Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/1ac3a0-4716-4be0-8ba2-fa84f3974990/1/Q7ixP34uSX7Rx7CjQXvd8ZvMYRo.mft
File: Q7ixP34uSX7Rx7CjQXvd8ZvMYRo.mft (raw, json)
Hash identifier: zmEOZEdBRvahS9pIC1q2U7I2KS5sdBiJ5sd8XLzfWFQ=
Subject key identifier: CF:37:F8:95:BA:C0:F9:4D:91:C6:F5:37:60:BF:F4:F0:C1:F0:76:69
Authority key identifier: 43:B8:B1:3F:7E:2E:49:7E:D1:C7:B0:A3:41:7B:DD:F1:9B:CC:61:1A
Certificate issuer: /CN=43b8b13f7e2e497ed1c7b0a3417bddf19bcc611a
Certificate serial: 019DA52FA7FA3E78D7260A16CE74B0A8E02F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q7ixP34uSX7Rx7CjQXvd8ZvMYRo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/1ac3a0-4716-4be0-8ba2-fa84f3974990/1/Q7ixP34uSX7Rx7CjQXvd8ZvMYRo.mft
Manifest number: 014F
Signing time: Sun 19 Apr 2026 10:00:56 +0000
Manifest this update: Sun 19 Apr 2026 10:00:56 +0000
Manifest next update: Mon 20 Apr 2026 10:00:56 +0000
Files and hashes: 1: Q7ixP34uSX7Rx7CjQXvd8ZvMYRo.crl (hash: j0li1z1LHtGoj7yVFCwEYZCNy8F552vYt8ILxjQZ4dU=)
2: dSgf7Rj9MRB36B06KCH4XtB0J-E.roa (hash: 50BV1O3krfrNrPmzDGVH6bT0c5/ZuT9nFLY2UgtP04I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/1ac3a0-4716-4be0-8ba2-fa84f3974990/1/Q7ixP34uSX7Rx7CjQXvd8ZvMYRo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/1ac3a0-4716-4be0-8ba2-fa84f3974990/1/Q7ixP34uSX7Rx7CjQXvd8ZvMYRo.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q7ixP34uSX7Rx7CjQXvd8ZvMYRo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a5:2f:a7:fa:3e:78:d7:26:0a:16:ce:74:b0:a8:e0:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43b8b13f7e2e497ed1c7b0a3417bddf19bcc611a
Validity
Not Before: Apr 19 10:00:56 2026 GMT
Not After : Apr 20 10:00:56 2026 GMT
Subject: CN=cf37f895bac0f94d91c6f53760bff4f0c1f07669
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:7f:e6:97:4a:7f:ed:96:e3:f5:d8:9c:42:fa:
ed:01:92:71:25:9e:a6:47:f4:c8:48:33:f3:c2:b8:
9f:10:dd:c4:6f:a9:17:30:c1:45:44:c1:b8:3e:af:
b3:9c:6b:36:41:f3:2f:13:db:2c:da:ca:52:50:08:
ad:a5:8b:1d:41:98:24:30:e2:f0:ef:d2:af:48:ba:
cc:f9:9d:a5:f6:6b:ae:0e:a2:a8:62:e4:f6:67:c5:
67:da:3f:d5:d3:3b:1b:f0:b2:66:16:d3:a4:66:27:
86:ae:d0:5f:ee:26:37:a4:a9:1c:19:fe:a0:85:ee:
d5:28:70:99:4b:b5:c5:ee:86:cd:83:5b:d2:1b:b8:
82:80:12:24:29:9c:7b:8c:e3:08:70:ac:f6:dc:fc:
d3:d7:53:e9:4c:55:68:f2:f1:f8:a3:97:96:74:40:
72:df:81:a6:73:c1:bb:8a:af:e6:de:7c:20:55:01:
87:6e:3d:14:72:21:8f:bd:31:58:cf:d5:ff:32:8a:
94:2d:55:f4:c7:06:34:5c:38:31:5e:c3:c1:ba:62:
be:23:92:3d:70:b0:f4:a0:69:a1:b7:4a:c4:7b:7a:
cb:6b:bd:31:5a:2b:a4:1a:07:ff:fc:99:fc:43:61:
cb:b4:ec:d3:ab:d7:59:e7:fd:25:cb:20:83:b9:a5:
62:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:37:F8:95:BA:C0:F9:4D:91:C6:F5:37:60:BF:F4:F0:C1:F0:76:69
X509v3 Authority Key Identifier:
keyid:43:B8:B1:3F:7E:2E:49:7E:D1:C7:B0:A3:41:7B:DD:F1:9B:CC:61:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q7ixP34uSX7Rx7CjQXvd8ZvMYRo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/1ac3a0-4716-4be0-8ba2-fa84f3974990/1/Q7ixP34uSX7Rx7CjQXvd8ZvMYRo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/1ac3a0-4716-4be0-8ba2-fa84f3974990/1/Q7ixP34uSX7Rx7CjQXvd8ZvMYRo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:86:83:e0:53:50:b8:cf:f4:58:c9:7b:30:fd:ea:1d:7d:72:
91:44:89:68:b2:5c:4f:9c:28:71:e1:e9:6d:ee:6b:44:05:9c:
0d:3b:6d:19:68:78:f4:88:13:ab:27:04:41:82:06:3e:c0:5a:
5d:ac:67:df:2c:76:4e:ee:ce:76:cf:5e:f6:3f:65:d5:25:ae:
43:24:5a:2b:65:24:8e:87:8e:65:7f:7f:e0:77:ac:3a:9e:4e:
68:c2:cb:d3:fe:9b:1c:c7:99:da:08:6c:d0:aa:1e:33:80:6d:
3f:93:d3:18:f0:13:f3:73:1e:0c:4d:84:1c:2d:95:f2:2e:b8:
f2:63:f1:82:a7:7c:62:03:87:55:10:50:09:7b:bb:c4:ec:00:
dd:0e:a5:3c:3c:ce:dc:74:4e:27:b9:f3:5c:ff:a1:bf:86:08:
ad:e3:86:5e:70:1e:af:9d:c7:f1:ad:71:a7:08:50:2f:4c:a1:
8f:a0:ef:60:9c:77:54:97:1a:6d:9e:fb:dc:b1:00:d0:37:2b:
86:30:1b:52:ef:f1:75:61:55:82:fc:63:c0:94:e0:bd:f3:7d:
d5:39:a7:08:37:d8:6f:cd:97:1f:70:5c:db:74:d2:00:4b:8a:
f0:ac:0d:e3:64:ff:13:fa:c3:1d:f9:93:95:dc:22:73:a8:44:
c8:08:c3:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 14:21:12 2026 by rpki-client