Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft
File: q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft (raw, json)
Hash identifier: ArRntBW1P2OFru1Xw0eFYSm2In/5BLaAZ+RmwlEsm7k=
Subject key identifier: 56:70:CE:B4:CC:51:83:30:B2:56:60:F8:38:BD:71:4E:0F:FF:F6:53
Authority key identifier: AB:85:20:EC:83:E3:0E:B7:93:8B:80:02:F4:70:F0:D1:C5:05:C4:51
Certificate issuer: /CN=ab8520ec83e30eb7938b8002f470f0d1c505c451
Certificate serial: 019D99D0072C84D2A6AB42C55C3D57D68CA2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q4Ug7IPjDreTi4AC9HDw0cUFxFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft
Manifest number: 0EB5
Signing time: Fri 17 Apr 2026 05:00:40 +0000
Manifest this update: Fri 17 Apr 2026 05:00:40 +0000
Manifest next update: Sat 18 Apr 2026 05:00:40 +0000
Files and hashes: 1: AlG308eUrdACgBL2wLNqtHFgCfE.roa (hash: ln/5TqimsvosBxc2NaYRg6677es5mps+ZXNF6/n2oDg=)
2: q4Ug7IPjDreTi4AC9HDw0cUFxFE.crl (hash: q4XStAn/lAfXL2eRlmrx9CkC9xBuyNVG1aEmpSHFMiQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft
rsync://rpki.ripe.net/repository/DEFAULT/q4Ug7IPjDreTi4AC9HDw0cUFxFE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:07:2c:84:d2:a6:ab:42:c5:5c:3d:57:d6:8c:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab8520ec83e30eb7938b8002f470f0d1c505c451
Validity
Not Before: Apr 17 05:00:40 2026 GMT
Not After : Apr 18 05:00:40 2026 GMT
Subject: CN=5670ceb4cc518330b25660f838bd714e0ffff653
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:8e:15:26:6e:f9:84:0f:95:94:1a:cb:d9:52:
a9:6f:e4:d4:8c:f3:44:79:0f:0b:ee:ef:19:01:1a:
2d:34:25:3d:7b:f0:0d:bb:72:94:42:2b:b9:19:4c:
99:a5:2d:e7:f4:1c:c2:0b:91:72:b7:54:86:0d:c4:
ca:1b:24:13:81:3f:91:b6:11:4f:a1:ab:e2:5c:56:
ec:36:6f:01:ba:d8:4d:41:b8:f7:3a:ce:6c:4a:a1:
13:cd:59:3f:5d:db:33:29:ee:10:6e:c0:52:2e:93:
49:5e:8d:f9:30:00:a8:4d:b9:32:28:08:62:f7:6c:
34:83:77:d0:9c:50:98:6f:7d:f0:cf:47:a4:65:53:
7f:fe:a0:8e:e1:a2:a4:44:c1:55:d5:91:12:48:1e:
61:7a:ca:54:97:aa:e0:ac:4a:14:c1:37:56:83:39:
c8:4e:6e:1f:ec:a8:ac:d9:1f:7d:cd:06:0b:dc:a9:
ca:c6:53:e1:83:8f:56:ef:bc:36:12:6a:b2:33:ff:
f5:bd:d0:d5:6c:62:35:ea:2c:d3:38:de:99:43:9a:
d8:67:ea:02:b9:cc:ed:ff:e8:a5:d7:df:d7:a4:4f:
2a:85:0b:ad:17:66:53:0e:8f:ad:72:c8:a5:3b:ea:
05:31:7b:7f:e3:dd:34:19:ca:23:18:74:89:ee:77:
45:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:70:CE:B4:CC:51:83:30:B2:56:60:F8:38:BD:71:4E:0F:FF:F6:53
X509v3 Authority Key Identifier:
keyid:AB:85:20:EC:83:E3:0E:B7:93:8B:80:02:F4:70:F0:D1:C5:05:C4:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q4Ug7IPjDreTi4AC9HDw0cUFxFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:e0:90:19:ba:4f:35:b0:62:2b:42:de:91:0d:a9:f2:15:3c:
92:b4:fb:8d:65:80:b8:12:ce:93:82:15:c9:80:30:9a:c1:98:
be:eb:10:a4:64:dc:65:8c:7b:8c:21:d1:58:1c:d9:1d:28:00:
ec:02:2c:5c:b9:61:4a:33:2d:6d:86:93:cd:d3:4c:32:37:f2:
86:35:3e:24:f0:21:e3:94:62:a8:ee:68:9a:51:dd:61:67:ea:
62:8c:9f:00:37:62:33:4c:c0:4d:d6:53:70:bc:37:f3:bd:7f:
04:0d:4a:e2:a2:ac:be:cd:50:5d:28:d9:a8:ce:49:ff:46:6d:
a2:76:86:34:a1:a4:10:5f:fc:c8:e8:8c:02:22:4f:bd:6d:1a:
8e:a8:f3:79:58:79:e9:c7:1e:9c:58:7c:fa:15:98:6d:1e:51:
39:c7:90:69:1d:66:f4:fb:36:98:ff:4c:95:7a:5a:f5:5a:3d:
6b:b2:34:06:b8:ee:0c:36:e0:f9:0b:82:7c:21:69:8c:54:55:
bd:0f:dc:65:3b:24:89:38:76:5a:b5:6f:08:05:0e:34:e1:c3:
da:a3:54:fd:e6:9f:61:d8:cb:cb:e1:17:30:65:4d:bc:65:10:
c0:ce:3a:db:a7:9e:d5:0d:ad:9a:f6:d0:88:89:1c:d1:33:21:
93:ee:ff:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 12:33:24 2026 by rpki-client