Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
File: QBY91EFO8-eS4AUB80786UQKnE4.mft (raw, json)
Hash identifier: fKlo3IrdzT9NymsG4Pt0B0zK43SiU+FPj1BBeclwvBo=
Subject key identifier: CB:81:E9:08:21:51:E6:97:AD:69:49:6B:97:11:59:C4:9E:78:46:EB
Authority key identifier: 40:16:3D:D4:41:4E:F3:E7:92:E0:05:01:F3:4E:FC:E9:44:0A:9C:4E
Certificate issuer: /CN=40163dd4414ef3e792e00501f34efce9440a9c4e
Certificate serial: 019D9A74BCAC2E4DF4BE2F8D110E80A31212
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
Manifest number: 18C4
Signing time: Fri 17 Apr 2026 08:00:34 +0000
Manifest this update: Fri 17 Apr 2026 08:00:34 +0000
Manifest next update: Sat 18 Apr 2026 08:00:34 +0000
Files and hashes: 1: QBY91EFO8-eS4AUB80786UQKnE4.crl (hash: Appcw42Pxdw5xo4mKQo0B7i6mtt5zd6QirLX7kAHDv0=)
2: XVQmZyZgIfyuS-i9_dYYU_5CGT0.roa (hash: BPYDVshqMOmc9U1pef4+DfyaziPWsnfi+uZonkxHf4c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:74:bc:ac:2e:4d:f4:be:2f:8d:11:0e:80:a3:12:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40163dd4414ef3e792e00501f34efce9440a9c4e
Validity
Not Before: Apr 17 08:00:34 2026 GMT
Not After : Apr 18 08:00:34 2026 GMT
Subject: CN=cb81e9082151e697ad69496b971159c49e7846eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:8e:10:38:9d:50:79:50:ef:a1:2c:73:ce:76:
5b:73:ff:83:07:a7:ec:a0:3e:22:56:5d:7c:6c:6e:
24:63:ec:53:26:57:13:ff:c6:91:23:e0:2a:82:85:
85:e1:75:21:8d:cb:63:57:f2:0a:1e:8d:d8:a4:7a:
86:82:04:d2:46:40:2e:31:68:8d:90:12:ab:7e:64:
a1:b6:06:b7:2c:e2:9e:1e:a2:46:6f:9f:05:96:ac:
7f:a2:2e:aa:69:9a:33:be:0a:57:06:5b:86:12:4a:
86:be:dd:ef:21:56:07:6e:97:bb:4d:b3:14:97:9b:
e5:8c:f5:59:d4:74:58:14:c2:15:b1:67:c8:b1:c8:
33:38:b9:b4:4f:ed:c5:2f:ce:57:f4:98:2c:0e:0e:
a9:a7:83:ba:64:4d:d9:3d:d0:1a:01:ac:5b:90:55:
c8:8e:56:71:91:2e:79:3f:ad:bf:3c:b4:ee:a6:08:
82:57:79:7d:b2:f3:bf:09:15:3a:ed:a3:fd:08:1f:
91:4a:c7:18:8f:5a:f8:ba:6d:af:52:51:60:3a:57:
35:ce:cd:2b:fe:37:19:1f:54:d1:99:35:22:e7:e2:
38:51:e8:7a:d8:f2:64:51:6e:53:9f:e3:ee:4d:e9:
76:07:74:a6:fc:e0:0d:d3:26:3a:1d:d8:23:16:5e:
38:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:81:E9:08:21:51:E6:97:AD:69:49:6B:97:11:59:C4:9E:78:46:EB
X509v3 Authority Key Identifier:
keyid:40:16:3D:D4:41:4E:F3:E7:92:E0:05:01:F3:4E:FC:E9:44:0A:9C:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:f7:27:79:97:9d:6d:3c:2c:f0:09:6f:3d:87:37:7f:38:fb:
a2:be:b5:a6:02:32:4e:63:9f:2e:03:7e:b4:c4:17:03:73:a9:
4a:cd:03:4f:01:af:16:94:e9:d1:23:a1:ae:92:00:79:31:59:
5b:3c:53:7d:2c:1e:d7:fd:a9:a8:fd:06:81:d2:15:40:06:b0:
3f:b8:62:f6:e8:1c:a2:fd:6e:56:72:d7:b9:dd:1e:b4:43:c2:
08:00:93:9f:34:ed:34:a8:33:aa:0b:1f:28:02:9b:1d:7e:36:
70:10:e5:1e:5c:42:3d:32:82:52:44:d4:6f:50:46:c7:8a:35:
08:4c:da:1e:d6:48:41:a9:11:24:21:c3:e3:0e:f8:6f:6f:d4:
09:aa:34:3b:05:6c:26:ab:9b:c8:a0:58:ec:db:c6:d9:7f:41:
59:70:2e:71:19:ab:1a:4f:1c:9f:37:4a:b0:23:a2:15:89:bb:
09:de:f0:99:80:c6:4f:93:a6:9c:62:77:ed:90:be:9a:85:7f:
9e:f4:b6:0f:86:e1:24:91:e7:53:8a:dc:dc:ad:e7:86:07:ff:
ad:35:94:74:be:78:d2:3f:7e:df:3a:42:f4:b9:80:bf:ae:9f:
d1:03:75:14:cc:9f:9c:9c:74:7c:97:41:9a:7d:14:59:03:50:
9d:ed:85:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 12:35:04 2026 by rpki-client