Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/d27826-3838-4c2b-af93-e86811120c19/1/Q16al_74NTuEg1I3YEaVLdoPq9g.mft
File: Q16al_74NTuEg1I3YEaVLdoPq9g.mft (raw, json)
Hash identifier: VhGqgjWPNkJocYCYmwPKiVjSEoZqYFMYztXqVIh1tEU=
Subject key identifier: 89:F3:BE:27:3E:CE:2C:CA:10:A9:B4:45:12:32:51:45:EE:F3:C5:14
Authority key identifier: 43:5E:9A:97:FE:F8:35:3B:84:83:52:37:60:46:95:2D:DA:0F:AB:D8
Certificate issuer: /CN=435e9a97fef8353b848352376046952dda0fabd8
Certificate serial: 019DDCC30BD5C8EDDD552953FFF05240C099
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q16al_74NTuEg1I3YEaVLdoPq9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/d27826-3838-4c2b-af93-e86811120c19/1/Q16al_74NTuEg1I3YEaVLdoPq9g.mft
Manifest number: 92
Signing time: Thu 30 Apr 2026 05:01:03 +0000
Manifest this update: Thu 30 Apr 2026 05:01:03 +0000
Manifest next update: Fri 01 May 2026 05:01:03 +0000
Files and hashes: 1: Q16al_74NTuEg1I3YEaVLdoPq9g.crl (hash: MyboAFahffzvj4gNMylS385MpX7TUyNyDVH6HBJVS1s=)
2: RduyMfyksJPRmTJ2VbOncr1ISHw.asa (hash: sPtI1ZAFxfNcfl8vI1MZDw4ggabOlaCSkTfrWmOzLms=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/d27826-3838-4c2b-af93-e86811120c19/1/Q16al_74NTuEg1I3YEaVLdoPq9g.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/d27826-3838-4c2b-af93-e86811120c19/1/Q16al_74NTuEg1I3YEaVLdoPq9g.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q16al_74NTuEg1I3YEaVLdoPq9g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 01 May 2026 05:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:dc:c3:0b:d5:c8:ed:dd:55:29:53:ff:f0:52:40:c0:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=435e9a97fef8353b848352376046952dda0fabd8
Validity
Not Before: Apr 30 05:01:03 2026 GMT
Not After : May 1 05:01:03 2026 GMT
Subject: CN=89f3be273ece2cca10a9b44512325145eef3c514
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:60:c3:32:53:4c:a0:0a:65:12:89:4d:86:26:
73:d7:92:d1:62:2f:f8:9b:90:93:50:1b:c9:cd:e1:
73:28:1f:f7:0a:84:40:49:80:2e:fa:40:bf:98:ec:
b9:13:ca:9c:f4:c3:06:97:fe:ea:8c:83:30:e5:18:
3d:5e:32:92:0d:d6:5b:01:74:c2:a7:89:8f:e8:3e:
63:7b:75:73:fc:d3:aa:91:70:55:8d:58:04:98:63:
02:25:0f:af:4f:8a:bd:2a:a6:cc:f8:ff:e6:1b:c3:
4e:97:3c:f4:3c:21:52:0d:3e:6b:68:ae:e0:44:82:
a8:2b:6c:48:de:e5:70:75:98:6f:9b:52:4f:6c:95:
14:2b:12:74:12:53:26:71:74:76:e3:20:07:66:4b:
dc:cc:21:40:55:17:d8:33:8d:20:69:12:c9:11:7c:
34:0a:e2:9f:ef:b7:8d:f4:e5:ee:08:45:d4:86:81:
87:83:6d:3a:66:9e:c3:54:54:10:7d:87:21:5e:44:
d3:b3:56:d8:01:1c:c5:3d:75:b2:f1:22:cd:0d:36:
50:15:a7:30:9e:e3:51:c0:6e:07:a8:d5:6e:7e:ce:
7f:a7:fa:90:73:b2:fc:8c:03:31:08:65:d1:51:f4:
95:2a:3d:83:16:10:87:17:7b:ad:59:a3:23:29:48:
bc:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:F3:BE:27:3E:CE:2C:CA:10:A9:B4:45:12:32:51:45:EE:F3:C5:14
X509v3 Authority Key Identifier:
keyid:43:5E:9A:97:FE:F8:35:3B:84:83:52:37:60:46:95:2D:DA:0F:AB:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q16al_74NTuEg1I3YEaVLdoPq9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/d27826-3838-4c2b-af93-e86811120c19/1/Q16al_74NTuEg1I3YEaVLdoPq9g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/d27826-3838-4c2b-af93-e86811120c19/1/Q16al_74NTuEg1I3YEaVLdoPq9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:20:5c:5a:d7:43:bd:75:02:88:3e:aa:d7:30:67:4a:93:6a:
c6:81:4a:c7:d1:09:c5:07:4c:7d:0b:c3:ec:07:61:99:cf:b5:
43:4e:7d:5e:da:83:16:af:55:7e:eb:30:b1:b8:c5:4e:19:6b:
e0:dd:30:06:c7:a4:18:c2:90:ba:84:a4:bb:cf:e9:02:a7:68:
3d:93:b3:87:6f:82:71:4a:9f:18:08:91:63:d9:e1:6f:03:90:
ce:0e:89:15:d9:b3:e8:40:44:a0:40:b8:b1:82:2d:c9:b4:57:
44:cc:40:a0:fb:bf:45:be:65:d7:cd:83:a6:24:1e:03:1e:79:
83:73:4e:4f:bd:bc:dc:6a:08:71:66:89:ae:ae:51:09:47:93:
65:33:23:ce:e3:cd:54:c7:d1:76:4d:15:30:57:2f:f9:14:79:
2f:45:9c:ba:f2:45:d3:4b:76:a4:91:3c:61:ef:48:aa:e1:89:
56:c5:2c:b9:53:1f:bf:9d:de:64:e5:09:cf:ca:42:ea:d7:0e:
cc:9e:71:cb:0d:ab:4d:7c:2d:d0:f7:9b:ef:4d:27:8b:0b:f4:
69:1e:8a:ad:bf:d8:2b:fa:b3:ce:cd:9a:d1:07:20:fd:75:99:
ad:e0:e4:f1:9e:b8:19:66:ab:fc:d5:7c:4d:08:08:09:bb:dc:
d2:a5:9c:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 30 12:55:45 2026 by rpki-client