Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.mft
File: QA4H15n7NVyVICXz0nsA6bTuNO0.mft (raw, json)
Hash identifier: le7FFBGbJaVq7c6Gul2QFordnQLZ/zZliRJyXnH2tnQ=
Subject key identifier: 78:3D:20:8E:C0:B6:4F:84:03:E1:A7:C6:23:EB:AC:72:78:D6:2C:F6
Authority key identifier: 40:0E:07:D7:99:FB:35:5C:95:20:25:F3:D2:7B:00:E9:B4:EE:34:ED
Certificate issuer: /CN=400e07d799fb355c952025f3d27b00e9b4ee34ed
Certificate serial: 019D99D05D6A770A05019491FC79506F0746
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QA4H15n7NVyVICXz0nsA6bTuNO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.mft
Manifest number: 0B2B
Signing time: Fri 17 Apr 2026 05:01:02 +0000
Manifest this update: Fri 17 Apr 2026 05:01:02 +0000
Manifest next update: Sat 18 Apr 2026 05:01:02 +0000
Files and hashes: 1: QA4H15n7NVyVICXz0nsA6bTuNO0.crl (hash: jWykgYa1cxRH4MbkCfR/qPRpUCvDPHDaBiECBSuzRj8=)
2: YFsmm4apHvY6ZL8EsMyBPmZGQ-E.roa (hash: QK8FK49xDAR7s4a20/0YVNHlxDPHbZSZvfiRmsUbSrc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.mft
rsync://rpki.ripe.net/repository/DEFAULT/QA4H15n7NVyVICXz0nsA6bTuNO0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:5d:6a:77:0a:05:01:94:91:fc:79:50:6f:07:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=400e07d799fb355c952025f3d27b00e9b4ee34ed
Validity
Not Before: Apr 17 05:01:02 2026 GMT
Not After : Apr 18 05:01:02 2026 GMT
Subject: CN=783d208ec0b64f8403e1a7c623ebac7278d62cf6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:bc:55:63:1d:43:cd:3f:65:16:aa:01:a4:2a:
58:da:b5:07:06:d2:2f:3f:a7:2f:49:5d:ba:78:77:
3d:d1:83:f4:89:29:9f:44:70:43:ba:c3:17:1d:0a:
98:36:90:29:ef:03:d2:7f:48:9a:78:bd:fa:d3:78:
5a:dc:1c:a9:6a:23:8d:8f:5b:72:d9:b8:5c:26:c0:
2a:ef:fc:06:2c:95:97:44:0b:2c:af:e2:50:bd:53:
5d:76:43:55:8a:73:8b:c4:a9:62:66:88:d1:b7:ce:
dd:69:44:5d:f4:76:e9:5b:95:54:68:8f:17:49:19:
e0:82:3d:99:e7:4f:01:25:80:51:17:42:9c:58:c8:
d0:e2:03:cd:1f:a5:32:23:74:52:b1:16:5c:d3:04:
2c:15:76:0c:e3:f2:1d:74:99:91:4e:fe:0c:79:85:
49:c2:9d:cd:74:0e:b8:1f:94:3b:17:ef:c9:1d:84:
d2:76:1c:5a:88:41:88:9d:e2:4c:b2:41:43:0e:e2:
b1:33:28:84:1e:51:88:d3:42:92:c8:6e:c0:4e:12:
1a:86:4c:31:8f:7e:17:3e:f5:07:d7:ae:af:cf:89:
03:65:95:e8:e0:c8:74:72:3c:ce:d0:26:39:67:5d:
ef:fd:a7:27:e0:80:8e:d8:99:30:2e:e4:9e:ec:89:
3a:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:3D:20:8E:C0:B6:4F:84:03:E1:A7:C6:23:EB:AC:72:78:D6:2C:F6
X509v3 Authority Key Identifier:
keyid:40:0E:07:D7:99:FB:35:5C:95:20:25:F3:D2:7B:00:E9:B4:EE:34:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QA4H15n7NVyVICXz0nsA6bTuNO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:0b:da:aa:a4:f7:ca:9e:f2:8c:1b:91:7f:03:7f:25:eb:cb:
bc:c5:e6:29:f9:63:de:08:02:cd:96:79:a8:04:3d:9c:df:d1:
31:fb:23:be:81:8f:7e:04:0c:d7:8c:49:45:43:14:4e:eb:9e:
17:67:f4:31:60:b2:01:5c:6b:b4:e1:95:6e:0f:46:a4:55:90:
d5:94:ee:8f:8e:02:b9:6d:82:c9:36:84:ab:02:d2:8e:8a:19:
2f:3c:fb:57:7c:5c:57:61:66:03:4d:cf:f7:95:51:ee:69:e9:
f4:f3:92:f6:91:f9:ed:11:ce:86:3f:62:7b:74:28:27:2d:8c:
65:ce:fc:bc:04:60:a3:22:62:70:4e:67:55:f0:0c:7d:ca:ea:
2d:b3:62:df:46:11:eb:d5:cf:bf:f3:fa:d2:aa:6e:0a:e2:ae:
74:d8:30:90:7b:eb:4b:e7:ac:0f:c1:ed:01:25:52:23:f4:ba:
0a:af:f7:8a:25:c7:1c:cf:b8:31:48:42:0d:09:a2:81:35:59:
03:8a:f0:02:f5:07:df:33:a2:2c:ee:cd:0f:7a:ed:78:40:8c:
48:dc:3c:e5:20:99:36:b6:0c:62:05:81:85:82:39:4f:b7:72:
01:53:d1:b4:d4:db:37:a8:7b:d1:80:dc:de:dd:03:e9:09:3e:
63:23:3d:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:51:38 2026 by rpki-client