Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
File: 1QliA1xelRATygZwylaeefjWPBU.mft (raw, json)
Hash identifier: NBhCKMP81GJ7g34XfLCDDDpQNSRCsCHgoq0j9YXSAH8=
Subject key identifier: 33:08:A9:2A:C2:B8:80:02:51:94:32:9A:97:47:39:07:02:41:B4:99
Authority key identifier: D5:09:62:03:5C:5E:95:10:13:CA:06:70:CA:56:9E:79:F8:D6:3C:15
Certificate issuer: /CN=d50962035c5e951013ca0670ca569e79f8d63c15
Certificate serial: 019E2F9751BC473FA6140947573B6F1AA7DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1QliA1xelRATygZwylaeefjWPBU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
Manifest number: 13DB
Signing time: Sat 16 May 2026 07:01:46 +0000
Manifest this update: Sat 16 May 2026 07:01:46 +0000
Manifest next update: Sun 17 May 2026 07:01:46 +0000
Files and hashes: 1: 1QliA1xelRATygZwylaeefjWPBU.crl (hash: vw58RBrw6hMieEikKSgheo0WDqzgFYFeldy4CG1VWUY=)
2: CfjqQqpPDnBhH-p0lAIrBIhNgY8.roa (hash: /5wTY3Au8nodbJrzfE4opPFUcgrAfS3BmM1XuaMh8Fg=)
3: SosxbjlFtLu-lsuh4-rF3Rw-rK0.roa (hash: c0C1OZyGN1Qv/oPDh5sJipEydB/aVrMAT59EdQMDAY4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
rsync://rpki.ripe.net/repository/DEFAULT/1QliA1xelRATygZwylaeefjWPBU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 07:01:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:97:51:bc:47:3f:a6:14:09:47:57:3b:6f:1a:a7:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d50962035c5e951013ca0670ca569e79f8d63c15
Validity
Not Before: May 16 07:01:46 2026 GMT
Not After : May 17 07:01:46 2026 GMT
Subject: CN=3308a92ac2b880025194329a974739070241b499
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:41:7d:1f:f6:21:6d:29:d3:5a:2e:a9:93:26:
39:f9:74:47:ee:b4:d4:d3:1e:bf:7b:92:bf:98:56:
50:d0:6d:b1:3b:86:78:70:9c:4e:cf:ee:0e:c9:c6:
b2:06:3a:64:77:bf:04:47:8d:71:c1:d9:0e:90:1f:
ce:95:4f:5f:1a:27:e4:f6:ee:a2:ea:58:61:0e:36:
94:bb:88:5e:8a:53:3c:f5:c3:44:5f:be:40:aa:c4:
44:59:ff:ed:eb:00:a3:9f:60:89:2d:57:29:42:0f:
d6:0d:e9:d4:0f:4e:b1:71:b8:27:d4:e0:90:90:b0:
08:a7:b7:82:90:8f:16:da:2b:5c:53:df:e9:5d:55:
42:f4:11:3e:46:0e:8e:91:23:e1:2f:08:40:e8:8b:
35:92:27:c7:b1:c8:24:ef:58:4b:1a:09:c2:13:3c:
da:be:5d:b0:d5:c6:53:3e:d5:b6:51:71:85:04:2e:
52:e8:36:5a:ba:c3:58:a1:df:f3:fb:36:bb:f0:67:
e0:6b:51:3e:28:8f:b8:9c:5e:42:21:5d:5e:b6:13:
fd:d3:95:86:1f:96:51:c1:32:ef:1d:37:05:e3:47:
8f:60:24:54:60:5f:5c:be:7b:8e:33:bd:4e:56:a6:
6b:88:f5:de:4d:82:f9:54:59:ca:ba:c7:1a:a4:88:
f3:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:08:A9:2A:C2:B8:80:02:51:94:32:9A:97:47:39:07:02:41:B4:99
X509v3 Authority Key Identifier:
keyid:D5:09:62:03:5C:5E:95:10:13:CA:06:70:CA:56:9E:79:F8:D6:3C:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1QliA1xelRATygZwylaeefjWPBU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:16:9b:12:ee:a3:14:65:1a:1a:6d:70:9a:24:de:24:ad:b5:
eb:f7:1d:0b:ed:7d:67:4b:20:51:24:c1:c0:44:c3:8c:ae:7c:
a4:be:a4:c0:4a:fa:52:59:a9:12:5e:21:d2:69:b5:d3:ba:21:
64:4f:54:09:5a:2b:65:3c:3b:94:6c:7f:54:9e:10:9c:1d:f0:
01:db:8a:cd:79:83:79:95:ee:7d:b2:dc:e8:87:bb:6e:74:d1:
19:dc:28:43:78:d2:7f:a7:07:28:62:52:05:f8:ae:dc:82:82:
74:c7:7d:e6:7b:7e:8c:4d:58:87:b0:48:7d:8f:e2:94:1a:82:
e5:ec:fb:ab:4d:e2:17:89:85:62:6c:43:60:33:a7:df:22:52:
5c:bc:e6:fb:5a:21:fa:b0:f9:07:1a:ce:21:6a:81:29:99:65:
b0:eb:a6:f2:ab:3b:07:2d:9b:46:a9:1d:47:a5:6a:53:a7:e9:
73:58:55:6e:6d:7f:31:5d:74:d9:95:4e:b4:f2:7a:b6:fe:1e:
70:53:7f:d7:a4:0e:85:61:43:74:b6:18:3f:f8:44:20:3a:6d:
cb:e9:04:54:7d:c7:49:a9:b2:7e:4c:59:1c:d4:1f:d5:82:5a:
0d:20:e0:46:6d:cb:7e:f3:31:6e:c9:4a:6a:07:88:29:c5:c3:
ce:ad:19:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:12:23 2026 by rpki-client