Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.mft
File: QI-gF1Mv9tn7OLQAN4lq-vCqz4s.mft (raw, json)
Hash identifier: 9F3PjvyJuFL97gtKEHPwiXLV4JlT9P6TKn6txucbKNo=
Subject key identifier: 13:9B:AD:F7:EE:D9:6C:59:C2:81:E5:68:CC:E1:48:FA:27:C5:56:A2
Authority key identifier: 40:8F:A0:17:53:2F:F6:D9:FB:38:B4:00:37:89:6A:FA:F0:AA:CF:8B
Certificate issuer: /CN=408fa017532ff6d9fb38b40037896afaf0aacf8b
Certificate serial: 019DDC8C8D4ABA78BEC5EC87D092103829C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.mft
Manifest number: 0AB1
Signing time: Thu 30 Apr 2026 04:01:31 +0000
Manifest this update: Thu 30 Apr 2026 04:01:31 +0000
Manifest next update: Fri 01 May 2026 04:01:31 +0000
Files and hashes: 1: QI-gF1Mv9tn7OLQAN4lq-vCqz4s.crl (hash: Dmkwx/nH39ZW4JKNWipCFXvpYn4LmC/XugeVFEw/Kv8=)
2: RhhybVhgxehJpyQFfu1dQiF3RZc.roa (hash: vTXKPtYUm1UxDqfrm9GUHJ6eZM3EZfiTITZU7YFaPA8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.mft
rsync://rpki.ripe.net/repository/DEFAULT/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 01 May 2026 04:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:dc:8c:8d:4a:ba:78:be:c5:ec:87:d0:92:10:38:29:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=408fa017532ff6d9fb38b40037896afaf0aacf8b
Validity
Not Before: Apr 30 04:01:31 2026 GMT
Not After : May 1 04:01:31 2026 GMT
Subject: CN=139badf7eed96c59c281e568cce148fa27c556a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:cd:ec:c5:db:19:ff:dd:e0:ca:05:4a:e2:b3:
0b:d8:1c:f3:52:9b:8e:0d:0d:60:5a:0e:ce:f9:19:
15:a8:3c:62:18:59:7a:c6:20:06:0b:1e:d1:1f:f8:
07:5c:ae:b6:28:88:a3:57:23:6f:53:c7:be:b5:7f:
fa:14:48:f0:10:04:86:13:e1:1e:d3:58:5d:3d:96:
12:dd:82:5e:7d:67:2a:6f:da:b3:a7:99:e6:21:db:
4a:8a:5e:df:1b:27:0b:12:c4:81:d2:a7:f8:c6:7d:
c9:09:3e:f9:6d:dd:f6:a8:17:81:5f:95:e8:be:7c:
14:2a:69:24:ce:8f:dc:21:b4:1e:e6:2a:5f:8c:c4:
56:31:0b:6b:16:6c:33:2f:1d:3f:cd:a4:38:07:80:
26:1e:5a:ec:16:9d:51:3d:9f:d6:c3:4a:3a:c5:dd:
e9:21:3c:40:81:32:ad:69:a5:a8:38:3f:4b:af:23:
2b:2b:5c:93:b7:2f:d1:72:a8:e9:ab:4d:e1:a5:e0:
ff:33:4d:b4:5d:86:0c:b6:36:be:54:b0:35:2a:91:
db:d5:4e:cc:23:de:1f:60:87:2b:9a:a3:16:8e:70:
91:e6:14:28:88:7f:fa:e6:94:5e:57:93:c3:3a:f4:
18:93:40:32:1d:d4:99:d1:cc:a6:b3:d8:5f:4b:fc:
bb:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:9B:AD:F7:EE:D9:6C:59:C2:81:E5:68:CC:E1:48:FA:27:C5:56:A2
X509v3 Authority Key Identifier:
keyid:40:8F:A0:17:53:2F:F6:D9:FB:38:B4:00:37:89:6A:FA:F0:AA:CF:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:9d:53:60:87:83:84:3f:48:56:aa:ad:64:4b:a6:a4:38:d8:
02:21:e4:e0:6d:77:d3:e8:e6:c1:b3:dd:e6:dc:c2:1a:0f:56:
6b:60:d0:bd:d5:e8:98:86:67:56:d3:75:9a:ba:1c:ed:66:f2:
89:83:4c:30:fc:c2:ff:30:9f:6e:cf:49:8b:41:cf:f9:a2:b2:
09:6b:5c:d4:47:64:87:da:c9:bb:29:d0:e8:93:54:ee:f8:75:
b8:81:e2:4b:3b:83:08:ff:9c:da:43:ee:8e:1f:f8:12:8f:7f:
da:ef:42:a8:86:7a:0b:71:65:10:4b:c4:17:f9:e1:70:6d:d2:
3b:75:06:21:37:2f:92:9d:23:2d:c9:98:2c:b5:8b:79:a9:4c:
24:8e:39:14:6b:cf:d2:ad:9f:9e:ff:bb:93:9f:a2:28:67:44:
95:f1:bf:f8:4b:ba:23:af:48:ab:60:aa:55:c5:83:9a:70:1e:
37:30:20:0f:69:ff:14:3d:85:12:40:19:d8:6e:77:0a:59:9c:
f9:f5:74:a2:41:ab:4a:c9:1e:26:73:6f:d4:0d:e6:5c:2a:1a:
b0:6b:55:a1:d3:1b:82:b0:b5:a8:64:f0:83:24:d2:ae:b5:db:
4c:d0:a7:bf:d8:e0:91:cd:9a:43:f6:ba:5c:37:bd:cf:a1:5d:
52:8b:cd:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 30 13:48:49 2026 by rpki-client