Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/304aaa-4ce5-4065-b073-26c3365153af/1/QHShwDg61esPBYjkwzlLo0AQpiE.mft
File: QHShwDg61esPBYjkwzlLo0AQpiE.mft (raw, json)
Hash identifier: 9D6Z1p3bhUXeklUW5zqnJqznpZKEbpjv7215yXRsnzk=
Subject key identifier: 2A:DB:A1:D6:30:3D:BA:C4:2F:7B:53:4D:31:EF:26:A4:8A:F9:A8:D2
Authority key identifier: 40:74:A1:C0:38:3A:D5:EB:0F:05:88:E4:C3:39:4B:A3:40:10:A6:21
Certificate issuer: /CN=4074a1c0383ad5eb0f0588e4c3394ba34010a621
Certificate serial: 019DB16A9428FF8DFAB736E9F2D81198FE90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QHShwDg61esPBYjkwzlLo0AQpiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/304aaa-4ce5-4065-b073-26c3365153af/1/QHShwDg61esPBYjkwzlLo0AQpiE.mft
Manifest number: 18D0
Signing time: Tue 21 Apr 2026 19:00:45 +0000
Manifest this update: Tue 21 Apr 2026 19:00:45 +0000
Manifest next update: Wed 22 Apr 2026 19:00:45 +0000
Files and hashes: 1: QHShwDg61esPBYjkwzlLo0AQpiE.crl (hash: dc0lZG9mlyWRNTf28zJOpzy0dCuXdnhS/lzbbpr2cDw=)
2: UuOnxKKINXGrGno4BgqG1wRiVJE.roa (hash: qOk1balDAYueDzPokwNkuPz8mml9IxTXWfQ4Usp7bxE=)
3: lWaDtpARbUJ2WwQgVuDOZ2ytV1Q.roa (hash: jLR4Kee9nPopi72xWjqK7/G5TtGJxgI8fqStb9xXKYY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/304aaa-4ce5-4065-b073-26c3365153af/1/QHShwDg61esPBYjkwzlLo0AQpiE.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/304aaa-4ce5-4065-b073-26c3365153af/1/QHShwDg61esPBYjkwzlLo0AQpiE.mft
rsync://rpki.ripe.net/repository/DEFAULT/QHShwDg61esPBYjkwzlLo0AQpiE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Apr 2026 14:21:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:b1:6a:94:28:ff:8d:fa:b7:36:e9:f2:d8:11:98:fe:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4074a1c0383ad5eb0f0588e4c3394ba34010a621
Validity
Not Before: Apr 21 19:00:45 2026 GMT
Not After : Apr 22 19:00:45 2026 GMT
Subject: CN=2adba1d6303dbac42f7b534d31ef26a48af9a8d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:cd:27:8d:7c:6e:7d:e9:89:fc:e7:73:1c:eb:
09:84:17:f9:d5:7b:6d:fa:2a:49:a8:15:bf:85:87:
aa:8e:30:de:cb:03:a9:ff:72:bf:6a:2a:57:b6:c3:
bb:b3:70:a2:59:69:70:dd:a5:2b:92:3a:bd:df:7c:
b6:b9:65:01:84:ef:ea:d9:93:0a:f0:14:c2:9b:60:
37:08:1e:3f:aa:93:10:d5:4f:88:b6:7b:92:9c:10:
2b:c5:f0:51:89:d2:58:fd:d1:90:1b:73:5a:13:7b:
c3:01:49:65:59:6f:cd:e5:c1:bf:ca:bb:60:25:cf:
9b:b5:a5:2a:06:ca:5f:38:55:e4:0b:d8:a2:e3:4f:
2e:a4:ff:27:a8:00:f8:b7:90:b6:2f:15:7e:60:a5:
be:a0:96:ed:bf:7d:d7:1e:8a:0c:d6:00:da:eb:26:
0c:f1:49:7f:26:36:9a:62:92:b8:ac:1b:08:6a:31:
ff:93:da:bb:bf:9b:18:04:0c:8c:73:79:64:be:ef:
0e:1b:8f:1e:fc:c2:89:60:9e:40:02:7f:02:09:1e:
88:e7:9c:d6:eb:f7:18:eb:9f:37:be:c4:83:d5:6d:
4d:4f:4c:2a:a6:24:85:6a:01:76:92:e4:f4:bf:fe:
3c:b1:6f:11:7a:06:df:0a:79:fb:9b:24:25:37:33:
37:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:DB:A1:D6:30:3D:BA:C4:2F:7B:53:4D:31:EF:26:A4:8A:F9:A8:D2
X509v3 Authority Key Identifier:
keyid:40:74:A1:C0:38:3A:D5:EB:0F:05:88:E4:C3:39:4B:A3:40:10:A6:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QHShwDg61esPBYjkwzlLo0AQpiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/304aaa-4ce5-4065-b073-26c3365153af/1/QHShwDg61esPBYjkwzlLo0AQpiE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/304aaa-4ce5-4065-b073-26c3365153af/1/QHShwDg61esPBYjkwzlLo0AQpiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:a7:9d:22:eb:55:ef:12:e1:de:82:cc:4c:f2:1f:55:54:ea:
f1:c5:76:34:a5:65:ed:10:98:d0:53:8e:8a:99:39:6a:77:3e:
e5:38:44:d1:f1:3c:cf:12:15:d8:24:ba:aa:78:32:5a:4a:14:
ba:93:e8:71:5b:8f:c3:d8:6c:4b:44:37:a3:20:9d:eb:43:e1:
70:ce:cd:10:07:b3:ab:dd:5f:07:32:b2:ca:48:73:e7:44:a0:
a3:a1:cb:24:d0:b7:0a:cf:ab:6e:1b:4d:d5:1c:ba:31:c5:c1:
20:85:42:c9:f7:e5:d8:59:35:8e:10:62:86:d7:80:4c:f6:20:
68:86:ee:c5:3e:9e:b8:2d:eb:4b:7d:aa:20:dd:ec:a4:01:85:
28:51:87:e2:96:02:64:88:36:76:90:58:cb:d6:79:fa:46:d0:
78:b4:85:48:a4:32:56:72:bc:17:33:0f:74:0f:3a:9c:b9:4f:
60:8f:eb:85:ea:0f:fe:01:b8:fa:5f:95:bf:e3:01:d8:ad:37:
f9:13:dd:d2:19:75:cb:70:12:f2:d1:15:20:ea:d7:3d:a5:86:
40:09:25:8a:d3:3d:13:fc:eb:5e:67:e5:4c:df:79:21:98:27:
0e:b4:d4:ed:a8:06:2a:6a:16:41:52:b1:76:5d:a3:51:30:fd:
c1:88:65:f6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2xapQo/436tzbp8tgRmP6QMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwNzRhMWMwMzgzYWQ1ZWIwZjA1ODhlNGMzMzk0YmEzNDAx
MGE2MjEwHhcNMjYwNDIxMTkwMDQ1WhcNMjYwNDIyMTkwMDQ1WjAzMTEwLwYDVQQD
EygyYWRiYTFkNjMwM2RiYWM0MmY3YjUzNGQzMWVmMjZhNDhhZjlhOGQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwc0njXxufemJ/OdzHOsJhBf51Xtt
+ipJqBW/hYeqjjDeywOp/3K/aipXtsO7s3CiWWlw3aUrkjq933y2uWUBhO/q2ZMK
8BTCm2A3CB4/qpMQ1U+ItnuSnBArxfBRidJY/dGQG3NaE3vDAUllWW/N5cG/yrtg
Jc+btaUqBspfOFXkC9ii408upP8nqAD4t5C2LxV+YKW+oJbtv33XHooM1gDa6yYM
8Ul/JjaaYpK4rBsIajH/k9q7v5sYBAyMc3lkvu8OG48e/MKJYJ5AAn8CCR6I55zW
6/cY6583vsSD1W1NT0wqpiSFagF2kuT0v/48sW8RegbfCnn7myQlNzM3jQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCrbodYwPbrEL3tTTTHvJqSK+ajSMB8GA1UdIwQY
MBaAFEB0ocA4OtXrDwWI5MM5S6NAEKYhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUhTaHdEZzYxZXNQQllqa3d6bExvMEFRcGlFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi8zMDRhYWEtNGNlNS00MDY1LWIwNzMt
MjZjMzM2NTE1M2FmLzEvUUhTaHdEZzYxZXNQQllqa3d6bExvMEFRcGlFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi8zMDRhYWEtNGNlNS00MDY1LWIwNzMtMjZjMzM2NTE1M2Fm
LzEvUUhTaHdEZzYxZXNQQllqa3d6bExvMEFRcGlFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEqedIutV
7xLh3oLMTPIfVVTq8cV2NKVl7RCY0FOOipk5anc+5ThE0fE8zxIV2CS6qngyWkoU
upPocVuPw9hsS0Q3oyCd60PhcM7NEAezq91fBzKyykhz50Sgo6HLJNC3Cs+rbhtN
1Ry6McXBIIVCyffl2Fk1jhBihteATPYgaIbuxT6euC3rS32qIN3spAGFKFGH4pYC
ZIg2dpBYy9Z5+kbQeLSFSKQyVnK8FzMPdA86nLlPYI/rheoP/gG4+l+Vv+MB2K03
+RPd0hl1y3AS8tEVIOrXPaWGQAklitM9E/zrXmflTN95IZgnDrTU7agGKmoWQVKx
dl2jUTD9wYhl9g==
-----END CERTIFICATE-----
Generated at Wed Apr 22 00:19:21 2026 by rpki-client