Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
File: 1QliA1xelRATygZwylaeefjWPBU.mft (raw, json)
Hash identifier: NDwt+5PkHUzd7SSIfoqPLczGj6XorOpuOa26dMt4j1U=
Subject key identifier: 57:AB:DE:D6:80:21:1A:93:63:3C:49:46:2D:53:88:E6:71:19:31:91
Authority key identifier: D5:09:62:03:5C:5E:95:10:13:CA:06:70:CA:56:9E:79:F8:D6:3C:15
Certificate issuer: /CN=d50962035c5e951013ca0670ca569e79f8d63c15
Certificate serial: 019CAB6BC3926D8EA8772513F2F5CE673714
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1QliA1xelRATygZwylaeefjWPBU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
Manifest number: 1312
Signing time: Sun 01 Mar 2026 22:01:32 +0000
Manifest this update: Sun 01 Mar 2026 22:01:32 +0000
Manifest next update: Mon 02 Mar 2026 22:01:32 +0000
Files and hashes: 1: 1QliA1xelRATygZwylaeefjWPBU.crl (hash: 5I42HLuWhdFuT+fL6e2Nfnfogm4GUnF0UheLGwS+tD8=)
2: CfjqQqpPDnBhH-p0lAIrBIhNgY8.roa (hash: /5wTY3Au8nodbJrzfE4opPFUcgrAfS3BmM1XuaMh8Fg=)
3: SosxbjlFtLu-lsuh4-rF3Rw-rK0.roa (hash: c0C1OZyGN1Qv/oPDh5sJipEydB/aVrMAT59EdQMDAY4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
rsync://rpki.ripe.net/repository/DEFAULT/1QliA1xelRATygZwylaeefjWPBU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:c3:92:6d:8e:a8:77:25:13:f2:f5:ce:67:37:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d50962035c5e951013ca0670ca569e79f8d63c15
Validity
Not Before: Mar 1 22:01:32 2026 GMT
Not After : Mar 2 22:01:32 2026 GMT
Subject: CN=57abded680211a93633c49462d5388e671193191
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:1d:70:d6:f3:68:bf:3b:01:5d:ea:5c:40:5f:
b3:ff:e1:e0:de:e4:07:01:13:8c:f6:01:3d:09:ee:
7b:93:00:bf:e1:d9:07:15:cd:06:8e:f7:47:cc:e0:
d4:65:79:ce:36:59:00:25:a1:0c:a0:59:e9:12:28:
97:5b:fe:85:f1:31:c8:0a:3d:0d:84:51:0c:f1:5d:
ae:d2:b3:ad:f1:ae:59:78:5d:68:da:e8:f7:6f:f8:
a2:32:cd:c1:a2:27:23:83:c7:5d:95:76:7b:46:b4:
e7:69:2b:13:e7:ae:40:d5:02:d2:22:68:e8:c6:77:
a7:95:ce:cd:89:2b:a9:af:29:b7:10:e3:8c:62:ff:
6c:e0:85:b6:de:17:7e:8b:7c:f9:18:e9:7e:e6:22:
f9:94:c3:40:5d:d5:bd:60:d4:dd:a3:47:9a:6f:c7:
bc:e9:06:6b:03:e7:b0:8d:a9:c2:6f:45:48:a6:a0:
75:59:31:e2:e4:f6:3a:07:b4:9a:ea:04:08:32:e1:
83:1b:bc:30:8e:f0:23:fc:66:83:57:45:19:16:09:
06:3a:dd:89:30:09:81:93:67:5c:a8:f9:00:b5:01:
0a:db:7d:61:36:c7:f1:ae:45:68:97:97:f7:88:e7:
56:cc:1d:ad:db:12:3a:92:b5:5b:dd:7d:5f:dd:59:
ae:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:AB:DE:D6:80:21:1A:93:63:3C:49:46:2D:53:88:E6:71:19:31:91
X509v3 Authority Key Identifier:
keyid:D5:09:62:03:5C:5E:95:10:13:CA:06:70:CA:56:9E:79:F8:D6:3C:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1QliA1xelRATygZwylaeefjWPBU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:fc:53:6c:20:a0:41:94:99:81:ca:fe:41:36:f8:ae:eb:cb:
34:ee:74:a2:ef:35:06:90:27:b7:34:47:fc:5b:1b:db:e8:77:
ae:70:38:3e:2d:70:5d:96:c9:8e:17:e4:61:e8:02:af:e3:d1:
c6:50:14:30:da:37:41:46:d7:63:bb:f7:96:25:f6:38:65:1d:
f9:96:07:b8:40:c1:e2:21:80:e7:e8:c5:85:9a:66:28:e7:6a:
bf:b3:84:8b:bd:cf:a3:52:91:e5:82:10:ae:3e:3f:73:b7:34:
f4:8e:29:be:55:f8:30:5f:ca:ff:f0:ba:ab:59:9f:9a:30:c8:
9a:41:49:51:2a:1e:f3:f0:c3:06:a4:41:3e:4e:1a:32:d1:3d:
e3:08:15:4c:66:96:16:08:2f:18:84:e4:6a:96:97:c6:61:96:
18:f9:47:8c:f4:d4:34:eb:e7:0d:18:7c:1a:c0:79:c9:62:5e:
4a:ba:34:b4:f8:1d:b8:a6:17:52:6e:95:39:16:0c:68:b7:a8:
a5:e7:dc:80:e8:8d:00:bf:c9:e8:20:28:33:a6:a8:6a:67:b0:
b2:6f:4d:b7:9f:77:46:43:ba:9a:05:33:a4:04:be:62:df:89:
4e:b9:0b:f5:23:91:77:c9:df:27:1a:26:15:81:18:de:08:07:
dc:24:6a:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 01:59:19 2026 by rpki-client