Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.mft
File: qklDGDthG-Ogd1OCUJSQBIsK1zg.mft (raw, json)
Hash identifier: t3J28cCjl+qqVL+L/Z7rxjzFMPZ3rWmipvTpIiPS3hY=
Subject key identifier: 8F:5C:EA:2D:A1:7B:A3:BA:2F:10:16:C6:33:D0:8C:87:15:12:7A:95
Authority key identifier: AA:49:43:18:3B:61:1B:E3:A0:77:53:82:50:94:90:04:8B:0A:D7:38
Certificate issuer: /CN=aa4943183b611be3a0775382509490048b0ad738
Certificate serial: 019D9962BA5E775034434AFC219F33AA5F2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qklDGDthG-Ogd1OCUJSQBIsK1zg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.mft
Manifest number: 18C4
Signing time: Fri 17 Apr 2026 03:01:17 +0000
Manifest this update: Fri 17 Apr 2026 03:01:17 +0000
Manifest next update: Sat 18 Apr 2026 03:01:17 +0000
Files and hashes: 1: 979-UeeMesUYtKwgSXJYqxuZCeQ.roa (hash: Gy12Ft/uLr8x9z8NPGEB7zTkTDi5D4+71v/AaSEGb9w=)
2: qklDGDthG-Ogd1OCUJSQBIsK1zg.crl (hash: bmBpxde1XBPHHtyUard9O2aV7mtHfAK4LnYW1qr3Hmg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.mft
rsync://rpki.ripe.net/repository/DEFAULT/qklDGDthG-Ogd1OCUJSQBIsK1zg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 03:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:ba:5e:77:50:34:43:4a:fc:21:9f:33:aa:5f:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa4943183b611be3a0775382509490048b0ad738
Validity
Not Before: Apr 17 03:01:17 2026 GMT
Not After : Apr 18 03:01:17 2026 GMT
Subject: CN=8f5cea2da17ba3ba2f1016c633d08c8715127a95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:84:57:2e:2b:46:07:d3:86:37:3d:a9:f9:53:
c3:30:15:e9:b3:53:98:24:f4:70:a9:04:c7:29:b4:
45:d0:3d:e5:44:ce:40:9c:7f:07:98:fe:ab:4a:24:
4b:98:3c:7f:f9:85:36:fc:fb:9b:16:33:be:7d:49:
d8:ca:7f:4c:f4:ac:3e:38:a8:5a:78:fc:89:04:85:
f1:98:e8:90:15:ca:a1:e7:96:f2:51:ba:5c:72:de:
b3:e0:30:93:39:6a:8b:f8:41:76:ed:a0:cb:57:e8:
d7:c7:ab:99:28:9d:b3:1b:3f:65:e5:e7:9e:8a:9a:
4e:ae:cf:69:f2:b1:15:5a:55:50:44:da:e8:3f:50:
79:76:93:d0:88:52:13:e3:9a:17:a8:63:5a:f5:8a:
98:10:d3:19:50:40:d1:c1:78:80:bd:10:d0:2d:a7:
6e:87:38:09:61:fc:e8:6f:12:cc:74:ba:cf:f1:1a:
8b:65:e0:7b:c8:8f:ec:5b:85:e5:eb:88:f5:6c:de:
0f:9a:52:5a:c8:0e:bf:61:62:3a:67:a9:e0:89:e4:
6f:b8:7b:97:77:15:e1:b2:1d:ec:20:ac:e2:a1:84:
4e:8a:1d:74:a7:ee:3d:95:58:57:eb:7b:d7:71:83:
1c:f6:4c:5c:64:5b:ac:be:22:6c:d6:3e:71:cc:38:
18:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:5C:EA:2D:A1:7B:A3:BA:2F:10:16:C6:33:D0:8C:87:15:12:7A:95
X509v3 Authority Key Identifier:
keyid:AA:49:43:18:3B:61:1B:E3:A0:77:53:82:50:94:90:04:8B:0A:D7:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qklDGDthG-Ogd1OCUJSQBIsK1zg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:76:77:c7:a2:1f:2d:0a:41:7a:03:71:03:9e:f1:29:f0:5c:
72:cb:a6:0f:7a:95:3e:84:e1:ed:06:61:5a:4a:f5:dc:ac:e9:
38:8a:e1:0d:41:23:67:0e:f7:c2:80:82:32:c1:41:95:2b:b4:
a0:e4:06:ab:79:ba:72:8d:b1:ba:cc:b9:d9:b5:f6:c6:6b:8c:
0f:72:15:a0:3d:54:1e:46:03:5d:03:53:3a:77:55:bf:a5:69:
2f:9f:ef:28:00:e4:4c:eb:80:df:56:18:a7:ea:96:76:a8:de:
c0:44:b6:3e:01:e2:57:56:20:4b:0a:e3:51:58:18:f6:18:85:
ff:44:df:6d:f8:6a:2b:bd:d4:c2:61:76:b1:97:c2:d7:de:ab:
44:b5:3e:b6:bb:b7:99:97:ba:7d:4a:8f:70:8d:f2:7c:56:b7:
86:3f:62:14:65:90:52:11:90:5e:ad:18:09:28:51:90:1d:06:
8b:f0:2c:0b:a3:a7:a8:8d:9f:dc:45:a7:0a:8b:a3:89:59:93:
c1:37:69:ac:6a:7e:d5:e0:1c:c5:dc:4d:a7:dc:07:61:5d:35:
f0:46:0d:8f:8c:52:33:f4:79:30:7a:5e:d4:dc:15:1b:81:15:
25:a3:fd:49:f4:17:ee:5b:51:3e:62:96:54:9e:6e:01:9a:96:
cd:40:d4:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:03:53 2026 by rpki-client