Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
File: QH0twQwC9ewk9pD59mBVVIZWLlk.mft (raw, json)
Hash identifier: 9Z4VcQHc720vBYFs40xTHn7UaXFli7qsCz+0pWcNfyA=
Subject key identifier: AB:4C:2B:BE:6C:CB:29:5A:9D:F9:E7:6D:C5:1B:97:10:5E:C0:09:21
Authority key identifier: 40:7D:2D:C1:0C:02:F5:EC:24:F6:90:F9:F6:60:55:54:86:56:2E:59
Certificate issuer: /CN=407d2dc10c02f5ec24f690f9f660555486562e59
Certificate serial: 019D9962470C4983EB30D262ABDAE0B4B1C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QH0twQwC9ewk9pD59mBVVIZWLlk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
Manifest number: 15C0
Signing time: Fri 17 Apr 2026 03:00:47 +0000
Manifest this update: Fri 17 Apr 2026 03:00:47 +0000
Manifest next update: Sat 18 Apr 2026 03:00:47 +0000
Files and hashes: 1: FtvcAFkah5MC2Z1_PcfWmzKSll8.roa (hash: lAzH9ctEUVZ0nWk96qJfvTNhA1rNNyQ5u0vfPKjJ5TI=)
2: QH0twQwC9ewk9pD59mBVVIZWLlk.crl (hash: XIpO6nvdBe/tAhz9ol4W1NUFHf2DtLI56de3uSOE1S8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QH0twQwC9ewk9pD59mBVVIZWLlk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:47:0c:49:83:eb:30:d2:62:ab:da:e0:b4:b1:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=407d2dc10c02f5ec24f690f9f660555486562e59
Validity
Not Before: Apr 17 03:00:47 2026 GMT
Not After : Apr 18 03:00:47 2026 GMT
Subject: CN=ab4c2bbe6ccb295a9df9e76dc51b97105ec00921
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:77:df:4c:6b:ee:17:b7:7b:4a:67:8b:45:3e:
cb:97:50:78:9c:f6:fc:87:46:0f:c1:31:95:2c:03:
1b:4c:41:aa:38:eb:2d:20:94:c0:71:44:fd:f1:0e:
51:50:18:8e:0d:91:05:59:a4:eb:c4:f6:0c:4f:69:
a7:c8:35:04:a3:c1:bd:63:2b:eb:bf:f4:99:4f:db:
92:0e:7a:cf:08:bd:c5:42:1f:e9:81:95:ea:b0:99:
52:ff:04:b6:46:a1:04:92:5c:fa:55:29:91:43:d7:
39:f0:93:25:2d:08:ec:e9:f0:e1:fa:c7:c9:34:e3:
be:c3:4e:00:97:97:cc:68:ab:2c:01:37:8f:96:e0:
d5:c3:05:6c:4a:5b:cc:ac:13:e4:c7:97:44:b5:ad:
57:18:7c:38:a0:88:70:89:d0:80:96:06:26:70:f7:
8a:fc:12:4d:af:fa:95:69:d4:dc:f0:fe:9f:90:1b:
85:56:0f:6b:d7:5f:1b:a2:cd:6a:41:6b:2f:1b:62:
f8:7f:b9:6b:97:e3:66:dd:fe:b6:db:6b:c8:a1:ef:
54:56:06:ec:e3:5e:27:1c:97:6d:61:17:15:ae:c2:
5e:dd:db:88:d8:1f:3f:07:ad:f9:20:e4:e8:65:ab:
2e:f0:f7:d7:42:fd:bd:2d:c9:25:e7:dd:84:a1:39:
c3:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:4C:2B:BE:6C:CB:29:5A:9D:F9:E7:6D:C5:1B:97:10:5E:C0:09:21
X509v3 Authority Key Identifier:
keyid:40:7D:2D:C1:0C:02:F5:EC:24:F6:90:F9:F6:60:55:54:86:56:2E:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QH0twQwC9ewk9pD59mBVVIZWLlk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:f9:1d:81:68:2f:0f:05:2e:5b:79:54:91:00:b2:93:9a:8e:
e8:85:5b:38:d3:69:1e:6c:19:65:10:69:d5:da:d7:0e:95:46:
72:b5:66:9d:4d:bd:43:24:77:c8:95:6f:7a:56:16:ab:48:15:
6e:6a:da:78:a3:f8:28:c4:6b:99:2c:d7:52:0f:20:58:4d:95:
62:0a:ab:67:a2:4d:22:c6:f2:45:84:b7:22:54:41:f8:5f:6f:
f0:8d:53:f6:f9:8a:fa:63:e9:45:f3:8a:82:59:86:be:0a:f2:
22:17:93:fe:ba:2d:43:fa:8a:e8:0c:57:d0:06:8b:b0:64:34:
1b:d7:14:f1:e6:0a:98:b4:c2:0e:c8:cb:f8:93:bc:08:45:12:
06:45:1a:9b:6d:a1:de:13:63:b8:27:4f:e6:c6:58:61:66:ae:
81:62:ae:eb:38:fb:d3:c9:ad:ea:a5:a9:75:61:11:73:bb:70:
32:5f:40:ea:bb:35:1d:30:35:18:3c:71:01:49:8b:65:ba:53:
43:32:a1:9f:68:b3:f5:fb:d1:40:04:6b:95:f8:89:f3:e7:7d:
20:c8:82:f0:40:91:22:f3:6b:b2:ae:c8:0f:f9:b7:d5:93:e9:
46:f0:74:f4:f7:88:f7:21:59:ab:a2:e8:4c:d5:88:62:e8:97:
14:b2:25:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:23:07 2026 by rpki-client