Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft
File: fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft (raw, json)
Hash identifier: HedqsUO239sBYhOuTAMVv2ak+3LaQb47i3Ydt+8N7wU=
Subject key identifier: A8:78:FD:36:77:AE:21:26:B8:4A:FB:92:97:72:44:B1:51:6E:03:48
Authority key identifier: 7D:01:A5:D9:0D:C3:A8:36:CE:B6:38:1E:FC:75:34:E1:29:F4:3A:4C
Certificate issuer: /CN=7d01a5d90dc3a836ceb6381efc7534e129f43a4c
Certificate serial: 019D9886DE0481D83F4A55BA676E7F2DFEF4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQGl2Q3DqDbOtjge_HU04Sn0Okw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft
Manifest number: 1853
Signing time: Thu 16 Apr 2026 23:01:08 +0000
Manifest this update: Thu 16 Apr 2026 23:01:08 +0000
Manifest next update: Fri 17 Apr 2026 23:01:08 +0000
Files and hashes: 1: fQGl2Q3DqDbOtjge_HU04Sn0Okw.crl (hash: rxQO3ODxeZFn9SjFdphiTv2BJMErUcb7pkDMNV7csD4=)
2: uuyf9SL1IzQsxC4GwsHv2Aqvi6I.roa (hash: bWBF8Lzkc1fXhVOcL+v1lM3xBjFclLxIjyc/HWhj0fY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft
rsync://rpki.ripe.net/repository/DEFAULT/fQGl2Q3DqDbOtjge_HU04Sn0Okw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:86:de:04:81:d8:3f:4a:55:ba:67:6e:7f:2d:fe:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d01a5d90dc3a836ceb6381efc7534e129f43a4c
Validity
Not Before: Apr 16 23:01:08 2026 GMT
Not After : Apr 17 23:01:08 2026 GMT
Subject: CN=a878fd3677ae2126b84afb92977244b1516e0348
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:b7:2f:f6:c8:a0:c9:be:b9:b3:f5:7a:77:c8:
e8:0c:8e:8a:46:10:ff:3d:29:e4:4b:bd:52:2b:66:
0c:8d:71:2e:31:9b:83:29:72:f9:18:72:c1:05:74:
99:96:db:24:d4:47:46:ea:2f:68:36:49:d0:a2:b3:
c0:32:53:3a:5f:52:b2:b4:32:c0:7a:94:ab:93:d7:
34:5f:7a:c2:f4:f5:91:c3:1e:25:85:1a:9d:fd:ee:
d2:ec:13:e8:c1:ee:43:2f:ac:d4:17:b4:bb:7d:56:
7e:7c:8c:73:18:3b:4a:1a:3b:a4:61:27:dd:a9:c4:
c9:5e:1f:77:a6:40:16:67:bb:06:62:80:51:d2:53:
d5:df:bd:05:fe:b4:7a:66:e7:d5:48:1d:c3:20:f1:
5d:5e:e6:91:0c:99:3f:18:e3:9b:eb:54:a8:37:b2:
65:ca:b3:7b:a5:b5:77:5a:71:31:a4:85:bd:d3:4f:
82:b0:e9:99:4f:89:af:d7:cd:6f:18:fc:13:2e:40:
94:ed:fb:b6:39:d9:71:06:e2:e7:34:c5:1d:04:92:
9f:a9:9d:42:50:c0:b3:5e:08:d8:1f:ef:61:43:97:
9e:25:19:86:ca:1d:40:68:86:a7:6e:bb:4f:b6:6f:
73:c3:1e:16:ac:23:3d:a3:78:e5:32:03:a4:87:53:
31:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:78:FD:36:77:AE:21:26:B8:4A:FB:92:97:72:44:B1:51:6E:03:48
X509v3 Authority Key Identifier:
keyid:7D:01:A5:D9:0D:C3:A8:36:CE:B6:38:1E:FC:75:34:E1:29:F4:3A:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQGl2Q3DqDbOtjge_HU04Sn0Okw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:32:24:62:cf:ef:aa:84:0f:12:cf:52:66:d2:ef:74:af:6d:
0c:93:5d:c4:11:5b:f0:82:58:bc:49:4b:00:92:c8:66:89:30:
77:7d:9f:20:25:94:45:ef:d6:d4:b0:11:a4:32:39:8e:21:1d:
85:a2:bd:ed:58:69:40:c4:d5:a9:6d:89:30:c3:f1:93:36:f7:
76:8d:bd:f6:ff:09:95:2c:d0:72:e6:80:62:91:9c:80:3b:7e:
48:81:c9:ee:c5:07:9e:06:1d:c4:50:81:02:15:cc:87:e7:19:
73:48:b7:a4:06:bb:00:7b:1d:f7:2d:38:de:70:1e:47:54:40:
75:1a:ad:f1:dc:6b:87:9e:d1:e4:3e:5c:d8:a3:89:c3:95:78:
d3:2a:8c:a8:dc:d5:ac:2c:57:da:98:ca:10:19:20:cc:58:06:
ed:81:6a:c1:bb:5a:5e:d5:27:53:a5:3c:a1:2e:7c:80:71:ef:
72:a0:0c:c3:1b:9c:fc:28:ee:e2:06:c6:f9:7e:72:13:81:e7:
a2:78:ea:c4:c3:a2:a6:25:83:a0:d6:28:9b:a7:4a:38:ce:d5:
34:d8:25:61:31:0c:86:69:36:80:5b:f9:9b:8f:2b:2f:58:0b:
34:a2:2a:34:79:74:76:ec:d6:bd:31:db:fb:40:df:b1:d2:e6:
1d:87:34:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:49:29 2026 by rpki-client