Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.mft
File: QEPj9wJFibliregc9EVjBvTTXmg.mft (raw, json)
Hash identifier: A8MuulbxqrVBo/JkodwKzd78aVIJxfY9L3sg8u2a9VA=
Subject key identifier: 4D:8F:0B:09:F3:FF:1F:95:B7:32:D8:BE:21:B6:A8:20:79:D9:23:9B
Authority key identifier: 40:43:E3:F7:02:45:89:B9:62:AD:E8:1C:F4:45:63:06:F4:D3:5E:68
Certificate issuer: /CN=4043e3f7024589b962ade81cf4456306f4d35e68
Certificate serial: 019D9C2D347C1F1483631F92C970426D3DF4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QEPj9wJFibliregc9EVjBvTTXmg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.mft
Manifest number: 15AA
Signing time: Fri 17 Apr 2026 16:01:41 +0000
Manifest this update: Fri 17 Apr 2026 16:01:41 +0000
Manifest next update: Sat 18 Apr 2026 16:01:41 +0000
Files and hashes: 1: QEPj9wJFibliregc9EVjBvTTXmg.crl (hash: x6pMF14q7Rv4Cz1ty1nkGmEAzGeU4XK9E6ftpIzg9BU=)
2: w011lYt62c3hWszahC6AWv6giHI.roa (hash: xoQYARNhUnVWQjLbtBlHZU61msSzpQAeDZVvNEmV+D0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.mft
rsync://rpki.ripe.net/repository/DEFAULT/QEPj9wJFibliregc9EVjBvTTXmg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:2d:34:7c:1f:14:83:63:1f:92:c9:70:42:6d:3d:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4043e3f7024589b962ade81cf4456306f4d35e68
Validity
Not Before: Apr 17 16:01:41 2026 GMT
Not After : Apr 18 16:01:41 2026 GMT
Subject: CN=4d8f0b09f3ff1f95b732d8be21b6a82079d9239b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:c5:21:b5:ff:5d:8d:61:40:a8:2e:4b:8a:22:
89:62:fd:2f:4e:c4:0b:c4:57:1b:9f:67:98:30:70:
73:67:b0:b6:bb:3c:5b:f7:61:be:02:76:28:0c:5b:
24:9a:fa:e9:a3:79:75:31:86:9c:dd:72:40:13:ab:
68:af:ef:a0:4e:69:4f:7b:3c:5e:7d:5b:0f:f8:a9:
31:5d:89:3c:eb:df:83:19:f3:01:90:e6:fa:21:04:
3f:45:3d:27:04:bc:c3:26:97:e8:89:28:d3:01:ad:
38:95:7c:6e:1a:b7:b2:9e:68:53:57:9e:f1:99:ba:
58:23:01:7b:4d:e3:58:71:c6:8a:70:60:7f:79:e5:
28:fa:3d:c9:37:20:ca:c1:84:95:36:57:89:59:81:
b8:56:12:63:14:49:7b:1c:a9:45:15:b3:93:f3:fc:
aa:4d:e1:5b:73:1d:6f:6c:14:e0:b8:a2:77:94:19:
33:66:1a:d2:9c:e8:a2:41:5d:82:97:07:b6:62:47:
d3:8b:57:0e:0e:19:8b:c9:db:c1:1c:b7:a7:b9:18:
22:dc:dc:ed:37:9e:29:24:c7:62:02:77:95:0a:00:
38:4c:02:12:6e:96:a3:a7:91:c2:e6:7e:44:32:dc:
69:7f:54:ff:98:fa:78:56:16:74:00:92:48:84:85:
f9:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:8F:0B:09:F3:FF:1F:95:B7:32:D8:BE:21:B6:A8:20:79:D9:23:9B
X509v3 Authority Key Identifier:
keyid:40:43:E3:F7:02:45:89:B9:62:AD:E8:1C:F4:45:63:06:F4:D3:5E:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QEPj9wJFibliregc9EVjBvTTXmg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:8b:ee:dc:27:a7:33:7c:b4:61:e7:a3:6c:48:1d:9a:a5:ba:
c1:ea:68:c2:26:cf:42:aa:28:e6:91:e2:8a:c8:10:e4:93:a6:
17:fe:28:b0:bc:eb:25:c4:06:ad:93:38:9a:0b:ad:da:06:a0:
ac:6a:4e:c5:8d:19:33:49:a3:e8:23:d0:58:14:f4:67:62:47:
4b:5c:81:4e:91:c6:f1:00:9b:41:ac:09:f0:e1:05:07:98:89:
9f:19:06:51:bf:36:8f:dd:c2:92:42:a4:78:04:71:b4:18:e6:
b4:55:21:0c:3b:f6:28:13:52:f4:80:9d:34:7e:37:5a:e7:2b:
46:2e:b9:9c:2e:f3:e4:2f:40:99:2a:67:18:39:68:f4:f1:93:
f5:f4:e5:2a:f6:0c:cb:e4:58:13:75:82:a4:79:7e:a5:74:64:
53:51:bd:ae:0f:8f:5b:bb:97:11:3a:0e:5e:1a:76:25:52:7b:
7b:82:25:41:24:bb:10:96:6b:f6:af:64:60:d0:24:c0:02:a4:
cd:d1:48:ff:2e:8c:4e:d6:b4:9a:05:c3:26:7d:2f:c7:2e:15:
29:30:20:47:0b:63:51:b7:a2:3d:37:52:b4:d9:3f:d6:14:bf:
84:90:84:d5:ba:5e:94:45:1e:7b:4f:a7:4e:81:c5:a2:17:fc:
59:72:1c:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 00:07:13 2026 by rpki-client