Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft
File: QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft (raw, json)
Hash identifier: TF3HwERx+TY6H1t73bYoucIUN6rMCUL46Tc8Qlvm3JI=
Subject key identifier: 25:B2:2E:BD:51:66:26:5C:B8:15:D5:89:E3:C0:95:0F:15:DE:FC:5E
Authority key identifier: 41:2D:AD:82:06:99:F1:53:A3:1A:66:ED:67:83:A1:DE:4E:0F:8C:F5
Certificate issuer: /CN=412dad820699f153a31a66ed6783a1de4e0f8cf5
Certificate serial: 019D98F433E1C5863B72A4D5034D8A2BDDAF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft
Manifest number: 0EAD
Signing time: Fri 17 Apr 2026 01:00:33 +0000
Manifest this update: Fri 17 Apr 2026 01:00:33 +0000
Manifest next update: Sat 18 Apr 2026 01:00:33 +0000
Files and hashes: 1: QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.crl (hash: F+BR740R1Skplzfza/3+b8W7LyZ6OCZ9Albo25M0J5s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft
rsync://rpki.ripe.net/repository/DEFAULT/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 01:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:33:e1:c5:86:3b:72:a4:d5:03:4d:8a:2b:dd:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=412dad820699f153a31a66ed6783a1de4e0f8cf5
Validity
Not Before: Apr 17 01:00:33 2026 GMT
Not After : Apr 18 01:00:33 2026 GMT
Subject: CN=25b22ebd5166265cb815d589e3c0950f15defc5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:c5:5b:2d:a5:e5:59:fb:ea:b9:f3:3a:bc:5b:
40:e4:96:18:b9:9d:b9:82:cd:eb:d5:c5:c9:60:a4:
bf:48:6a:bd:ae:9f:fd:2d:ef:fe:13:c0:0e:98:7d:
06:d2:31:6b:23:7a:31:61:83:64:10:87:bf:60:6b:
c1:d4:4d:38:a8:4c:75:f5:18:0f:fb:56:cd:3d:52:
c2:6b:40:69:6a:44:56:93:c7:4b:cb:db:4b:41:e6:
cd:e8:37:38:cb:48:29:1c:5a:c0:d7:da:32:32:50:
00:ab:7a:2f:04:64:48:9b:c3:7c:93:45:1e:13:96:
85:c3:81:34:df:e5:5d:96:e5:d3:7a:a5:61:71:bb:
64:c5:38:85:3e:bb:24:8e:89:0e:2a:a7:8f:71:a8:
ef:07:22:0b:04:54:ae:a6:c0:6b:bb:4e:e7:91:2c:
25:b9:07:27:df:a4:87:12:a8:e5:9a:5b:0e:3c:fa:
28:b4:d0:9e:32:6e:1f:29:f6:b7:cb:e4:cd:ad:f0:
b4:93:44:e6:13:46:30:fb:58:df:cf:d0:69:b4:cf:
54:ce:57:4a:3a:f8:47:5a:2a:83:b6:3d:33:60:67:
20:0c:9d:cb:48:a2:32:20:8b:0c:04:e6:7f:8c:2b:
62:d0:cd:a4:c3:9f:4d:5f:5f:6f:2f:b9:5c:b8:5f:
db:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:B2:2E:BD:51:66:26:5C:B8:15:D5:89:E3:C0:95:0F:15:DE:FC:5E
X509v3 Authority Key Identifier:
keyid:41:2D:AD:82:06:99:F1:53:A3:1A:66:ED:67:83:A1:DE:4E:0F:8C:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cf:13:c1:e3:50:2b:7d:cd:41:b7:e6:70:b2:81:48:61:23:7c:
19:b8:c5:ab:14:54:7c:c5:6b:51:30:c7:61:f9:33:4c:78:ef:
cf:fc:19:75:97:00:ef:fd:a2:2f:b6:d4:a4:f5:d8:a9:9d:6c:
92:92:40:7b:cc:57:7e:21:f4:8a:95:48:03:17:1b:61:eb:b4:
69:50:cf:9c:03:3b:44:66:75:00:e9:29:7c:a9:19:c6:04:5f:
98:79:70:79:28:5d:fe:0a:03:1e:5a:59:6f:c9:b5:e4:99:37:
81:ea:ec:42:c2:4f:5c:df:1c:c6:5b:6a:95:ff:20:ce:bb:f6:
57:5e:bd:9b:5f:04:8c:16:da:1a:f5:0a:ea:31:27:a2:fa:60:
ec:33:18:1e:50:d4:f5:95:0e:76:ac:6a:5b:a7:e8:71:86:62:
dd:5d:34:24:d4:4a:ef:50:fd:48:2c:ab:7f:01:55:16:ba:c4:
78:9c:40:76:74:2f:bd:44:67:13:40:fa:90:a5:2f:70:65:52:
07:76:86:29:4c:f9:9a:de:2f:d3:c8:ed:6d:7f:04:96:ab:64:
2b:aa:0b:f6:0c:bd:ca:f4:91:a9:ed:61:4e:1e:78:27:17:10:
19:e9:e3:13:7e:bf:00:6e:cd:0c:dd:da:7a:09:ff:05:8e:56:
16:19:3b:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:06:19 2026 by rpki-client