Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
File: 1QliA1xelRATygZwylaeefjWPBU.mft (raw, json)
Hash identifier: GsQqaxydZLF5GxG5kChw4XoxqIJJg9ZVCBNk126cRqA=
Subject key identifier: E4:46:EA:74:33:CE:C5:BC:C4:7F:44:80:53:5B:53:57:C4:F4:1F:C1
Authority key identifier: D5:09:62:03:5C:5E:95:10:13:CA:06:70:CA:56:9E:79:F8:D6:3C:15
Certificate issuer: /CN=d50962035c5e951013ca0670ca569e79f8d63c15
Certificate serial: 019D38661D49D90CCC39B0923E0DED6B4E9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1QliA1xelRATygZwylaeefjWPBU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
Manifest number: 135B
Signing time: Sun 29 Mar 2026 07:01:49 +0000
Manifest this update: Sun 29 Mar 2026 07:01:49 +0000
Manifest next update: Mon 30 Mar 2026 07:01:49 +0000
Files and hashes: 1: 1QliA1xelRATygZwylaeefjWPBU.crl (hash: 9G3rsJN64MFN4t1olfRxae91Q+AtM3iLMCRFI6r6QYg=)
2: CfjqQqpPDnBhH-p0lAIrBIhNgY8.roa (hash: /5wTY3Au8nodbJrzfE4opPFUcgrAfS3BmM1XuaMh8Fg=)
3: SosxbjlFtLu-lsuh4-rF3Rw-rK0.roa (hash: c0C1OZyGN1Qv/oPDh5sJipEydB/aVrMAT59EdQMDAY4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
rsync://rpki.ripe.net/repository/DEFAULT/1QliA1xelRATygZwylaeefjWPBU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:1d:49:d9:0c:cc:39:b0:92:3e:0d:ed:6b:4e:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d50962035c5e951013ca0670ca569e79f8d63c15
Validity
Not Before: Mar 29 07:01:49 2026 GMT
Not After : Mar 30 07:01:49 2026 GMT
Subject: CN=e446ea7433cec5bcc47f4480535b5357c4f41fc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:54:56:90:f6:80:7f:9a:52:c1:6e:7e:58:39:
d2:fa:24:73:f5:e1:9b:85:3c:2f:b1:6e:e6:98:5e:
64:43:25:ee:8b:e7:50:ce:fb:3d:1b:dc:9c:1c:1f:
17:07:e7:85:09:bd:17:54:82:bd:b4:76:a6:6a:10:
f3:fe:44:3b:da:51:47:f2:2d:0f:d7:1f:cd:0a:a0:
a3:fc:66:f9:4b:e9:51:7b:98:e5:eb:ab:9f:0f:75:
ee:9b:b1:f1:f3:3f:19:a0:ee:f5:91:c0:bf:76:d0:
9b:00:c6:dd:44:cb:da:c8:d7:f9:91:7e:4c:2f:ab:
e0:90:51:03:70:90:0b:18:5e:e9:3b:63:de:5e:52:
19:06:79:2b:32:71:3c:8e:25:84:8f:97:af:92:40:
96:0e:21:82:d0:17:2f:3c:a1:cf:c0:1f:4f:3e:31:
23:4a:ab:0a:13:be:68:ca:0f:ff:67:86:64:1c:f5:
a8:90:65:9f:27:d7:6b:03:ec:b3:f5:32:33:80:d2:
b1:de:cd:f3:39:31:42:b8:a1:0f:3b:cf:8e:58:b1:
7b:40:33:01:a6:e9:cd:78:50:23:64:8d:84:85:fc:
c6:8c:a3:a1:a1:cd:89:d1:57:71:eb:83:94:2f:31:
9b:ce:7e:99:e5:f0:62:7f:55:45:75:0b:c9:1b:86:
81:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:46:EA:74:33:CE:C5:BC:C4:7F:44:80:53:5B:53:57:C4:F4:1F:C1
X509v3 Authority Key Identifier:
keyid:D5:09:62:03:5C:5E:95:10:13:CA:06:70:CA:56:9E:79:F8:D6:3C:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1QliA1xelRATygZwylaeefjWPBU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:55:ff:74:db:42:f2:9d:86:8e:3f:56:71:ba:0c:dd:40:a0:
b2:87:58:27:28:42:c9:a1:46:56:09:57:2f:a4:00:cf:f0:0a:
7d:7f:a3:c6:25:d2:a6:17:3e:07:74:95:5f:f6:13:5e:1f:df:
11:d5:2f:08:85:f4:2b:6a:b6:be:4b:8f:a5:d5:a9:50:7d:d4:
27:32:1b:7c:81:b3:dc:07:c8:62:bc:b5:b6:55:c7:b7:42:f3:
04:e7:41:96:c9:15:c9:13:61:b9:e5:fa:c0:ee:df:1d:b9:40:
62:36:28:25:df:58:bd:c6:52:62:f7:c2:ff:63:da:dd:b9:a2:
17:14:c5:54:eb:0d:31:3d:6f:42:a9:17:ca:a6:95:e6:99:33:
41:f8:7b:3e:a4:ef:b6:59:d9:fe:7b:f7:9d:92:9d:6a:91:fc:
11:3d:35:b9:81:c4:5a:09:65:51:37:08:eb:e3:06:3f:bf:82:
5a:d9:0e:3c:e2:24:3b:ad:4d:b9:f3:56:db:81:f0:46:73:40:
9b:45:2c:0e:29:53:a4:99:b6:ae:e1:50:83:be:85:df:46:85:
d3:a4:a7:15:b4:bf:08:3f:34:7c:ea:6a:21:b8:c1:6e:bd:ab:
fa:d2:5c:cc:fa:0b:71:0d:6f:bb:d7:34:93:f7:ac:0c:01:a0:
2d:25:9a:63
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04Zh1J2QzMObCSPg3ta06aMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1MDk2MjAzNWM1ZTk1MTAxM2NhMDY3MGNhNTY5ZTc5Zjhk
NjNjMTUwHhcNMjYwMzI5MDcwMTQ5WhcNMjYwMzMwMDcwMTQ5WjAzMTEwLwYDVQQD
EyhlNDQ2ZWE3NDMzY2VjNWJjYzQ3ZjQ0ODA1MzViNTM1N2M0ZjQxZmMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsFRWkPaAf5pSwW5+WDnS+iRz9eGb
hTwvsW7mmF5kQyXui+dQzvs9G9ycHB8XB+eFCb0XVIK9tHamahDz/kQ72lFH8i0P
1x/NCqCj/Gb5S+lRe5jl66ufD3Xum7Hx8z8ZoO71kcC/dtCbAMbdRMvayNf5kX5M
L6vgkFEDcJALGF7pO2PeXlIZBnkrMnE8jiWEj5evkkCWDiGC0BcvPKHPwB9PPjEj
SqsKE75oyg//Z4ZkHPWokGWfJ9drA+yz9TIzgNKx3s3zOTFCuKEPO8+OWLF7QDMB
punNeFAjZI2EhfzGjKOhoc2J0Vdx64OULzGbzn6Z5fBif1VFdQvJG4aBZwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFORG6nQzzsW8xH9EgFNbU1fE9B/BMB8GA1UdIwQY
MBaAFNUJYgNcXpUQE8oGcMpWnnn41jwVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMVFsaUExeGVsUkFUeWdad3lsYWVlZmpXUEJVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC9kNGU4ZTktMGQ0Ny00MTliLWIzZTIt
MDU0YTM2MzExNWY1LzEvMVFsaUExeGVsUkFUeWdad3lsYWVlZmpXUEJVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNC9kNGU4ZTktMGQ0Ny00MTliLWIzZTItMDU0YTM2MzExNWY1
LzEvMVFsaUExeGVsUkFUeWdad3lsYWVlZmpXUEJVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYVX/dNtC
8p2Gjj9WcboM3UCgsodYJyhCyaFGVglXL6QAz/AKfX+jxiXSphc+B3SVX/YTXh/f
EdUvCIX0K2q2vkuPpdWpUH3UJzIbfIGz3AfIYry1tlXHt0LzBOdBlskVyRNhueX6
wO7fHblAYjYoJd9YvcZSYvfC/2Pa3bmiFxTFVOsNMT1vQqkXyqaV5pkzQfh7PqTv
tlnZ/nv3nZKdapH8ET01uYHEWgllUTcI6+MGP7+CWtkOPOIkO61NufNW24HwRnNA
m0UsDilTpJm2ruFQg76F30aF06SnFbS/CD80fOpqIbjBbr2r+tJczPoLcQ1vu9c0
k/esDAGgLSWaYw==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:29:00 2026 by rpki-client