Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft
File: qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft (raw, json)
Hash identifier: LcOOrVJ1GWKzkIhIXB6gzm4za59FSfFuqTMR/6PelXY=
Subject key identifier: FD:E4:4A:D4:CD:3A:8D:E9:28:AE:4D:DB:43:34:25:1B:96:0C:D8:D3
Authority key identifier: A9:8E:59:43:C3:55:D4:8C:00:4E:6B:F4:A3:B6:CD:B8:C3:0A:DC:4C
Certificate issuer: /CN=a98e5943c355d48c004e6bf4a3b6cdb8c30adc4c
Certificate serial: 019D992B12B9F88091E7CB6A4877189F97E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft
Manifest number: 18C2
Signing time: Fri 17 Apr 2026 02:00:29 +0000
Manifest this update: Fri 17 Apr 2026 02:00:29 +0000
Manifest next update: Sat 18 Apr 2026 02:00:29 +0000
Files and hashes: 1: TG-T28D3sM1IJX9-bR6zimuu3dQ.roa (hash: sKx/GRdEWeKSqR5AF1hTqJiMQ+ztWu0vS1aze4IWqmA=)
2: qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.crl (hash: p+GF1A2wVDTb/BLCI1fnlararSswiMGDhk0NIMrNwLg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft
rsync://rpki.ripe.net/repository/DEFAULT/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:12:b9:f8:80:91:e7:cb:6a:48:77:18:9f:97:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a98e5943c355d48c004e6bf4a3b6cdb8c30adc4c
Validity
Not Before: Apr 17 02:00:29 2026 GMT
Not After : Apr 18 02:00:29 2026 GMT
Subject: CN=fde44ad4cd3a8de928ae4ddb4334251b960cd8d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:4d:26:f8:88:2b:11:2f:34:31:61:3b:95:40:
d3:c2:45:23:db:34:08:fb:b8:81:0e:4c:a2:49:84:
28:87:b2:cd:58:42:5f:8b:0d:c0:ba:19:d8:99:40:
a4:5c:2f:20:05:20:50:4b:66:76:a9:6f:39:41:95:
26:0f:42:76:db:fa:a8:86:58:6a:e8:7f:ee:dc:b0:
e3:b8:8e:05:92:8b:60:8a:5e:a2:f6:c7:a7:98:0a:
f5:7f:a2:2d:97:69:38:65:dd:b1:0f:16:04:2d:8b:
dc:00:a9:5b:2c:e8:83:28:a7:c3:f1:92:9e:54:10:
ed:c2:fe:ed:c7:a6:74:b5:b7:b8:25:fa:d0:d7:34:
09:5d:e0:e3:3c:d7:f7:60:26:8f:ac:02:f6:03:70:
84:e6:ea:c7:43:79:32:cd:ad:77:95:d3:8c:63:24:
b9:f2:7c:dc:1c:a0:d6:eb:3b:66:c7:81:e0:84:1c:
12:44:1b:91:e2:96:e0:41:b4:a7:77:4a:ac:65:c7:
d9:ab:89:3a:88:95:1a:e1:2c:47:ae:34:ce:01:05:
5d:fc:7c:29:d9:f1:05:88:14:02:e8:67:aa:22:d4:
69:f2:8e:a9:63:e4:3f:52:48:0c:1f:c7:a6:9c:5e:
98:ae:84:52:e4:ae:ee:d7:20:54:8a:fd:c6:ab:7c:
74:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:E4:4A:D4:CD:3A:8D:E9:28:AE:4D:DB:43:34:25:1B:96:0C:D8:D3
X509v3 Authority Key Identifier:
keyid:A9:8E:59:43:C3:55:D4:8C:00:4E:6B:F4:A3:B6:CD:B8:C3:0A:DC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:bb:b8:87:00:61:0d:a4:cd:e5:61:f1:57:25:ef:fd:1f:24:
d3:6d:14:ef:99:b0:62:cf:8d:61:31:45:54:95:21:9d:10:63:
6d:67:f8:38:f7:d0:46:80:fa:85:e4:1d:c5:a3:fe:83:1c:a8:
7f:62:30:9c:9d:f6:d0:e6:c6:3b:58:8f:b0:99:56:a1:21:30:
6f:96:bb:ce:5c:fd:34:9b:76:65:95:45:27:e2:24:b6:18:5d:
c1:a4:71:3b:ee:2d:95:84:5c:22:fa:a3:ce:4d:7e:1d:47:51:
2c:28:83:a7:ce:43:72:a4:be:c8:ab:fb:a9:9f:76:27:7d:c6:
29:57:d2:6b:a8:89:bd:a4:de:2e:5a:9c:c0:2e:78:32:f5:af:
81:ac:e2:c6:7e:30:4f:10:9b:5e:36:db:78:b0:34:55:46:9a:
21:5e:3b:e6:0c:58:b2:99:10:d8:f7:8f:88:0f:4c:95:f0:34:
ee:fa:04:f5:f9:91:6f:b1:ad:e4:44:74:46:fe:e8:3d:80:ca:
c4:e1:44:a7:09:e2:57:bf:45:70:7a:7e:79:74:86:c1:53:36:
a4:9f:48:67:d0:1a:8e:78:78:67:49:a1:70:37:46:a3:4b:dd:
b9:5a:e9:78:84:c4:42:df:8b:c9:c9:52:28:dd:fa:dc:e8:97:
e2:ac:95:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 08:02:59 2026 by rpki-client