Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/d27826-3838-4c2b-af93-e86811120c19/1/Q16al_74NTuEg1I3YEaVLdoPq9g.mft
File: Q16al_74NTuEg1I3YEaVLdoPq9g.mft (raw, json)
Hash identifier: VyRZcGocY6DShTQJ/X7ICclODYvS8jVvFd6ZqaN+Mos=
Subject key identifier: 3D:24:2C:53:C6:F9:FE:89:C9:C5:E8:EA:1D:F5:B6:0F:6F:68:84:CD
Authority key identifier: 43:5E:9A:97:FE:F8:35:3B:84:83:52:37:60:46:95:2D:DA:0F:AB:D8
Certificate issuer: /CN=435e9a97fef8353b848352376046952dda0fabd8
Certificate serial: 019CF504FB565D0B2C85CA51E34484684A49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q16al_74NTuEg1I3YEaVLdoPq9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/d27826-3838-4c2b-af93-e86811120c19/1/Q16al_74NTuEg1I3YEaVLdoPq9g.mft
Manifest number: 1A
Signing time: Mon 16 Mar 2026 05:01:10 +0000
Manifest this update: Mon 16 Mar 2026 05:01:10 +0000
Manifest next update: Tue 17 Mar 2026 05:01:10 +0000
Files and hashes: 1: Q16al_74NTuEg1I3YEaVLdoPq9g.crl (hash: 9ddPvAbROS7AHhj8RjYEyyeUoPjIR68p87IPho4d/Vg=)
2: RduyMfyksJPRmTJ2VbOncr1ISHw.asa (hash: sPtI1ZAFxfNcfl8vI1MZDw4ggabOlaCSkTfrWmOzLms=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/d27826-3838-4c2b-af93-e86811120c19/1/Q16al_74NTuEg1I3YEaVLdoPq9g.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/d27826-3838-4c2b-af93-e86811120c19/1/Q16al_74NTuEg1I3YEaVLdoPq9g.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q16al_74NTuEg1I3YEaVLdoPq9g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Mar 2026 00:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:f5:04:fb:56:5d:0b:2c:85:ca:51:e3:44:84:68:4a:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=435e9a97fef8353b848352376046952dda0fabd8
Validity
Not Before: Mar 16 05:01:10 2026 GMT
Not After : Mar 17 05:01:10 2026 GMT
Subject: CN=3d242c53c6f9fe89c9c5e8ea1df5b60f6f6884cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:51:a9:e6:fb:22:3a:62:db:d4:7b:87:a3:ab:
dc:f9:bb:27:f6:47:7f:0c:e5:0d:65:78:c9:5a:b9:
00:6f:84:f1:1a:1e:bf:ef:d9:d3:12:5b:c7:97:a7:
5e:2e:95:d0:42:6d:e3:82:30:ba:ac:43:4b:ab:48:
5a:3e:53:ea:6e:70:22:96:a7:08:27:6f:a4:75:06:
11:9e:cd:c2:0c:0b:79:2f:43:c2:2a:cc:82:38:a7:
59:3f:02:d1:89:03:93:9b:1c:10:d2:e2:f4:c1:e6:
f3:22:30:27:8e:43:1a:2d:cd:6f:11:91:b4:9d:23:
03:c0:2f:f6:59:91:1d:fd:44:3a:f2:5c:8a:18:cf:
b3:ed:1c:f0:99:01:03:bc:01:e5:d8:99:b7:f8:5e:
1e:49:71:8a:a3:38:ed:f7:43:14:a9:9f:ca:e3:86:
fb:41:0c:d0:ba:2e:39:12:c1:92:dd:2a:69:e9:bb:
ea:26:72:98:1e:96:da:77:f0:4a:e7:e8:0b:13:c9:
2e:4f:3b:07:d8:01:df:c1:e3:4f:c7:4b:6f:da:07:
ad:f4:8e:1a:a5:c6:67:3f:0d:14:87:5a:40:10:e4:
4c:76:4f:48:29:18:5a:8e:68:3f:05:7b:bc:23:49:
b6:d9:20:c5:f8:0b:6a:84:97:9c:8c:e2:bf:6e:21:
8c:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:24:2C:53:C6:F9:FE:89:C9:C5:E8:EA:1D:F5:B6:0F:6F:68:84:CD
X509v3 Authority Key Identifier:
keyid:43:5E:9A:97:FE:F8:35:3B:84:83:52:37:60:46:95:2D:DA:0F:AB:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q16al_74NTuEg1I3YEaVLdoPq9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/d27826-3838-4c2b-af93-e86811120c19/1/Q16al_74NTuEg1I3YEaVLdoPq9g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/d27826-3838-4c2b-af93-e86811120c19/1/Q16al_74NTuEg1I3YEaVLdoPq9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:36:ea:93:e7:66:36:70:3b:1d:8d:aa:87:08:d8:79:50:21:
40:6f:a2:71:6e:0a:ce:4c:8d:8b:29:aa:67:07:35:0d:c6:84:
a8:8c:bd:cd:60:0c:20:0b:7d:19:5a:8d:59:03:0d:0f:a9:52:
63:83:b0:ee:c9:70:df:c7:48:3a:10:b0:f2:b0:60:24:2d:76:
3c:42:08:58:58:1c:2b:1a:70:0f:91:fe:b6:c1:4b:ef:3c:0b:
82:f9:bb:bc:ff:80:a7:00:47:e0:ab:eb:63:5d:f4:04:4a:ff:
83:a0:90:59:3e:37:c4:ae:01:51:6c:9b:b3:6a:89:92:1d:ae:
42:7b:40:04:ed:67:05:58:77:cb:ae:1f:1f:a9:77:bc:15:b0:
00:f4:7b:85:82:3b:1d:de:89:91:ab:bc:c3:6e:3e:11:29:73:
d0:e5:79:30:37:81:0e:8f:1d:b1:1c:e9:9f:e3:c6:22:a3:24:
f5:b1:f7:5c:90:26:43:c7:e5:19:e4:87:d6:68:dd:12:12:a2:
91:ed:65:13:8b:f8:6e:6b:94:c8:8d:58:fc:c9:ab:68:d2:bb:
c2:f5:5e:2d:61:6a:a3:c1:8b:b7:ed:ef:91:72:40:df:7d:7d:
9b:c3:10:f0:37:b1:94:47:81:d4:30:e5:03:49:b6:bf:20:2e:
5c:f5:4c:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 16 07:59:05 2026 by rpki-client