
06:9b:16:47:e4:e0:56:aa:cb:1f:d4:42:50:97:c5:
3b:b5:1b:7f:d4:b1:0b:7d:c8:fb:d3:fc:43:e8:a8:
5d:19:05:35:aa:a6:9f:8b:b7:a9:1a:f0:39:fe:71:
2c:e5:01:3e:10:d2:73:58:16:40:e7:f9:4a:2b:92:
8f:33:c1:fd:ce:02:f0:a9:61:9c:7c:3c:8a:be:6e:
88:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:C7:EC:10:C1:5B:00:9B:AF:E6:93:47:2F:F1:4B:77:A9:B8:E6:55
X509v3 Authority Key Identifier:
keyid:40:85:62:E2:B8:96:1B:22:E2:9C:76:2D:6C:99:03:31:BA:36:66:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QIVi4riWGyLinHYtbJkDMbo2Zm8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/52a6de-7232-49b1-91c7-cfdfcd4ee0f2/1/QIVi4riWGyLinHYtbJkDMbo2Zm8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/52a6de-7232-49b1-91c7-cfdfcd4ee0f2/1/QIVi4riWGyLinHYtbJkDMbo2Zm8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:de:cb:a3:49:ce:8d:d8:f4:81:9f:76:73:0b:34:02:d2:23:
0a:e9:f7:eb:29:75:91:68:7f:d1:3a:2e:a8:e3:a7:5d:3b:fe:
59:cf:9b:2d:49:a2:e4:3d:78:0b:55:c4:68:e5:9c:94:5e:a8:
b3:b7:d6:dc:aa:53:0d:ec:87:95:49:10:26:36:a3:c8:3a:8d:
45:c4:ec:42:1e:52:2b:29:f0:b5:cd:62:2a:9b:49:1e:83:a0:
ce:93:df:e3:1f:0f:a8:fe:fa:6e:12:24:ec:af:ae:c2:a4:90:
27:a7:43:81:71:5d:13:8d:75:7b:f9:dd:ae:4a:5f:8e:c3:21:
c3:2d:b6:86:da:f0:7e:3b:67:dd:d6:d6:4c:89:af:6c:00:71:
eb:fc:a0:43:68:d6:cb:6b:dc:b8:3d:88:39:64:fc:40:b2:48:
9d:65:1e:5c:2f:fd:b6:1f:c5:f1:9f:8c:5f:46:18:72:b8:c7:
81:9e:48:f9:ab:4f:46:71:e1:aa:c0:85:f7:f2:72:be:1a:6e:
b9:41:8c:4f:d8:32:2c:e3:a9:7c:9f:c3:0f:0f:30:93:6b:d0:
84:f1:1c:67:eb:7c:77:aa:76:e7:c5:25:f1:ff:2d:f5:4e:97:
cc:18:07:25:07:89:90:13:d5:b5:22:de:21:b0:db:75:a7:23:
7e:af:e7:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 13:31:47 2026 by rpki-client