Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.mft
File: QyB1WWVFCTwGpvz4-rV7GS53kKo.mft (raw, json)
Hash identifier: v4+Xd7LIf4bx+t4pm6MNz8Y6yUWkwGjQj3l8HUtivz8=
Subject key identifier: AC:91:E5:34:F1:C5:4B:FF:FE:CC:05:52:D2:60:7C:77:B4:E9:A0:9B
Authority key identifier: 43:20:75:59:65:45:09:3C:06:A6:FC:F8:FA:B5:7B:19:2E:77:90:AA
Certificate issuer: /CN=432075596545093c06a6fcf8fab57b192e7790aa
Certificate serial: 019DD01A50C3DF4ABE8F88AB8551820FCA11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QyB1WWVFCTwGpvz4-rV7GS53kKo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.mft
Manifest number: 18DF
Signing time: Mon 27 Apr 2026 18:01:18 +0000
Manifest this update: Mon 27 Apr 2026 18:01:18 +0000
Manifest next update: Tue 28 Apr 2026 18:01:18 +0000
Files and hashes: 1: 7Ajy7T_IXat5EHnX5jOdCl3BXSs.roa (hash: Rn+5opWUGoRW49OpMrdlbpM9u9h2SBCx0mFY1z5Li4g=)
2: QyB1WWVFCTwGpvz4-rV7GS53kKo.crl (hash: 9UXTx0OLVb13olfNVVhXkmJn9nb/+kFPSal8ekX7Bfs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.mft
rsync://rpki.ripe.net/repository/DEFAULT/QyB1WWVFCTwGpvz4-rV7GS53kKo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 17:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:d0:1a:50:c3:df:4a:be:8f:88:ab:85:51:82:0f:ca:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=432075596545093c06a6fcf8fab57b192e7790aa
Validity
Not Before: Apr 27 18:01:18 2026 GMT
Not After : Apr 28 18:01:18 2026 GMT
Subject: CN=ac91e534f1c54bfffecc0552d2607c77b4e9a09b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:07:f2:06:fc:ce:e9:23:66:83:0f:87:bc:21:
82:47:79:3e:95:38:3f:2b:8b:d9:a9:dd:a5:88:8f:
e2:39:b7:95:fc:8e:7c:0f:ff:af:6f:89:ef:8f:46:
f5:2b:9c:cf:00:11:8e:4c:45:5b:32:b5:60:98:dd:
f2:74:60:9c:9a:4f:fa:f0:a9:73:77:3b:32:fb:3f:
2e:2d:30:8a:f6:14:94:89:a0:49:1b:92:e9:33:57:
c4:6c:83:3d:4d:57:ce:2d:d0:8f:b2:a7:24:ec:d4:
09:cf:56:e9:1d:64:70:8e:85:1a:81:39:66:16:5f:
a3:00:5b:74:11:cb:03:d0:05:39:71:e2:6d:63:e2:
8b:cd:79:d7:6d:ef:a6:da:8a:81:e3:0f:ed:2e:de:
e0:94:a0:07:63:fc:55:66:35:e2:1d:85:ee:33:41:
63:aa:b0:38:a8:26:8c:ef:fd:c3:22:b6:68:c3:68:
81:55:83:2b:94:80:42:d2:8e:b7:47:d3:c9:ca:7b:
e9:90:0a:e2:7d:ca:cf:15:e6:cc:81:4f:0b:a0:81:
05:d1:18:3e:92:5d:2e:3e:8a:82:76:7e:32:d6:06:
8b:15:99:ef:eb:0f:7c:c8:2c:c7:d4:06:dd:78:a9:
c1:04:32:37:86:ce:0f:1f:a3:d7:29:d7:ba:e4:fb:
5a:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:91:E5:34:F1:C5:4B:FF:FE:CC:05:52:D2:60:7C:77:B4:E9:A0:9B
X509v3 Authority Key Identifier:
keyid:43:20:75:59:65:45:09:3C:06:A6:FC:F8:FA:B5:7B:19:2E:77:90:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QyB1WWVFCTwGpvz4-rV7GS53kKo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:3f:0a:47:0e:78:53:7e:4a:f6:b7:11:63:e7:78:f9:f1:0f:
de:bd:16:9f:fc:36:23:be:d1:04:01:dc:c2:28:a6:04:ac:13:
d9:27:9b:65:95:9c:08:a1:af:df:5b:b8:b3:e9:33:ae:54:be:
96:6d:6e:57:d0:1b:77:ce:c1:13:1b:5e:a0:c0:4e:6b:d0:61:
79:c9:c4:d2:c1:3d:fb:24:cd:33:94:97:f3:72:c4:bc:7f:c9:
ae:c1:11:0e:3e:3d:dd:1d:58:1b:d5:96:0f:3c:80:b3:4d:19:
2b:78:1c:9e:58:d8:c2:06:2f:94:fb:bf:3e:6b:9a:04:f6:05:
f9:cd:07:1b:30:aa:fb:01:c0:20:2b:37:78:78:65:ac:5f:22:
fd:6e:01:16:10:56:51:d1:72:63:cc:7b:00:65:4f:82:0a:70:
23:92:86:ae:58:43:9e:dd:7b:16:8b:0e:a8:16:99:48:23:7f:
90:6f:a5:5f:ce:9e:40:c9:7e:6b:05:e3:0e:9e:8c:39:e8:0e:
a6:8c:c0:e9:0f:31:68:21:ec:6a:b0:67:db:51:f7:e1:00:f7:
1a:47:90:5a:b7:18:26:97:a6:4c:78:37:24:61:98:5d:90:f1:
2d:89:83:43:1c:0c:4f:3b:ff:ec:9b:ce:fc:16:32:94:32:24:
cc:6c:d1:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 23:26:27 2026 by rpki-client