Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/157f1e-7cf8-4d98-a924-97c332f7239d/1/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.mft
File: rqhNfmS6PoW1cDbHMY-TzD2U0Yc.mft (raw, json)
Hash identifier: /xLqnIa+E3Jhj/dETAWDnF8GxNfoEUtd/zCro1/fKVI=
Subject key identifier: 49:E6:70:07:F4:C9:3B:E9:88:23:00:35:2A:AF:87:51:46:29:A6:05
Authority key identifier: AE:A8:4D:7E:64:BA:3E:85:B5:70:36:C7:31:8F:93:CC:3D:94:D1:87
Certificate issuer: /CN=aea84d7e64ba3e85b57036c7318f93cc3d94d187
Certificate serial: 019DA4C17740D05D9986DE9359351973CD1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/157f1e-7cf8-4d98-a924-97c332f7239d/1/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.mft
Manifest number: 12C2
Signing time: Sun 19 Apr 2026 08:00:35 +0000
Manifest this update: Sun 19 Apr 2026 08:00:35 +0000
Manifest next update: Mon 20 Apr 2026 08:00:35 +0000
Files and hashes: 1: O1uFtg6wuLhrdqUneGoI-viUEDA.roa (hash: 4WLi2bkwD7hhzZv3R/usE+9JZdJI8FhP2vDUzbQmMeM=)
2: rqhNfmS6PoW1cDbHMY-TzD2U0Yc.crl (hash: IUK840fSX+JjbtW4W7auQImpyieFPdXDjPn0Uu/gbVY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/157f1e-7cf8-4d98-a924-97c332f7239d/1/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/157f1e-7cf8-4d98-a924-97c332f7239d/1/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.mft
rsync://rpki.ripe.net/repository/DEFAULT/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:c1:77:40:d0:5d:99:86:de:93:59:35:19:73:cd:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aea84d7e64ba3e85b57036c7318f93cc3d94d187
Validity
Not Before: Apr 19 08:00:35 2026 GMT
Not After : Apr 20 08:00:35 2026 GMT
Subject: CN=49e67007f4c93be9882300352aaf87514629a605
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:ca:dc:f2:2c:32:4b:3c:3b:be:b8:cd:b4:bf:
5e:cb:ec:73:bb:55:ee:de:9d:83:bf:7c:c9:03:09:
09:42:52:a8:8a:f5:8c:5e:a1:05:3e:3b:8b:1e:62:
d6:93:19:8f:bd:ef:13:bb:f9:f6:e7:56:fb:9e:14:
66:2d:49:09:2d:93:4e:ac:21:54:12:c5:80:ce:6e:
0f:dd:06:0c:d1:de:79:bc:99:49:72:42:d8:f2:1a:
9c:4b:52:2c:26:c7:03:7b:f8:e4:51:08:40:7d:f1:
1f:c8:6c:2a:fd:91:ee:d1:99:52:9a:71:ce:6e:06:
a0:a8:16:71:78:94:91:5b:6b:59:e5:ce:68:6c:29:
4a:7d:83:4e:ef:e8:75:e0:5b:e1:57:51:00:06:d0:
cb:56:9e:b4:44:6c:4b:44:d1:f1:a5:f9:9c:29:d2:
67:79:c8:57:69:9e:c7:ff:4e:c5:13:77:db:20:8d:
0f:e2:c6:d7:2f:a8:5a:3a:1c:fe:2d:d3:b0:66:bb:
f4:cf:fa:9e:36:64:05:7b:6a:37:2c:1a:ae:aa:7c:
ac:7d:be:93:be:35:25:ae:d1:09:51:cb:3d:98:28:
6b:6a:dd:1c:c8:67:2e:56:55:48:90:d3:85:8a:90:
cd:59:10:40:55:c6:d9:8c:0b:c9:77:33:2c:3a:08:
ba:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:E6:70:07:F4:C9:3B:E9:88:23:00:35:2A:AF:87:51:46:29:A6:05
X509v3 Authority Key Identifier:
keyid:AE:A8:4D:7E:64:BA:3E:85:B5:70:36:C7:31:8F:93:CC:3D:94:D1:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/157f1e-7cf8-4d98-a924-97c332f7239d/1/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/157f1e-7cf8-4d98-a924-97c332f7239d/1/rqhNfmS6PoW1cDbHMY-TzD2U0Yc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:c9:a2:ed:4b:34:97:93:ae:a2:61:1c:b9:c1:06:99:30:82:
6c:bb:dd:39:f1:79:20:e3:1c:3f:f1:26:05:71:ef:a5:06:6f:
a4:fb:74:40:51:45:8d:df:d1:7c:48:66:2c:c0:66:39:c7:af:
ba:cd:6b:55:c8:53:64:03:38:9c:07:34:b3:8d:ad:57:34:08:
36:0d:40:c1:83:92:07:94:61:1e:16:1b:e2:57:ee:50:61:d7:
68:e0:17:f6:64:77:73:9c:f1:f1:ef:94:5a:cf:f1:c3:6a:f2:
04:59:96:27:d4:45:5a:fa:6a:4f:46:c0:15:02:90:38:11:52:
68:fe:f2:5f:1c:43:22:85:bf:19:cb:53:48:2a:20:51:d4:cf:
87:15:46:a8:11:f2:ff:57:9d:c6:be:09:7a:5e:be:bf:be:c9:
7b:85:ea:6b:48:17:a4:bd:a2:ad:c0:32:13:30:d9:e4:59:ce:
61:ea:3b:03:c2:58:7f:3a:74:84:07:e8:14:4f:e7:47:bc:1d:
c0:b4:0d:aa:27:38:02:44:23:b3:4a:42:a3:a5:25:b7:b5:e6:
6e:eb:40:86:e3:3c:5d:0c:43:7b:21:49:7d:ac:5e:1b:00:e5:
40:a8:20:19:a4:c8:5f:cf:60:2a:16:ed:dc:f0:90:66:71:73:
bf:02:70:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 11:36:39 2026 by rpki-client