Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.mft
File: QtzU0b098prdQHW2jymvkHBHRDw.mft (raw, json)
Hash identifier: nk8mq9w0SCRDemr4Q1tNq3FLbx1UY+97Y0PWTFbF7ls=
Subject key identifier: 07:48:4D:38:9D:E7:FF:19:A2:4F:72:65:E3:0E:94:B7:00:BD:B4:E6
Authority key identifier: 42:DC:D4:D1:BD:3D:F2:9A:DD:40:75:B6:8F:29:AF:90:70:47:44:3C
Certificate issuer: /CN=42dcd4d1bd3df29add4075b68f29af907047443c
Certificate serial: 019D98F47DD21F5B4C48F481FDE50C3CB61D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QtzU0b098prdQHW2jymvkHBHRDw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.mft
Manifest number: 05EF
Signing time: Fri 17 Apr 2026 01:00:52 +0000
Manifest this update: Fri 17 Apr 2026 01:00:52 +0000
Manifest next update: Sat 18 Apr 2026 01:00:52 +0000
Files and hashes: 1: QtzU0b098prdQHW2jymvkHBHRDw.crl (hash: jBMr7g3YtEba18H3wFzz8oWcA6PxAR+o8rAiFkBIn2A=)
2: lqPB-_tpvjZaRMURMIYlaL-x7v4.roa (hash: PwPNHJ6WdN+tYHjQQVUmAufUKj9CcNQAjnCYOsVYIJQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.mft
rsync://rpki.ripe.net/repository/DEFAULT/QtzU0b098prdQHW2jymvkHBHRDw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:7d:d2:1f:5b:4c:48:f4:81:fd:e5:0c:3c:b6:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42dcd4d1bd3df29add4075b68f29af907047443c
Validity
Not Before: Apr 17 01:00:52 2026 GMT
Not After : Apr 18 01:00:52 2026 GMT
Subject: CN=07484d389de7ff19a24f7265e30e94b700bdb4e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:31:ba:21:50:08:32:cb:c4:cd:eb:2e:4e:d8:
38:b8:68:cc:d1:2a:4c:59:5a:ae:be:46:29:e0:be:
95:fc:9f:3a:36:79:a7:fc:e8:44:77:63:bb:dd:9f:
2c:9e:17:f8:b4:a9:12:77:12:0e:92:b7:dc:d6:9e:
a3:b4:eb:2e:72:9d:51:31:e4:38:a8:74:5f:b2:4a:
2a:83:c2:91:4e:4b:90:5f:53:ea:f0:e1:47:86:6b:
13:a6:9c:83:25:75:26:c8:df:7c:b3:f1:85:27:39:
5e:26:9b:cf:2c:15:93:c3:96:5f:24:73:07:56:ca:
c3:5c:de:f3:15:8a:f8:e1:59:ef:0d:b8:47:e1:a7:
7f:ce:65:80:e7:df:27:78:f1:61:b3:c3:c2:d9:e2:
cc:d4:09:63:aa:87:1f:9f:9f:09:8d:fb:25:21:d3:
1e:76:6d:88:0a:02:16:58:da:e0:08:db:13:f0:9d:
4f:d0:1f:e6:dc:4b:fa:e3:d3:62:85:a3:86:c4:29:
bf:ec:07:7e:17:b0:91:71:5e:98:e2:eb:92:c6:44:
58:9a:1c:c5:ad:2a:54:42:f2:e2:67:3d:4f:95:ab:
75:6c:26:75:e6:87:81:b8:e4:17:1a:77:62:dc:03:
0f:d3:0a:e6:ab:cc:84:71:e8:57:8b:b2:c7:16:df:
e7:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:48:4D:38:9D:E7:FF:19:A2:4F:72:65:E3:0E:94:B7:00:BD:B4:E6
X509v3 Authority Key Identifier:
keyid:42:DC:D4:D1:BD:3D:F2:9A:DD:40:75:B6:8F:29:AF:90:70:47:44:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QtzU0b098prdQHW2jymvkHBHRDw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:9c:96:b6:d6:48:51:73:9a:36:e7:e0:a9:70:90:b8:47:36:
92:71:8e:8b:f4:77:23:39:06:17:96:2c:1c:c4:74:47:54:60:
51:25:c6:4d:d3:33:20:56:4b:3f:34:20:e5:13:22:d9:9b:d9:
c9:b5:dc:d5:fd:2f:57:cd:3d:f8:3d:12:9c:71:40:34:e1:99:
11:8c:bd:b5:40:37:4f:bf:0d:9c:df:bf:16:44:23:2e:f2:ce:
a5:8f:9c:03:06:1d:04:5b:c2:72:10:ba:82:54:da:85:f0:02:
74:6a:a2:18:4d:ec:3d:21:cb:32:db:15:bd:6a:55:97:a8:e6:
26:6c:5a:4c:4e:2e:3c:53:2c:ae:48:2d:a2:52:a7:23:bc:64:
75:1b:73:cc:d5:bb:d3:64:29:30:2f:92:70:f5:0e:31:ce:96:
e8:56:5f:ef:11:8c:2b:7d:86:5e:42:4b:2b:d7:b2:8f:7a:0c:
2e:96:2f:f5:13:a6:bf:a3:3b:94:a9:e0:35:b6:82:27:6e:e9:
f0:3c:f5:37:f5:42:fa:f7:0a:28:2e:09:07:85:fd:af:13:8f:
69:26:bf:a2:d5:cd:aa:7a:1d:20:7e:b3:c8:ae:89:5a:67:4b:
a8:6a:ef:3f:2c:e0:9a:e3:74:ae:f1:be:d1:1f:87:8d:93:5d:
d0:bc:3b:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 08:05:35 2026 by rpki-client