Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.mft
File: QM_TpJvHHnSg0L9-NGyomylZehI.mft (raw, json)
Hash identifier: nMi3iaH5xPAFVOAk2uPKJyi3mggaHCNDx8EvK4C7TFY=
Subject key identifier: 74:AF:4A:F5:78:87:2A:1D:38:A5:50:26:9C:20:42:C2:FE:28:AB:BD
Authority key identifier: 40:CF:D3:A4:9B:C7:1E:74:A0:D0:BF:7E:34:6C:A8:9B:29:59:7A:12
Certificate issuer: /CN=40cfd3a49bc71e74a0d0bf7e346ca89b29597a12
Certificate serial: 019DCC74EEF7590B6B7B639E649710DA0A61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QM_TpJvHHnSg0L9-NGyomylZehI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.mft
Manifest number: 18DC
Signing time: Mon 27 Apr 2026 01:01:48 +0000
Manifest this update: Mon 27 Apr 2026 01:01:48 +0000
Manifest next update: Tue 28 Apr 2026 01:01:48 +0000
Files and hashes: 1: QM_TpJvHHnSg0L9-NGyomylZehI.crl (hash: eekuwaB72wYV2JxCWtX9WDkqWd1UXfzAlsWoysqy2VQ=)
2: wt3Ui80OQ2RXah5MDzF8MWqly2Q.roa (hash: J67sJRmcaTP47jMbuSDSqG6+LX3lK8JypZ67sDFFc/U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QM_TpJvHHnSg0L9-NGyomylZehI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 01:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cc:74:ee:f7:59:0b:6b:7b:63:9e:64:97:10:da:0a:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40cfd3a49bc71e74a0d0bf7e346ca89b29597a12
Validity
Not Before: Apr 27 01:01:48 2026 GMT
Not After : Apr 28 01:01:48 2026 GMT
Subject: CN=74af4af578872a1d38a550269c2042c2fe28abbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:11:91:18:cb:ea:4c:97:df:0e:92:74:90:29:
2c:07:ba:30:be:68:e4:ca:58:3e:cc:7c:54:e1:4d:
b6:64:08:bc:d9:5d:d4:c4:a1:b8:29:ee:82:b0:9b:
24:64:4f:7f:aa:f2:d3:0e:16:e8:1d:0c:a8:7e:2d:
cd:13:f9:e3:7e:b8:c7:51:3d:19:31:fa:68:0a:ac:
2b:15:f4:09:25:4d:00:ee:65:be:a3:fe:4a:cb:bf:
86:2d:4e:b9:1a:93:08:ba:5e:4f:12:89:93:c3:b4:
7d:7f:24:78:a4:fc:ce:36:62:aa:6a:1b:20:67:d0:
7f:66:4c:81:4b:75:38:1b:7e:a8:ac:5f:0a:77:59:
15:b3:76:32:b6:34:d2:3c:07:b6:3e:d8:3d:dc:49:
5c:08:24:42:ae:0f:b4:b7:ae:23:a2:8f:7a:52:d3:
be:dc:2f:35:e8:a0:8b:0e:64:73:d8:a5:11:0d:11:
9b:7b:17:dd:d6:f5:34:ab:25:be:81:a0:37:93:b4:
ce:f0:43:56:d7:1f:f5:d1:c2:9e:1c:4a:3a:f1:42:
8e:c1:aa:ef:67:96:56:d8:24:53:15:56:7b:6e:15:
c9:8a:54:0a:09:58:06:2a:7b:e0:50:49:6b:12:76:
f1:9f:ae:d5:c2:83:ad:20:92:c3:7e:ca:9b:f6:c9:
8b:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:AF:4A:F5:78:87:2A:1D:38:A5:50:26:9C:20:42:C2:FE:28:AB:BD
X509v3 Authority Key Identifier:
keyid:40:CF:D3:A4:9B:C7:1E:74:A0:D0:BF:7E:34:6C:A8:9B:29:59:7A:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QM_TpJvHHnSg0L9-NGyomylZehI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c5:f9:4d:0c:13:7c:75:70:64:8a:de:88:b1:31:ac:42:f9:07:
b5:0b:78:5f:14:31:6a:c3:48:0e:99:9f:63:f4:e7:fb:c8:6c:
37:80:22:7e:c2:6f:25:0b:86:0f:6b:13:c4:d7:6c:c1:67:2d:
49:38:5b:13:f8:5c:d6:4e:b2:44:c6:04:1c:e7:8c:a4:1b:1d:
8c:ee:cc:c6:cb:eb:c5:d3:bb:52:12:80:97:e1:09:5a:81:5e:
4d:a7:65:1b:be:6a:ea:9f:7d:b5:c4:75:ab:9d:2d:4b:72:77:
c0:14:b1:82:7b:55:33:39:e5:d7:1a:1f:9b:f7:e2:ff:5c:fd:
2c:2d:4a:ee:0c:9e:1d:9c:8d:ad:06:d9:80:b6:b7:a2:50:b3:
7e:44:06:55:da:04:47:d8:67:1a:a0:57:06:ae:66:46:22:2a:
6d:46:de:f2:32:df:48:ca:9e:43:0e:6b:60:f1:2e:f5:99:be:
6a:98:05:ff:f6:7d:d6:db:9c:83:e9:ca:10:cd:a2:c3:e4:0e:
31:b9:c2:8a:90:38:0f:2e:65:19:d0:07:37:58:a9:3a:95:d5:
a5:c4:6c:5f:3a:ad:09:1b:d6:a5:43:26:03:06:bc:c2:b5:92:
b4:f9:06:e3:45:76:11:c4:eb:9c:2c:5b:2e:2d:f6:63:76:d5:
b6:5a:cc:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 11:20:12 2026 by rpki-client