Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/05b1e3-24c0-4668-9f40-fe77473e3dcf/1/qwJca7PczxsWUUnChzwEsabH2no.mft
File: qwJca7PczxsWUUnChzwEsabH2no.mft (raw, json)
Hash identifier: BN0c72nUe9IyT8PDIStBbnAnA6bTUSexx6rcQw6wFRA=
Subject key identifier: 4E:81:46:C5:AF:B8:95:35:C1:F9:3C:52:4A:CA:E8:5E:92:75:31:9D
Authority key identifier: AB:02:5C:6B:B3:DC:CF:1B:16:51:49:C2:87:3C:04:B1:A6:C7:DA:7A
Certificate issuer: /CN=ab025c6bb3dccf1b165149c2873c04b1a6c7da7a
Certificate serial: 019D98F54D22E1EDF19D7F035E935A6D0506
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwJca7PczxsWUUnChzwEsabH2no.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/05b1e3-24c0-4668-9f40-fe77473e3dcf/1/qwJca7PczxsWUUnChzwEsabH2no.mft
Manifest number: 0D7D
Signing time: Fri 17 Apr 2026 01:01:46 +0000
Manifest this update: Fri 17 Apr 2026 01:01:46 +0000
Manifest next update: Sat 18 Apr 2026 01:01:46 +0000
Files and hashes: 1: qwJca7PczxsWUUnChzwEsabH2no.crl (hash: oTDBenohbKyKu04SDWOr934qGD1Xx3u04+bi0Yy8jJA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/05b1e3-24c0-4668-9f40-fe77473e3dcf/1/qwJca7PczxsWUUnChzwEsabH2no.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/05b1e3-24c0-4668-9f40-fe77473e3dcf/1/qwJca7PczxsWUUnChzwEsabH2no.mft
rsync://rpki.ripe.net/repository/DEFAULT/qwJca7PczxsWUUnChzwEsabH2no.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 01:01:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f5:4d:22:e1:ed:f1:9d:7f:03:5e:93:5a:6d:05:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab025c6bb3dccf1b165149c2873c04b1a6c7da7a
Validity
Not Before: Apr 17 01:01:46 2026 GMT
Not After : Apr 18 01:01:46 2026 GMT
Subject: CN=4e8146c5afb89535c1f93c524acae85e9275319d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:bb:63:f2:88:55:be:85:98:4a:f6:95:73:89:
65:90:ab:d6:2c:41:1f:4c:68:a4:33:00:de:53:0a:
4f:7f:cd:40:4a:16:3d:e7:0f:08:b0:8a:fc:6b:f3:
ed:52:40:db:68:3c:c7:ed:cd:34:51:80:79:5a:55:
c7:89:80:68:d5:a7:3c:f4:81:fb:67:89:e0:a1:c5:
71:66:72:df:89:ce:9b:3e:ce:ef:3c:9d:28:89:66:
19:90:6a:08:ee:ae:27:6e:11:56:0b:d8:e5:97:7a:
ba:a8:8c:37:ef:54:69:b9:ed:02:e9:c2:65:72:63:
bf:a6:62:50:1d:d8:d0:ae:9d:23:85:82:bb:5b:d5:
03:c6:91:60:d8:5b:f1:8c:8e:90:0f:6b:a2:b8:a0:
23:18:a1:43:6f:8c:85:0f:a6:91:7f:4c:ed:a8:48:
cb:69:b4:b9:d2:4a:fd:0b:7d:d0:18:8e:f3:99:e0:
9d:a4:0e:e2:3e:3a:b8:b4:11:bc:53:00:d1:8f:64:
fc:7f:04:ea:2f:c9:d2:39:e1:4d:81:05:cd:36:be:
06:17:5b:d4:d0:0e:51:e1:e5:6e:68:ca:32:bc:8c:
45:ea:e3:da:a9:fa:12:43:10:29:76:a9:42:fa:6d:
e6:af:88:4b:85:0c:70:44:e7:a2:92:46:19:4f:2d:
27:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:81:46:C5:AF:B8:95:35:C1:F9:3C:52:4A:CA:E8:5E:92:75:31:9D
X509v3 Authority Key Identifier:
keyid:AB:02:5C:6B:B3:DC:CF:1B:16:51:49:C2:87:3C:04:B1:A6:C7:DA:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwJca7PczxsWUUnChzwEsabH2no.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/05b1e3-24c0-4668-9f40-fe77473e3dcf/1/qwJca7PczxsWUUnChzwEsabH2no.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/05b1e3-24c0-4668-9f40-fe77473e3dcf/1/qwJca7PczxsWUUnChzwEsabH2no.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:db:18:c7:71:25:9b:bd:de:8d:15:6b:dc:6b:0e:d7:8b:03:
eb:8c:a6:7a:fb:46:1c:d1:be:db:e4:b7:6a:48:65:63:87:f5:
15:81:8f:61:41:8b:63:54:1f:d2:7f:34:17:eb:5e:39:81:c1:
1d:bc:ba:77:34:74:ea:15:1e:be:80:2f:84:f6:9d:0f:27:dc:
99:79:1d:9b:a7:c1:0e:20:7c:7f:57:06:ea:6d:14:94:5e:4d:
b3:c3:36:b4:86:46:dd:4d:96:32:94:32:01:68:42:56:b6:8a:
cf:b4:65:a5:b2:68:23:b7:bd:07:72:4d:19:f2:3d:b5:e3:65:
fd:04:af:da:50:77:00:1d:71:ea:0d:d1:f1:b6:21:88:2d:93:
07:b3:63:a0:bf:74:5d:2f:58:cc:29:de:94:e6:71:ce:aa:18:
99:95:8d:70:00:71:51:95:72:86:3d:e0:87:fb:aa:7e:f5:4e:
3c:cd:e2:a9:0f:6b:4c:1b:5f:1f:ad:2c:f2:b5:8b:47:99:66:
37:bf:cd:26:13:cb:7c:a5:2c:2f:46:a3:51:f0:81:03:c4:7d:
36:9f:5e:77:b7:a9:c9:bc:21:fd:ed:95:45:f6:e8:9c:66:a2:
2a:fe:e3:f3:01:58:5f:54:04:00:5e:d5:aa:f1:1e:f8:74:e5:
ca:e2:0d:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:33:44 2026 by rpki-client