Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft
File: RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft (raw, json)
Hash identifier: 0hjcny5Umgx25s2BbfUqPtt54sVaeysw6WRgwD3sjbQ=
Subject key identifier: 48:90:80:CA:7C:15:EE:30:87:2B:6A:7A:D1:A0:1B:17:D9:FA:DF:F4
Authority key identifier: 45:01:E8:5C:00:25:C4:AE:29:52:80:58:E2:32:D7:37:C2:F4:95:CE
Certificate issuer: /CN=4501e85c0025c4ae29528058e232d737c2f495ce
Certificate serial: 019D37891AFCBEC062E84BAC0D9F9219EBB0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RQHoXAAlxK4pUoBY4jLXN8L0lc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft
Manifest number: 04F1
Signing time: Sun 29 Mar 2026 03:00:25 +0000
Manifest this update: Sun 29 Mar 2026 03:00:25 +0000
Manifest next update: Mon 30 Mar 2026 03:00:25 +0000
Files and hashes: 1: OPpSZm1jWTTBpqUrYsOO8HLZeBs.roa (hash: bb6q72W6oNvno2eLB+s2W9k1FAddahs3TD0hpCigXCI=)
2: RQHoXAAlxK4pUoBY4jLXN8L0lc4.crl (hash: kYanTnw3L7xYbIYLNqBYuF1ph8uKUfeDI7bGkoHTnUw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft
rsync://rpki.ripe.net/repository/DEFAULT/RQHoXAAlxK4pUoBY4jLXN8L0lc4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:1a:fc:be:c0:62:e8:4b:ac:0d:9f:92:19:eb:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4501e85c0025c4ae29528058e232d737c2f495ce
Validity
Not Before: Mar 29 03:00:25 2026 GMT
Not After : Mar 30 03:00:25 2026 GMT
Subject: CN=489080ca7c15ee30872b6a7ad1a01b17d9fadff4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:65:82:bc:f4:f1:1c:7a:2d:fb:ff:5e:2a:fe:
f6:e1:67:5e:91:b9:94:0f:78:2b:c4:9e:b6:09:4b:
cd:0b:4b:bf:74:23:9f:ad:09:59:d9:f2:40:ff:81:
ed:69:51:0b:8e:37:10:37:23:25:73:3a:37:16:0e:
31:68:4c:3b:85:b8:14:16:13:0e:71:9f:02:8e:45:
ef:df:28:58:ab:db:8d:ee:28:fc:95:7a:fe:86:c2:
5e:57:b4:a6:6a:c9:cb:94:93:c5:db:b4:61:f4:78:
43:48:56:c8:a3:27:f7:e6:ea:a1:01:f2:5d:a7:8b:
7d:1c:c0:0d:7b:25:0a:bb:9f:d9:d5:eb:68:e1:1b:
d1:04:13:75:f4:30:2a:bf:3d:01:17:25:1e:4d:1f:
39:7a:17:0a:8d:33:03:6b:86:f5:30:1c:ec:90:aa:
21:08:82:89:35:15:ce:87:27:14:52:fb:0e:bf:15:
f1:c3:80:1e:18:8e:e6:bf:a7:14:28:cb:58:67:f8:
91:3e:07:85:4e:d1:95:7b:fc:a2:f8:5f:74:89:ea:
ae:41:b9:8f:a6:50:59:8b:71:55:43:ba:55:f3:ed:
b7:ea:ed:94:7b:9d:e1:e9:9c:a1:ec:fc:75:df:54:
c2:74:de:24:de:25:15:1d:2e:71:06:19:4c:2b:b1:
c8:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:90:80:CA:7C:15:EE:30:87:2B:6A:7A:D1:A0:1B:17:D9:FA:DF:F4
X509v3 Authority Key Identifier:
keyid:45:01:E8:5C:00:25:C4:AE:29:52:80:58:E2:32:D7:37:C2:F4:95:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RQHoXAAlxK4pUoBY4jLXN8L0lc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/d3e8a8-58ef-4630-bf35-cee64195533c/1/RQHoXAAlxK4pUoBY4jLXN8L0lc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:98:c7:45:e9:be:99:b1:b5:ea:b4:2f:63:c9:47:9c:5e:88:
c8:0d:9f:5f:16:ee:5e:e8:c4:69:1a:99:7d:c5:4a:18:72:4d:
ae:07:3c:05:52:9c:45:43:bb:de:86:d7:fc:64:0d:83:66:60:
e9:d8:f7:a1:1a:c7:ca:36:c9:9c:16:bb:ba:e2:4b:b5:0e:f9:
16:29:b3:b9:e9:9e:44:17:f6:ac:96:82:f6:00:71:f9:5c:6b:
4f:01:6f:39:cd:5f:1b:f0:1a:e3:6b:bf:6f:4e:68:ef:f8:f1:
01:04:78:19:59:a2:66:61:0b:a8:ad:6f:02:4d:99:4e:16:88:
2d:b8:8b:62:25:73:70:6e:d5:8d:22:d0:98:92:a6:ad:22:af:
65:81:ac:a5:ca:b3:9a:ce:61:9f:f0:38:14:85:50:af:4d:f5:
69:a5:e1:bc:9d:44:ed:20:ac:78:37:31:e2:97:21:78:67:f0:
18:56:af:35:22:af:84:ce:35:2b:53:d2:0c:2d:b3:d9:c2:19:
a1:9e:04:7d:14:9f:1d:bc:d0:a3:6c:e2:cf:2b:71:ef:3f:49:
1c:80:3f:dd:99:57:d6:91:49:0e:fb:74:42:71:21:ec:b1:88:
07:5c:dc:87:2f:79:95:73:86:dc:d9:80:ad:2e:41:79:8f:5a:
16:69:3f:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:04:16 2026 by rpki-client