Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/913752-b8dc-4dff-8667-747b0e57ab5e/1/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.mft
File: Qk_Ro6Aljcymf8nd2_TjYVfmpxY.mft (raw, json)
Hash identifier: PE8rnl8iCAzQqOovWJMeQdvOK5IakekrvNfRfQY2t1c=
Subject key identifier: 43:7B:71:C9:27:DE:A4:A8:F6:4E:BF:60:E1:D2:E4:AB:80:7C:C2:1D
Authority key identifier: 42:4F:D1:A3:A0:25:8D:CC:A6:7F:C9:DD:DB:F4:E3:61:57:E6:A7:16
Certificate issuer: /CN=424fd1a3a0258dcca67fc9dddbf4e36157e6a716
Certificate serial: 019DA3AF05A533417827AA3757A2A89EE0FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/913752-b8dc-4dff-8667-747b0e57ab5e/1/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.mft
Manifest number: 18C7
Signing time: Sun 19 Apr 2026 03:00:49 +0000
Manifest this update: Sun 19 Apr 2026 03:00:49 +0000
Manifest next update: Mon 20 Apr 2026 03:00:49 +0000
Files and hashes: 1: NMKwSUUrM8k8eQKWjQoXhVr67Q0.roa (hash: CYXCafl1+25dso4rJFuju+aK/xutXRo5p4nK7eGdbTw=)
2: Qk_Ro6Aljcymf8nd2_TjYVfmpxY.crl (hash: 48PAs+HOot+yijbOOifQWP0l6wS3X6//DRFdagHnvj8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/913752-b8dc-4dff-8667-747b0e57ab5e/1/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/913752-b8dc-4dff-8667-747b0e57ab5e/1/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:af:05:a5:33:41:78:27:aa:37:57:a2:a8:9e:e0:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=424fd1a3a0258dcca67fc9dddbf4e36157e6a716
Validity
Not Before: Apr 19 03:00:49 2026 GMT
Not After : Apr 20 03:00:49 2026 GMT
Subject: CN=437b71c927dea4a8f64ebf60e1d2e4ab807cc21d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:17:62:73:06:c4:eb:98:bf:09:c2:5f:45:d3:
43:75:a1:32:34:e2:7b:1d:e1:32:11:e0:7c:7b:6c:
b6:32:f3:ae:96:c6:f7:d9:c0:f8:98:b7:5f:57:18:
90:1b:38:8b:cb:d8:bb:8a:12:b5:26:ad:05:5c:9c:
65:fc:d6:80:9a:cb:02:83:f0:89:d5:d1:2e:f0:78:
79:05:26:30:9b:f4:01:74:1b:18:93:59:f9:f9:50:
45:cb:b5:44:73:f4:fa:16:72:7e:c7:0c:d0:e8:89:
b6:8e:4f:4d:b7:6b:9e:71:a7:89:f9:93:1a:04:19:
8d:56:75:38:06:06:83:92:1b:3c:ec:bb:0e:9d:83:
b5:2a:02:7e:92:98:3f:3b:90:f5:3e:d8:7c:74:a4:
c3:7c:68:a8:82:f2:a8:07:42:ea:b9:a3:bd:9c:29:
8f:78:a7:f8:27:38:66:3d:70:ef:54:09:6d:26:06:
b3:83:d6:c3:e0:c0:96:fd:c2:8c:32:02:b6:37:ca:
51:a8:8a:4e:13:1f:6e:ac:cc:84:a2:d2:93:48:0d:
15:b8:a9:fb:69:75:af:ea:90:49:00:f5:46:25:d1:
08:81:90:4e:a6:30:5b:25:e1:45:4c:2e:1d:f2:50:
68:c3:d2:cd:39:5a:74:49:f6:f0:bd:ac:05:d0:c6:
71:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:7B:71:C9:27:DE:A4:A8:F6:4E:BF:60:E1:D2:E4:AB:80:7C:C2:1D
X509v3 Authority Key Identifier:
keyid:42:4F:D1:A3:A0:25:8D:CC:A6:7F:C9:DD:DB:F4:E3:61:57:E6:A7:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/913752-b8dc-4dff-8667-747b0e57ab5e/1/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/913752-b8dc-4dff-8667-747b0e57ab5e/1/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:9d:bf:4b:43:73:10:a9:46:75:21:31:90:4e:f8:46:03:b9:
de:22:0e:60:84:5b:f2:07:22:2c:53:68:42:f2:00:8b:71:d3:
b6:3c:b6:b7:ff:63:9f:6d:8c:2a:9d:09:10:d6:f3:5b:02:c7:
ab:81:9a:09:6a:7a:de:e3:aa:37:bb:66:a2:75:f1:86:95:e8:
0b:7d:21:fd:de:73:ec:0a:e1:47:7d:50:b1:51:4b:fc:45:a5:
fa:32:76:6a:a8:07:80:c5:3b:b8:8d:94:f5:73:46:78:78:d7:
8b:c5:93:c8:99:6d:c4:fd:df:35:d3:7e:42:69:26:2d:65:45:
b7:36:72:07:53:49:bb:a3:57:59:e3:9e:14:8c:25:e0:dc:94:
65:fb:53:a5:4a:5a:06:e6:ac:ad:f6:1c:c1:4e:30:52:f7:f0:
99:1b:1b:cc:8d:9a:86:06:e8:80:85:cc:87:18:13:df:ba:21:
69:55:c2:b5:f7:71:08:3f:b0:0a:49:d3:7e:6d:dd:2a:55:6c:
89:e9:60:63:73:35:f0:e6:71:62:72:7a:c1:58:91:1b:52:8d:
83:cb:4c:4c:dc:86:f0:36:2a:97:0e:82:7b:5b:06:0f:79:e9:
85:f4:b3:c5:d7:79:89:dd:a8:f0:4e:72:50:93:b5:b3:3e:47:
69:d4:38:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 08:59:27 2026 by rpki-client