Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.mft
File: QsCVkBFifd0NBX1zHo-lpRApZZI.mft (raw, json)
Hash identifier: rpgWH+9wJ49wF/mL6AkTO2s5/6Ll3pHL4WOo45bAosk=
Subject key identifier: 98:CD:5E:4E:F8:4D:61:5E:F7:6D:BC:24:6A:9F:9C:66:98:8C:AC:75
Authority key identifier: 42:C0:95:90:11:62:7D:DD:0D:05:7D:73:1E:8F:A5:A5:10:29:65:92
Certificate issuer: /CN=42c0959011627ddd0d057d731e8fa5a510296592
Certificate serial: 019D98F50AE76282E0F52C4FEEED1E96A3E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QsCVkBFifd0NBX1zHo-lpRApZZI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.mft
Manifest number: 18C2
Signing time: Fri 17 Apr 2026 01:01:28 +0000
Manifest this update: Fri 17 Apr 2026 01:01:28 +0000
Manifest next update: Sat 18 Apr 2026 01:01:28 +0000
Files and hashes: 1: QsCVkBFifd0NBX1zHo-lpRApZZI.crl (hash: iPcQ0ckoFUbvV7HqpXOFyNE3lyJCg3i0Q3wppfY8gUk=)
2: RMmBnfd1TCGUmEC2O6JokpnQVQ8.roa (hash: wPMgtMcsG/KMNrN9/altEtQua2Hm0vaKQpeGiiY5B3Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QsCVkBFifd0NBX1zHo-lpRApZZI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 01:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f5:0a:e7:62:82:e0:f5:2c:4f:ee:ed:1e:96:a3:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42c0959011627ddd0d057d731e8fa5a510296592
Validity
Not Before: Apr 17 01:01:28 2026 GMT
Not After : Apr 18 01:01:28 2026 GMT
Subject: CN=98cd5e4ef84d615ef76dbc246a9f9c66988cac75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:dd:96:9e:17:e3:c4:9f:3e:0f:74:f3:71:3d:
9e:a7:16:1c:d7:82:19:9a:a8:af:00:98:ca:f7:92:
05:fe:e8:90:1b:cd:d9:ee:d0:3e:71:ba:20:9e:fd:
83:a3:56:f0:ab:d1:99:53:be:26:2c:26:92:39:84:
f3:9d:36:de:66:cf:f3:07:1c:c0:5a:11:9f:1e:84:
a4:d8:fd:1e:be:a0:cc:4e:19:e5:c7:f8:13:37:0c:
de:19:f3:02:93:de:f1:78:65:21:32:0f:ea:c1:de:
12:44:62:cb:4c:81:e2:08:37:e3:c6:8d:17:9f:50:
3d:12:8a:6c:9a:4d:5a:0a:eb:a4:1b:75:0c:d2:3f:
cc:f7:e1:0d:49:ea:7c:5b:a3:8c:8d:8e:1a:1f:b2:
22:ac:36:1f:26:95:a8:5b:86:38:a8:5e:2d:39:fd:
2b:d7:fb:de:06:47:ff:4c:40:fb:d4:11:05:2a:45:
ce:3d:1a:f9:99:26:78:3f:1e:e8:74:36:b7:b1:e4:
04:32:e1:fc:c0:a4:d5:c0:af:ee:9c:36:09:e1:b1:
82:20:09:00:57:63:4d:85:70:71:75:f1:da:14:3a:
e6:7b:c7:0f:a6:84:bb:dd:70:ae:75:ca:dd:e3:66:
37:7a:6a:fe:a3:20:a8:4a:61:5b:27:75:dd:d8:42:
c7:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:CD:5E:4E:F8:4D:61:5E:F7:6D:BC:24:6A:9F:9C:66:98:8C:AC:75
X509v3 Authority Key Identifier:
keyid:42:C0:95:90:11:62:7D:DD:0D:05:7D:73:1E:8F:A5:A5:10:29:65:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QsCVkBFifd0NBX1zHo-lpRApZZI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:d0:33:98:a4:fa:ff:5f:62:c9:f0:5b:e8:9a:ee:e2:f2:b3:
a4:ef:98:28:f3:75:d4:96:b1:70:ed:66:4b:9a:17:54:f4:5e:
98:3d:17:60:94:96:8e:ae:16:6b:de:13:0e:df:c9:fb:01:3a:
81:4e:9e:30:8b:b9:91:9b:4e:e9:66:bb:86:dc:15:05:30:79:
1c:d5:04:59:75:5e:45:eb:2a:1f:d4:58:08:b9:00:2d:71:24:
0d:40:b1:1c:cd:f1:20:df:99:e6:02:62:2e:75:a7:cc:30:8a:
dd:e7:3b:d5:8f:4c:ed:9b:84:7e:e2:08:a3:d2:0c:1a:23:31:
02:99:a4:d8:6a:41:91:b6:3e:4f:39:53:bb:64:40:2b:ca:6f:
ef:8f:ab:da:a4:b0:79:6b:fa:fd:c7:4d:af:b1:9d:45:14:ac:
1d:43:dd:ff:11:a5:5e:f1:84:1d:d2:75:1a:bb:51:bb:ad:e0:
1b:ae:5a:05:62:2c:ed:58:23:e3:cf:6c:c8:82:2e:d8:19:e3:
96:bc:83:01:a2:a9:b1:a1:e3:c6:d2:2a:a8:53:1e:64:f2:1d:
17:5d:d7:c6:69:a8:86:9d:5d:03:88:c1:ec:60:0e:bd:11:10:
f4:ee:f9:4f:eb:36:bb:a3:70:46:bb:63:7c:e3:18:ba:29:8a:
e8:0e:02:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:55:23 2026 by rpki-client