Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/513b77-9e3b-4a6c-9ed5-7f21d9befc2c/1/QpBWwzjRbJLN_aHlXQk2givFDNI.mft
File: QpBWwzjRbJLN_aHlXQk2givFDNI.mft (raw, json)
Hash identifier: Abrh8i+3rRO0dqygRxgPELLTA7cj+66eahmr061lZD4=
Subject key identifier: E6:06:8F:B0:C5:D5:F8:86:C1:FD:71:E6:B5:93:1E:6B:B5:47:6F:3D
Authority key identifier: 42:90:56:C3:38:D1:6C:92:CD:FD:A1:E5:5D:09:36:82:2B:C5:0C:D2
Certificate issuer: /CN=429056c338d16c92cdfda1e55d0936822bc50cd2
Certificate serial: 019D9999450B7DAE93C64ED50627F6EE7EED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QpBWwzjRbJLN_aHlXQk2givFDNI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/513b77-9e3b-4a6c-9ed5-7f21d9befc2c/1/QpBWwzjRbJLN_aHlXQk2givFDNI.mft
Manifest number: 0756
Signing time: Fri 17 Apr 2026 04:00:51 +0000
Manifest this update: Fri 17 Apr 2026 04:00:51 +0000
Manifest next update: Sat 18 Apr 2026 04:00:51 +0000
Files and hashes: 1: QpBWwzjRbJLN_aHlXQk2givFDNI.crl (hash: MwbDoPHChC7Z51sMw+AGiRYc9M+eerSTlQ0Dor717GU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/513b77-9e3b-4a6c-9ed5-7f21d9befc2c/1/QpBWwzjRbJLN_aHlXQk2givFDNI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/513b77-9e3b-4a6c-9ed5-7f21d9befc2c/1/QpBWwzjRbJLN_aHlXQk2givFDNI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QpBWwzjRbJLN_aHlXQk2givFDNI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 04:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:99:45:0b:7d:ae:93:c6:4e:d5:06:27:f6:ee:7e:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=429056c338d16c92cdfda1e55d0936822bc50cd2
Validity
Not Before: Apr 17 04:00:51 2026 GMT
Not After : Apr 18 04:00:51 2026 GMT
Subject: CN=e6068fb0c5d5f886c1fd71e6b5931e6bb5476f3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f9:38:42:ca:79:ee:83:e6:f7:f6:3f:4f:62:
89:8f:73:dc:ac:d2:e2:f0:64:23:cb:7c:0d:2f:8c:
71:84:6f:56:c6:e1:95:ac:fe:ef:f4:7a:0d:13:60:
5e:d5:83:7a:8c:68:34:92:12:72:e4:ba:72:c8:bb:
d4:a2:c9:be:e2:f3:97:60:57:18:4d:63:08:26:c6:
a5:b3:95:f2:a2:d9:95:87:03:99:67:b1:15:a4:13:
36:15:64:ba:a2:b0:56:4b:a2:ca:43:ed:d3:f2:03:
bf:5f:60:8c:b1:75:fb:fc:fa:22:b6:17:cf:f8:d0:
08:36:ea:49:0d:54:45:ee:50:eb:8f:70:19:67:af:
9b:59:f2:06:26:aa:d7:b0:8c:22:7e:25:33:2f:e2:
76:e3:05:61:74:30:5a:02:0d:c1:8d:d6:f3:be:01:
1f:9b:ca:f2:5a:bc:b6:64:5f:d6:5d:dc:e7:37:e2:
e1:fa:6d:28:10:c0:10:f9:df:01:87:fe:e0:9b:f4:
d7:7a:ba:36:3b:82:15:b7:8b:e0:c3:18:34:24:41:
16:c6:3c:a6:63:95:81:c5:ca:2b:65:f5:4b:b8:68:
27:b2:aa:f0:33:c4:7f:36:e1:83:4e:cd:f8:27:e8:
c8:8d:43:a1:b1:16:13:c0:bc:a0:ab:8d:88:00:93:
21:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:06:8F:B0:C5:D5:F8:86:C1:FD:71:E6:B5:93:1E:6B:B5:47:6F:3D
X509v3 Authority Key Identifier:
keyid:42:90:56:C3:38:D1:6C:92:CD:FD:A1:E5:5D:09:36:82:2B:C5:0C:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QpBWwzjRbJLN_aHlXQk2givFDNI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/513b77-9e3b-4a6c-9ed5-7f21d9befc2c/1/QpBWwzjRbJLN_aHlXQk2givFDNI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/513b77-9e3b-4a6c-9ed5-7f21d9befc2c/1/QpBWwzjRbJLN_aHlXQk2givFDNI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:53:e2:8d:78:b0:aa:86:8b:48:cc:c9:d0:6d:a4:02:f5:c4:
2e:b9:9c:5a:19:48:a8:ba:c2:06:fb:b4:2f:4d:8d:88:c0:36:
5e:3f:5d:88:ef:cf:ad:30:03:76:6a:8d:55:3d:49:ea:b8:e4:
2d:ab:c2:cb:f4:2e:d2:44:d0:ef:3d:5b:4c:24:94:f1:18:bb:
17:8d:3b:c0:3f:f8:ed:69:34:5d:73:37:1c:05:01:a9:4d:2d:
11:b7:b1:7f:c5:20:a1:3c:8c:1a:90:fa:a6:f1:cd:05:ec:79:
96:8b:ea:d7:44:33:92:a9:f4:23:09:a0:6c:30:0e:74:92:31:
7a:2f:00:f9:69:d8:ff:40:3d:10:ee:8c:37:f6:b4:7b:11:07:
8e:f6:4f:e1:b1:d3:68:cb:7c:ef:ef:06:c4:60:53:5f:c1:98:
f3:95:9c:91:b9:57:e4:c0:fc:cd:87:8e:1a:ec:b6:6f:96:e2:
21:54:89:b4:24:b1:f3:30:68:ed:c3:56:89:36:83:8f:41:92:
71:fa:77:40:06:cf:87:2c:26:86:27:94:c0:29:8e:1a:71:39:
6a:f9:89:73:f8:8f:59:92:33:2f:b7:72:2a:55:b0:6b:11:0f:
dd:ee:d4:0c:13:4f:72:60:84:71:9e:cb:98:9f:15:59:8f:40:
5b:26:ed:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:21:02 2026 by rpki-client