Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/a26050-49ec-4955-9810-e5453707a58e/1/qyt5QmiS7R2nsuYYZ3DPsErmA80.mft
File: qyt5QmiS7R2nsuYYZ3DPsErmA80.mft (raw, json)
Hash identifier: s3QFXgG6+vr3/57H29z3Vv6YtJQqZV8WpBcDX7OvDTY=
Subject key identifier: 23:28:36:0C:41:E0:CA:98:B8:6C:54:F2:C3:90:35:B2:C8:24:31:8F
Authority key identifier: AB:2B:79:42:68:92:ED:1D:A7:B2:E6:18:67:70:CF:B0:4A:E6:03:CD
Certificate issuer: /CN=ab2b79426892ed1da7b2e6186770cfb04ae603cd
Certificate serial: 019D98F4AC80A5E37D357565E75594D1F385
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qyt5QmiS7R2nsuYYZ3DPsErmA80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/a26050-49ec-4955-9810-e5453707a58e/1/qyt5QmiS7R2nsuYYZ3DPsErmA80.mft
Manifest number: 0B68
Signing time: Fri 17 Apr 2026 01:01:04 +0000
Manifest this update: Fri 17 Apr 2026 01:01:04 +0000
Manifest next update: Sat 18 Apr 2026 01:01:04 +0000
Files and hashes: 1: Ep1UdBXzCWlqSTpFzem1RUVZTHA.asa (hash: f0L/PAFatn0IgaIhqoEyZoZ0cRFuKV57J/o6cZd4vJM=)
2: UVwGUstyqvelkq37jwrCyB34k94.asa (hash: E7qX0L3M0NDAHs6Gtk5Rp5Gs8S25rdSfJnVG4BtVL6w=)
3: qyt5QmiS7R2nsuYYZ3DPsErmA80.crl (hash: Ae4+Y60yOv6D2hWqrCHyoexbQ8pcyRkxyQcxO8OtbgE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/a26050-49ec-4955-9810-e5453707a58e/1/qyt5QmiS7R2nsuYYZ3DPsErmA80.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/a26050-49ec-4955-9810-e5453707a58e/1/qyt5QmiS7R2nsuYYZ3DPsErmA80.mft
rsync://rpki.ripe.net/repository/DEFAULT/qyt5QmiS7R2nsuYYZ3DPsErmA80.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 01:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:ac:80:a5:e3:7d:35:75:65:e7:55:94:d1:f3:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2b79426892ed1da7b2e6186770cfb04ae603cd
Validity
Not Before: Apr 17 01:01:04 2026 GMT
Not After : Apr 18 01:01:04 2026 GMT
Subject: CN=2328360c41e0ca98b86c54f2c39035b2c824318f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:d8:c2:0e:79:90:51:8e:5f:b5:1e:38:14:e9:
0d:34:ca:86:91:e5:79:e8:2c:d6:f7:57:21:34:26:
3d:2a:ef:ea:56:3f:a6:34:0b:c6:a4:98:fc:c5:d1:
c5:a0:23:a1:65:65:a4:8c:72:9a:9b:11:1b:76:4c:
a9:f4:39:c1:ec:21:e9:3c:3f:8f:b8:c4:f4:2b:c3:
66:45:ab:e3:64:20:ce:b9:9a:27:60:f0:99:18:20:
48:84:dc:a3:3d:34:16:5d:3a:cf:e8:be:cf:25:6e:
1c:b7:85:0c:84:72:45:db:34:f7:6d:dd:06:a0:0e:
5d:cc:24:3d:59:38:3f:57:49:95:59:95:e1:82:07:
76:e0:c8:7f:8d:56:e0:43:08:bb:12:8c:a9:04:da:
48:d5:b8:4a:bb:a2:8a:a1:05:9b:54:c8:79:08:3e:
24:d4:3a:ac:ac:ea:fb:89:81:b2:bc:1d:54:9e:1c:
04:98:73:a2:90:fc:66:e0:a3:62:8f:fa:c6:cc:42:
95:cc:3f:ed:38:9c:84:ec:5a:c6:2f:a3:e7:62:29:
90:f6:43:b7:f5:b3:4e:b6:3f:7f:70:e7:06:14:70:
ac:f7:f9:b6:01:63:87:38:80:6f:19:ae:70:af:71:
ac:a8:b6:7b:45:de:92:1d:ab:86:6f:3e:63:fd:e3:
80:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:28:36:0C:41:E0:CA:98:B8:6C:54:F2:C3:90:35:B2:C8:24:31:8F
X509v3 Authority Key Identifier:
keyid:AB:2B:79:42:68:92:ED:1D:A7:B2:E6:18:67:70:CF:B0:4A:E6:03:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qyt5QmiS7R2nsuYYZ3DPsErmA80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/a26050-49ec-4955-9810-e5453707a58e/1/qyt5QmiS7R2nsuYYZ3DPsErmA80.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/a26050-49ec-4955-9810-e5453707a58e/1/qyt5QmiS7R2nsuYYZ3DPsErmA80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:57:80:c5:74:61:93:60:1b:28:00:ef:cd:5c:79:88:a2:99:
4e:46:65:9c:e7:c5:0c:c0:07:6a:7a:5f:4d:8b:28:1b:58:49:
58:73:3b:64:56:07:db:c5:ce:5f:61:c6:8c:10:af:2b:a2:81:
c6:a6:28:1b:7e:c5:58:ec:db:c9:4d:99:7e:97:d9:f8:ed:07:
27:dc:aa:a8:c6:ec:6d:a7:a0:dd:5b:52:06:c0:7b:7d:df:25:
59:bd:af:72:90:f9:a5:86:d8:43:51:cc:de:d8:7c:d0:a0:6b:
76:1c:a2:1b:3e:d2:32:cd:37:95:fc:f3:99:25:a2:6a:8e:0a:
05:35:cf:b6:50:8b:3c:e2:0e:e0:d8:8c:58:6c:7f:b8:2b:5f:
dd:34:94:4f:86:85:a3:35:e5:70:39:13:06:27:bc:ef:70:9a:
2e:27:cf:a3:ca:37:ff:86:86:21:e2:a1:94:b4:6a:cb:c6:f9:
e8:fa:b3:4f:77:43:c1:44:d8:6f:74:1b:42:e8:9b:70:6e:0d:
e8:fb:bc:28:45:4e:f7:8b:f6:a4:96:4f:73:5d:9c:80:d8:a0:
a7:50:a6:12:01:ee:0c:24:6d:2a:e5:32:1f:3e:9e:41:8a:cb:
4f:8d:99:ca:0d:87:03:b7:c9:4a:fb:3e:a7:cb:df:ce:2e:c6:
4e:a9:2c:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:36:09 2026 by rpki-client