Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9b6016-1424-4188-ae62-7d54927445f6/1/X017eQ8_STQyjhKaLd5N10qj4T4.mft
File: X017eQ8_STQyjhKaLd5N10qj4T4.mft (raw, json)
Hash identifier: vQ0IYajSTobHvczYCnZhiQCF1fzhFp73v8fK9RiVNlE=
Subject key identifier: 9A:AC:B2:67:20:26:63:67:76:DC:D5:00:7F:A0:94:42:23:BE:F9:1C
Authority key identifier: 5F:4D:7B:79:0F:3F:49:34:32:8E:12:9A:2D:DE:4D:D7:4A:A3:E1:3E
Certificate issuer: /CN=5f4d7b790f3f4934328e129a2dde4dd74aa3e13e
Certificate serial: 019DA48A55F98F70B156CA9317595FD66060
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X017eQ8_STQyjhKaLd5N10qj4T4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9b6016-1424-4188-ae62-7d54927445f6/1/X017eQ8_STQyjhKaLd5N10qj4T4.mft
Manifest number: 0344
Signing time: Sun 19 Apr 2026 07:00:22 +0000
Manifest this update: Sun 19 Apr 2026 07:00:22 +0000
Manifest next update: Mon 20 Apr 2026 07:00:22 +0000
Files and hashes: 1: X017eQ8_STQyjhKaLd5N10qj4T4.crl (hash: y3UngdDmLSa59BXYqPZbkr0pxHIEW3AgfjtY8icLqhk=)
2: kSjjDOzoNANECAR0DxlgQ3qg0Ak.roa (hash: /lj5qR8E+7YT0u9bmkNO6K63OEKU1WfqJKCxaWzabBQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/9b6016-1424-4188-ae62-7d54927445f6/1/X017eQ8_STQyjhKaLd5N10qj4T4.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/9b6016-1424-4188-ae62-7d54927445f6/1/X017eQ8_STQyjhKaLd5N10qj4T4.mft
rsync://rpki.ripe.net/repository/DEFAULT/X017eQ8_STQyjhKaLd5N10qj4T4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:8a:55:f9:8f:70:b1:56:ca:93:17:59:5f:d6:60:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f4d7b790f3f4934328e129a2dde4dd74aa3e13e
Validity
Not Before: Apr 19 07:00:22 2026 GMT
Not After : Apr 20 07:00:22 2026 GMT
Subject: CN=9aacb2672026636776dcd5007fa0944223bef91c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:c1:64:fc:06:cb:0d:f8:4b:31:c5:75:b5:f2:
fd:61:2a:88:38:09:de:36:37:4b:2a:29:a6:3e:30:
01:fe:d9:d9:b6:18:4e:0f:fc:e4:ec:90:79:bf:41:
f1:4d:9f:8f:3a:a0:56:c9:b3:a5:cd:81:d9:7a:b3:
92:ea:4a:69:9a:b8:f7:3e:14:d6:31:f3:df:c5:f1:
ff:ad:43:7d:80:54:4e:18:75:04:97:12:b5:f8:40:
76:0f:d5:15:de:39:4f:c9:ee:98:ea:ef:37:bd:c7:
ae:d3:24:74:a5:63:5f:b7:d2:cf:67:5c:16:82:ed:
09:c1:22:24:aa:25:2c:e0:11:59:a4:c5:f0:62:38:
f6:61:11:27:1d:b9:16:9e:74:27:03:d8:31:62:75:
6b:3b:65:48:6b:67:f6:97:2a:26:99:0e:e0:37:30:
fa:d3:fc:8c:4d:5e:85:e8:61:f6:1c:d5:c6:13:96:
b0:18:ee:8e:b9:5d:01:fd:fd:1f:74:52:39:fd:fb:
99:07:2a:c1:09:91:1f:41:29:1f:c3:c5:2b:1c:cb:
56:d0:09:80:14:f5:40:26:e6:9e:e3:7c:37:c5:5e:
67:27:8b:6f:cd:33:be:0b:8c:57:7e:db:36:37:8d:
7e:3c:dd:98:b9:55:cf:aa:78:8b:66:fe:20:ac:d2:
20:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:AC:B2:67:20:26:63:67:76:DC:D5:00:7F:A0:94:42:23:BE:F9:1C
X509v3 Authority Key Identifier:
keyid:5F:4D:7B:79:0F:3F:49:34:32:8E:12:9A:2D:DE:4D:D7:4A:A3:E1:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X017eQ8_STQyjhKaLd5N10qj4T4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9b6016-1424-4188-ae62-7d54927445f6/1/X017eQ8_STQyjhKaLd5N10qj4T4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9b6016-1424-4188-ae62-7d54927445f6/1/X017eQ8_STQyjhKaLd5N10qj4T4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:ba:04:19:4e:f2:43:60:7c:81:ca:1c:fa:b9:5b:68:b4:53:
13:0f:95:a0:c0:f2:5f:85:c8:81:81:d1:e1:ce:f8:2c:cb:3d:
04:7a:68:62:bb:fa:fa:c7:ad:b8:ee:96:7f:35:b5:e0:26:f1:
90:40:19:46:f3:c0:06:e9:1e:f8:cb:4f:57:e8:12:4c:17:c3:
4e:de:22:3e:de:28:7d:74:48:61:38:a2:a8:ee:89:7a:ce:fc:
ca:98:88:ed:78:6d:7c:99:46:0b:a7:79:30:8c:03:a6:92:d8:
a9:97:c5:90:64:a8:4c:ce:8b:ab:7f:29:ea:43:7e:4a:57:ae:
cf:ca:d5:1f:77:f3:7d:5d:ae:0e:4e:b3:6b:f6:9f:38:25:5e:
f3:92:27:c1:38:43:74:a8:cd:95:6d:03:08:c2:65:a9:6d:8e:
dd:16:d8:d9:83:6c:1e:3e:be:d8:8d:db:58:93:75:8f:4f:90:
4d:2f:a3:51:12:1d:6b:fd:ff:94:94:50:06:ef:81:ce:b8:a7:
a4:06:f1:e8:2d:44:63:8c:ae:cb:fa:22:25:54:c6:e9:a3:34:
d2:26:5c:e3:64:de:26:d1:75:9f:d9:35:83:50:fe:58:80:26:
42:ff:6c:22:a0:00:c6:14:a4:54:4d:0a:99:f2:58:3d:cf:23:
d3:9a:f1:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 14:46:57 2026 by rpki-client