Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
File: 1QliA1xelRATygZwylaeefjWPBU.mft (raw, json)
Hash identifier: zdF4ZJ4DwRkjMtQxuJ/U8yBhNhLQPf/9xcQzhRuLqi0=
Subject key identifier: 91:E2:2F:C2:1D:28:0C:23:48:2D:6A:47:46:B5:F2:80:B2:52:EE:97
Authority key identifier: D5:09:62:03:5C:5E:95:10:13:CA:06:70:CA:56:9E:79:F8:D6:3C:15
Certificate issuer: /CN=d50962035c5e951013ca0670ca569e79f8d63c15
Certificate serial: 019D98F46894FD902CA87B407B131691BE7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1QliA1xelRATygZwylaeefjWPBU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
Manifest number: 138D
Signing time: Fri 17 Apr 2026 01:00:47 +0000
Manifest this update: Fri 17 Apr 2026 01:00:47 +0000
Manifest next update: Sat 18 Apr 2026 01:00:47 +0000
Files and hashes: 1: 1QliA1xelRATygZwylaeefjWPBU.crl (hash: vJuk8wexNEho3G9gVM3kcLLQjVPlQuBsbpWRZaPf4ZQ=)
2: CfjqQqpPDnBhH-p0lAIrBIhNgY8.roa (hash: /5wTY3Au8nodbJrzfE4opPFUcgrAfS3BmM1XuaMh8Fg=)
3: SosxbjlFtLu-lsuh4-rF3Rw-rK0.roa (hash: c0C1OZyGN1Qv/oPDh5sJipEydB/aVrMAT59EdQMDAY4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
rsync://rpki.ripe.net/repository/DEFAULT/1QliA1xelRATygZwylaeefjWPBU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:68:94:fd:90:2c:a8:7b:40:7b:13:16:91:be:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d50962035c5e951013ca0670ca569e79f8d63c15
Validity
Not Before: Apr 17 01:00:47 2026 GMT
Not After : Apr 18 01:00:47 2026 GMT
Subject: CN=91e22fc21d280c23482d6a4746b5f280b252ee97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:62:15:28:f2:b1:f4:48:bb:4d:e3:bd:89:36:
86:a9:cf:aa:09:a7:d8:64:7b:18:0d:06:41:9c:66:
71:49:5d:cc:90:f8:53:9d:d8:51:8f:c2:65:5e:aa:
21:74:ec:bd:c3:e0:0b:3a:60:c9:f8:27:eb:30:78:
7c:52:fb:43:9f:cd:68:a6:3d:38:ce:6b:30:57:68:
74:de:e2:c2:c2:93:60:17:70:f1:2f:dd:2a:d0:52:
dd:58:11:3a:18:9c:a3:d4:dd:23:6f:d3:19:71:a8:
2c:90:59:73:64:83:4e:0e:2f:bc:eb:10:d6:c1:e5:
8d:8e:32:03:8c:95:90:8a:cb:38:cb:45:f5:e3:ca:
f7:ec:ff:72:4c:a7:71:f5:02:2b:9d:43:7e:bb:08:
a6:d9:c2:93:ed:6f:03:02:61:ab:f8:ca:3a:5f:ca:
4a:df:56:99:90:73:97:bf:d5:99:5a:2d:04:45:9a:
d8:b4:0e:0b:ef:83:c9:3e:b3:7d:08:10:61:93:20:
09:e6:12:a6:c3:92:7d:77:28:e8:49:d2:2f:66:03:
38:e8:36:86:71:d7:8d:fb:74:4e:f7:ec:08:ce:3e:
7d:00:2f:62:20:5f:e1:5e:ba:30:b6:40:ab:ff:29:
58:c3:13:39:2a:6c:3e:26:c1:4d:5c:ce:01:12:55:
ed:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:E2:2F:C2:1D:28:0C:23:48:2D:6A:47:46:B5:F2:80:B2:52:EE:97
X509v3 Authority Key Identifier:
keyid:D5:09:62:03:5C:5E:95:10:13:CA:06:70:CA:56:9E:79:F8:D6:3C:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1QliA1xelRATygZwylaeefjWPBU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:3f:17:78:54:57:e2:f7:1b:4a:09:07:57:52:73:1c:cb:9c:
df:74:26:69:19:ea:89:5b:7c:ae:27:c3:37:f2:cb:eb:e3:b3:
60:ad:16:fd:21:47:f7:05:89:00:f3:a6:72:70:8a:9c:c7:05:
62:03:d7:c3:3e:77:fc:b6:6f:f1:c0:94:48:93:5d:e8:81:c8:
fe:34:cb:9d:b5:49:b9:a5:cd:61:e7:7e:86:22:90:18:0e:aa:
66:3a:8f:66:9f:4d:1e:de:20:3c:c2:77:d6:dd:9e:33:bf:4d:
8e:ee:00:27:53:65:80:ce:a9:4c:ea:c0:e7:b0:2a:5f:c4:f6:
11:91:63:97:d8:3a:da:c6:96:59:33:38:5a:4d:90:73:0d:37:
77:d6:ec:a8:58:f4:27:f0:67:3b:d4:35:24:de:cc:84:ff:33:
19:04:f1:fd:39:f7:c2:e9:1b:19:62:81:45:90:71:b6:d9:2a:
2e:e4:22:87:3c:eb:a9:fd:01:b7:3a:c2:1c:3c:a2:d4:19:5d:
65:18:18:36:97:f2:e1:92:99:09:94:da:23:c6:44:65:a6:10:
25:ee:bf:be:f0:b0:c6:32:e0:01:b3:a6:42:fa:3c:11:c9:5b:
9d:2c:90:bf:d9:27:5c:fc:82:2b:a4:70:df:60:2b:cc:4f:d1:
93:53:4b:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:48:09 2026 by rpki-client