Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft
File: qmWvaX3x9s2vTLvWbePUO-2GnpA.mft (raw, json)
Hash identifier: d5K2nE/Gnh0w77jgG2PVGUs19U8cqXPfcjGI1nb8HJU=
Subject key identifier: 11:1A:0E:BD:DA:D1:6D:E3:45:0C:4A:51:82:A8:A4:6A:F2:FB:7F:C6
Authority key identifier: AA:65:AF:69:7D:F1:F6:CD:AF:4C:BB:D6:6D:E3:D4:3B:ED:86:9E:90
Certificate issuer: /CN=aa65af697df1f6cdaf4cbbd66de3d43bed869e90
Certificate serial: 019D992B01D12311DEE4DED35B4E72A71F0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qmWvaX3x9s2vTLvWbePUO-2GnpA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft
Manifest number: 0EDE
Signing time: Fri 17 Apr 2026 02:00:25 +0000
Manifest this update: Fri 17 Apr 2026 02:00:25 +0000
Manifest next update: Sat 18 Apr 2026 02:00:25 +0000
Files and hashes: 1: PGUUZM8u8YWCrmYPpZ5UGlkMe7E.roa (hash: vabTxUmDYcjlCjqakgT+rEZSHxdr7LOmZlkCx88W/fM=)
2: qmWvaX3x9s2vTLvWbePUO-2GnpA.crl (hash: MxNPS4TiDOs8Lce92IZNt2TNUNnPVN57wcvXvqfsgqs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft
rsync://rpki.ripe.net/repository/DEFAULT/qmWvaX3x9s2vTLvWbePUO-2GnpA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 02:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:01:d1:23:11:de:e4:de:d3:5b:4e:72:a7:1f:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa65af697df1f6cdaf4cbbd66de3d43bed869e90
Validity
Not Before: Apr 17 02:00:25 2026 GMT
Not After : Apr 18 02:00:25 2026 GMT
Subject: CN=111a0ebddad16de3450c4a5182a8a46af2fb7fc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:c2:b2:35:2e:0a:fb:f6:f1:62:bd:f9:1e:c3:
e1:69:3f:d4:db:58:3c:d4:ca:69:5f:a0:7a:5b:8e:
db:bf:f2:f2:a4:76:bc:ce:37:25:9d:15:14:cc:e1:
88:37:d9:b1:d1:75:ca:8e:d4:74:a6:ca:43:6c:f9:
fd:80:c9:67:a9:e6:d8:87:67:ad:6d:35:da:2f:d7:
b1:74:c5:6b:4c:43:e2:42:05:ca:dd:40:55:3f:5f:
6b:70:b9:a1:20:4f:8a:00:c7:6b:57:85:0e:16:c4:
ec:d4:6e:fd:03:1c:d6:b4:bc:22:5a:ec:31:0a:1d:
02:bb:05:79:f7:61:8b:ab:4c:3f:fc:63:2f:4c:c0:
59:c0:8c:98:d6:ba:f8:3b:73:ab:de:57:2c:d5:82:
de:fe:12:eb:9a:37:11:d9:f4:e9:54:a3:2f:5a:3a:
e1:14:d3:d7:f2:8e:ce:4f:1c:0b:15:7e:be:73:3c:
b1:b7:46:9d:2d:7c:80:f5:0f:cc:27:6e:42:a7:07:
5d:86:a5:6f:6f:f4:71:79:28:e5:fb:a3:86:78:e0:
7d:83:ae:c8:2f:fa:fa:fa:f8:bd:a2:94:5b:e8:f2:
7f:06:d2:e3:d7:82:b1:f6:fb:c1:91:80:68:70:75:
41:59:fe:5a:de:17:a2:bf:70:52:43:08:17:bc:18:
9f:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:1A:0E:BD:DA:D1:6D:E3:45:0C:4A:51:82:A8:A4:6A:F2:FB:7F:C6
X509v3 Authority Key Identifier:
keyid:AA:65:AF:69:7D:F1:F6:CD:AF:4C:BB:D6:6D:E3:D4:3B:ED:86:9E:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qmWvaX3x9s2vTLvWbePUO-2GnpA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:9a:b1:ff:32:21:14:02:81:97:6d:cb:41:b8:ea:38:3b:be:
ad:bb:fd:2f:4a:de:4f:35:76:e8:3e:3c:0f:21:86:86:b3:4a:
fd:c4:ef:a2:d3:17:64:09:ff:24:25:cf:a1:88:21:92:67:95:
25:18:8a:4e:02:a7:c8:9f:35:82:b4:c9:96:5c:55:55:2d:9b:
84:75:98:fe:3e:73:42:0a:8f:82:f4:a4:90:bd:71:a2:fe:2d:
11:01:0d:c2:dc:ae:60:5f:da:e8:6e:d2:d4:9c:9f:d1:1b:3f:
27:db:8f:67:92:47:8a:0e:4a:e0:23:d0:1f:aa:07:64:ff:a1:
99:23:a3:8c:c6:be:4d:69:fb:65:bf:7b:ea:ec:04:2c:cb:e0:
a9:1e:ae:cc:d0:0d:b6:19:52:5f:b8:86:87:54:84:53:ae:28:
71:fa:b2:48:a7:53:63:74:88:ff:a4:ce:ce:af:15:46:2c:65:
3b:34:69:d2:3b:2e:65:79:f4:03:47:2f:ec:0c:f9:54:3d:dd:
d1:4c:c5:4c:b7:6d:82:51:f7:38:6a:0d:da:52:24:c5:a6:46:
6d:4c:71:f3:cc:d7:05:fe:05:5b:91:8a:70:10:8e:50:7c:8d:
2b:62:e6:c5:9c:f7:c8:b7:2a:d8:8d:4a:18:f4:c9:e6:0f:f5:
ca:d1:0a:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:51:00 2026 by rpki-client