Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.mft
File: 2QSCdjBwlV5-qH4so3uJG4ZLJXc.mft (raw, json)
Hash identifier: 5luPHKQ7kHbigKX/Q6V7lwTNXz98Ye7uzmDRlcOD5uM=
Subject key identifier: 62:10:51:C1:16:FD:2D:02:B9:59:A7:42:8A:80:64:2E:BF:7F:A5:B8
Authority key identifier: D9:04:82:76:30:70:95:5E:7E:A8:7E:2C:A3:7B:89:1B:86:4B:25:77
Certificate issuer: /CN=d90482763070955e7ea87e2ca37b891b864b2577
Certificate serial: 019D9998F0E8DE78DEA53401FD9DB6EDEEC9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2QSCdjBwlV5-qH4so3uJG4ZLJXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.mft
Manifest number: 06CE
Signing time: Fri 17 Apr 2026 04:00:30 +0000
Manifest this update: Fri 17 Apr 2026 04:00:30 +0000
Manifest next update: Sat 18 Apr 2026 04:00:30 +0000
Files and hashes: 1: 2QSCdjBwlV5-qH4so3uJG4ZLJXc.crl (hash: 5rY2Y7uSrlbKjpqWmxNZPz/C+44xtYm/+35i76hG6WE=)
2: 7pzFf_iNoDngDs0Av_ZSMgawRG4.roa (hash: 9rYKYzez5K3YGGCA+xWy6+JbqzejGQR6adseKr3AGNo=)
3: a3MACvt7XrPEY_fMvOjs2dGCc8I.roa (hash: BnSZeJBjA6bMn5RCXClcc6mDzKBCwKOx+bVKk38vQdw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.mft
rsync://rpki.ripe.net/repository/DEFAULT/2QSCdjBwlV5-qH4so3uJG4ZLJXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 04:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:98:f0:e8:de:78:de:a5:34:01:fd:9d:b6:ed:ee:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d90482763070955e7ea87e2ca37b891b864b2577
Validity
Not Before: Apr 17 04:00:30 2026 GMT
Not After : Apr 18 04:00:30 2026 GMT
Subject: CN=621051c116fd2d02b959a7428a80642ebf7fa5b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:5e:c2:7d:95:d7:32:3c:40:d1:c9:42:62:66:
c5:57:b1:b4:53:22:d6:c1:bc:9d:58:59:5b:c3:e6:
ba:91:eb:ba:7c:58:ed:55:6b:29:69:aa:ae:6d:45:
16:74:a0:9d:99:46:0e:a7:eb:36:b8:49:db:76:12:
15:f2:c0:7f:0f:65:01:de:56:0c:3a:41:fb:8e:c1:
91:c2:a8:36:2f:51:e2:c7:3e:ff:da:f5:1f:24:4f:
37:cf:9d:0e:40:5a:3f:33:c8:33:45:79:8b:22:9a:
d9:79:38:0d:fc:88:98:72:f7:ac:05:ff:6f:e2:15:
ac:46:ea:70:d2:af:ea:49:f6:eb:fe:55:4a:70:76:
7a:ba:ed:08:aa:8d:ac:ec:6d:89:23:f4:1a:98:b4:
f8:79:1f:66:0d:a1:cb:70:16:06:a6:8e:66:70:d0:
55:b9:12:49:91:4f:ed:46:15:1a:c4:12:7c:ad:7f:
3e:31:6a:bf:d4:f9:0c:8e:27:c4:13:b1:40:66:43:
8a:7c:27:72:ae:95:7f:64:92:96:6a:ec:f3:7b:b0:
7b:de:09:cc:32:8c:4e:e6:e6:6a:fb:d1:47:8b:dd:
d1:f7:9e:e0:92:c2:1e:c6:a1:52:23:e4:8d:92:42:
fb:ac:b9:eb:06:6f:ef:f7:cc:fb:2d:7b:40:00:71:
cb:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:10:51:C1:16:FD:2D:02:B9:59:A7:42:8A:80:64:2E:BF:7F:A5:B8
X509v3 Authority Key Identifier:
keyid:D9:04:82:76:30:70:95:5E:7E:A8:7E:2C:A3:7B:89:1B:86:4B:25:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2QSCdjBwlV5-qH4so3uJG4ZLJXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
eb:63:64:26:12:ee:ea:62:63:26:47:bc:ce:44:2c:04:22:9b:
3c:14:83:38:a7:9b:57:2f:b7:23:39:5d:c1:55:54:b2:8d:0b:
18:5f:ad:30:e0:21:e8:5d:98:0d:d8:0a:b5:60:d0:40:93:f9:
b9:02:dc:b5:4b:53:01:5a:6f:77:f6:e2:99:37:d2:74:5f:93:
1a:6c:33:be:d8:ea:1e:6c:b7:cf:13:85:7d:38:ac:c8:ea:ac:
4c:89:2b:3b:7a:be:d2:61:60:ad:eb:23:63:7c:5c:b1:3c:a5:
7d:16:1d:2d:9c:09:4f:c7:02:a2:08:2f:a0:3f:19:37:e3:0f:
5a:d1:71:a4:d2:98:79:a2:4c:27:14:ea:c5:ee:d4:25:d9:14:
17:c0:37:61:0e:24:4f:04:e3:5e:c3:cc:6c:39:45:dc:a6:02:
16:5a:e9:f8:d1:ce:08:c2:0a:37:ba:3c:c0:90:12:80:00:1d:
b4:f6:d3:83:d1:a5:4d:42:2a:70:4d:82:72:64:a3:6b:d0:c3:
4d:41:fa:bb:e2:8d:4d:62:57:ad:1b:08:a4:2a:22:30:cf:50:
8c:7d:15:4d:28:0a:12:27:75:29:65:7e:b3:4a:21:2e:0a:c5:
3b:28:a8:24:ec:a3:1e:95:16:ef:92:b1:59:35:ef:72:e0:89:
a8:e2:c2:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:22:15 2026 by rpki-client