Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/935044-1af5-45d0-aceb-d0406767e6cc/1/Q4-O0SG6MIHPshX6q1CuFFtZDdI.mft
File: Q4-O0SG6MIHPshX6q1CuFFtZDdI.mft (raw, json)
Hash identifier: 0FNpQa52GVXN5/KeuzM/z3flMDPpemp8jyE1lf7Rr/c=
Subject key identifier: 5B:B4:F2:2B:DB:AF:E6:06:D6:48:0E:D9:DB:E6:4B:47:A1:C1:8E:37
Authority key identifier: 43:8F:8E:D1:21:BA:30:81:CF:B2:15:FA:AB:50:AE:14:5B:59:0D:D2
Certificate issuer: /CN=438f8ed121ba3081cfb215faab50ae145b590dd2
Certificate serial: 019D98F49FA6D3627A7EDCEEFB95D3D639D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q4-O0SG6MIHPshX6q1CuFFtZDdI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/935044-1af5-45d0-aceb-d0406767e6cc/1/Q4-O0SG6MIHPshX6q1CuFFtZDdI.mft
Manifest number: 11A8
Signing time: Fri 17 Apr 2026 01:01:01 +0000
Manifest this update: Fri 17 Apr 2026 01:01:01 +0000
Manifest next update: Sat 18 Apr 2026 01:01:01 +0000
Files and hashes: 1: Q4-O0SG6MIHPshX6q1CuFFtZDdI.crl (hash: s4rlLGZzgdNfGUbZ2Kw2uvyxbVLFihFBl66SLztQKwY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/935044-1af5-45d0-aceb-d0406767e6cc/1/Q4-O0SG6MIHPshX6q1CuFFtZDdI.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/935044-1af5-45d0-aceb-d0406767e6cc/1/Q4-O0SG6MIHPshX6q1CuFFtZDdI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q4-O0SG6MIHPshX6q1CuFFtZDdI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:9f:a6:d3:62:7a:7e:dc:ee:fb:95:d3:d6:39:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=438f8ed121ba3081cfb215faab50ae145b590dd2
Validity
Not Before: Apr 17 01:01:01 2026 GMT
Not After : Apr 18 01:01:01 2026 GMT
Subject: CN=5bb4f22bdbafe606d6480ed9dbe64b47a1c18e37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:86:be:2d:27:21:a6:22:10:46:38:fb:89:e4:
b8:44:16:7d:0e:7d:39:26:36:0e:ca:21:d0:29:2f:
0a:32:f8:5c:67:4f:a0:39:52:f9:32:03:6a:b3:d0:
e5:e5:cf:65:7a:71:1d:b8:01:8e:1d:eb:89:6a:de:
c7:b1:d6:3e:f3:63:30:57:b7:41:b9:6f:7a:30:5a:
a1:45:05:95:30:8a:c2:a7:c6:22:56:d9:74:35:f5:
02:a6:1a:20:02:8d:50:59:b9:20:3e:1d:f5:df:9e:
81:fa:9c:ce:32:d0:82:d2:b2:0b:98:3e:de:dd:ea:
68:db:dc:98:d0:72:2a:bc:b9:f8:8f:c0:37:69:80:
4a:b7:1d:6f:02:0f:f0:6f:4c:57:0d:bd:80:c5:bd:
56:13:ce:83:89:0f:80:9f:21:7e:85:f7:ca:00:47:
31:d1:4f:69:34:57:4c:b4:81:9a:35:bf:6d:b8:d4:
a0:88:b2:ae:f0:4d:76:aa:73:01:39:ff:8c:76:8c:
db:5a:41:60:4f:21:9c:86:c6:05:80:ea:7d:ee:33:
de:0c:97:00:d2:bd:64:0c:eb:89:2c:d4:17:71:54:
96:83:3d:4a:d4:71:0c:3e:c9:28:9c:9e:1b:86:49:
b3:23:5a:e4:1f:5c:ab:62:90:f6:a4:4c:45:4e:92:
cd:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:B4:F2:2B:DB:AF:E6:06:D6:48:0E:D9:DB:E6:4B:47:A1:C1:8E:37
X509v3 Authority Key Identifier:
keyid:43:8F:8E:D1:21:BA:30:81:CF:B2:15:FA:AB:50:AE:14:5B:59:0D:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q4-O0SG6MIHPshX6q1CuFFtZDdI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/935044-1af5-45d0-aceb-d0406767e6cc/1/Q4-O0SG6MIHPshX6q1CuFFtZDdI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/935044-1af5-45d0-aceb-d0406767e6cc/1/Q4-O0SG6MIHPshX6q1CuFFtZDdI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:9a:b4:df:b6:03:a8:a4:6d:84:5e:be:6a:bb:07:cb:4d:d6:
d4:5c:83:29:53:5c:b6:d3:f0:13:f2:30:52:8c:47:05:fa:cd:
2a:53:e9:78:81:5f:cf:92:14:48:db:a1:98:f1:fa:ba:e6:74:
f5:03:b1:fb:f4:21:43:d1:6f:8a:f8:15:7c:02:0c:72:f0:e5:
78:46:1d:6d:4b:8a:26:84:dd:89:52:41:2f:65:68:31:cf:69:
6c:b3:82:6a:20:3c:e6:d3:ab:56:a8:f1:33:75:79:ce:c2:fb:
50:fe:39:be:1f:a1:3e:f2:07:9e:95:da:6d:1e:f1:26:0e:6c:
c8:ee:d6:7d:bb:cd:77:f4:33:f1:2e:c0:b8:b9:28:7a:d9:35:
09:30:c6:50:8a:c2:75:41:94:33:8f:60:00:43:52:28:2d:5f:
c0:42:57:d6:0d:19:f7:23:06:cf:93:f6:68:d2:00:04:d7:71:
0c:4e:2b:46:f8:b3:fb:2f:d1:da:ac:6b:9f:80:ef:74:60:2b:
6a:46:5a:3f:d7:09:4e:b4:dd:91:63:8b:7a:1e:3e:e0:ea:e4:
a3:67:b7:76:73:bf:54:8a:82:4e:a2:ec:f3:88:75:f6:ee:f7:
45:81:14:49:d9:28:a6:c7:68:57:f0:6a:3b:73:3e:3f:48:90:
66:e9:58:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:25:46 2026 by rpki-client