Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/02fde7-d326-43de-8520-6d71fe13d61d/1/1QibzgjFXapXtPOjyQcPs5GFPM8.mft
File: 1QibzgjFXapXtPOjyQcPs5GFPM8.mft (raw, json)
Hash identifier: KV8d0vp1CumDQwMT9qDODr2s3cdrf7CBP4ZR2chHIpE=
Subject key identifier: 10:0A:33:E3:73:CB:94:97:3E:37:7F:33:8B:89:58:21:61:C1:26:98
Authority key identifier: D5:08:9B:CE:08:C5:5D:AA:57:B4:F3:A3:C9:07:0F:B3:91:85:3C:CF
Certificate issuer: /CN=d5089bce08c55daa57b4f3a3c9070fb391853ccf
Certificate serial: 019E303BEC1204562D7F4BA8763920A4924F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1QibzgjFXapXtPOjyQcPs5GFPM8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/02fde7-d326-43de-8520-6d71fe13d61d/1/1QibzgjFXapXtPOjyQcPs5GFPM8.mft
Manifest number: 0DE4
Signing time: Sat 16 May 2026 10:01:33 +0000
Manifest this update: Sat 16 May 2026 10:01:33 +0000
Manifest next update: Sun 17 May 2026 10:01:33 +0000
Files and hashes: 1: 1QibzgjFXapXtPOjyQcPs5GFPM8.crl (hash: CPcix/KX74q6r63Se+xmny/eWS2/kBASLRUHUXfeiQI=)
2: PnfxL11O3EjH9h0EH3Rg7luqnAM.roa (hash: i4lQXSpeif5iY7JiCTfcDMb/7WzWvaV3TLIqruxq13Q=)
3: x6wY1hh1UMR03dRTbKZ1rvUylzo.roa (hash: jSu5cUSFLGmQIwJTQdJ25XCFgFKf8LZSMzXzmSmg5w0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/02fde7-d326-43de-8520-6d71fe13d61d/1/1QibzgjFXapXtPOjyQcPs5GFPM8.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/02fde7-d326-43de-8520-6d71fe13d61d/1/1QibzgjFXapXtPOjyQcPs5GFPM8.mft
rsync://rpki.ripe.net/repository/DEFAULT/1QibzgjFXapXtPOjyQcPs5GFPM8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 10:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:3b:ec:12:04:56:2d:7f:4b:a8:76:39:20:a4:92:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5089bce08c55daa57b4f3a3c9070fb391853ccf
Validity
Not Before: May 16 10:01:33 2026 GMT
Not After : May 17 10:01:33 2026 GMT
Subject: CN=100a33e373cb94973e377f338b89582161c12698
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:0d:0d:fd:9d:b7:77:66:4d:40:e2:60:73:3b:
c1:2a:ff:28:95:fb:d8:fc:57:d7:7f:82:1d:1b:77:
fc:a6:0f:56:6f:24:4e:b5:85:e3:56:e0:7b:a7:3d:
a4:85:ce:e8:dc:3e:6b:a5:ff:52:cb:08:ac:f8:62:
1f:6f:ef:cd:41:3a:1e:00:42:0b:29:5c:a0:5c:c9:
5f:a7:a0:6a:09:bc:a7:de:d8:ef:80:5c:01:7a:18:
e2:00:d0:f1:e8:0b:a4:35:6a:9c:4d:ff:7f:8f:ff:
f1:7d:00:0b:da:aa:9b:69:81:0c:58:8c:66:06:8c:
12:ab:4b:c5:97:83:82:af:e6:7e:fa:31:36:06:e4:
79:6f:8e:70:44:6d:a3:81:a9:dd:a1:c8:e4:52:78:
4d:9e:f8:ec:5d:95:18:76:c9:01:3e:71:b6:be:de:
89:a4:45:b6:3e:27:ab:18:6c:66:c7:38:3a:65:dd:
62:e3:1c:2f:f4:e6:30:36:68:54:1f:34:17:22:dc:
75:6c:52:15:29:a0:7d:3a:0f:32:cf:30:9c:05:1d:
6e:02:a9:e5:90:0e:e4:13:dd:e6:36:03:60:7d:ff:
22:17:dd:d9:41:a2:3d:24:c8:b6:22:1b:20:bc:28:
7d:5d:07:af:9a:71:ac:10:79:4e:15:b2:1b:50:52:
08:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:0A:33:E3:73:CB:94:97:3E:37:7F:33:8B:89:58:21:61:C1:26:98
X509v3 Authority Key Identifier:
keyid:D5:08:9B:CE:08:C5:5D:AA:57:B4:F3:A3:C9:07:0F:B3:91:85:3C:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1QibzgjFXapXtPOjyQcPs5GFPM8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/02fde7-d326-43de-8520-6d71fe13d61d/1/1QibzgjFXapXtPOjyQcPs5GFPM8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/02fde7-d326-43de-8520-6d71fe13d61d/1/1QibzgjFXapXtPOjyQcPs5GFPM8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:ae:15:a5:52:04:36:71:25:2b:b2:25:46:ce:84:df:41:78:
5b:c0:62:7d:b5:9f:fc:d8:27:04:15:c4:d9:1c:f2:3b:0a:b2:
b2:31:9f:2f:18:a7:e1:73:53:73:cb:3c:34:d0:79:fb:2f:17:
c7:86:d1:83:40:a8:71:98:19:b3:87:13:b5:87:32:0d:3b:14:
02:a9:d0:1b:59:52:73:76:02:25:4a:c1:a4:d2:d7:bf:b9:f9:
9b:8d:3b:eb:82:30:5e:f9:db:7f:e3:ae:d8:92:f3:81:7e:e5:
b2:0d:a6:3e:ad:c9:8f:63:1a:d7:75:39:3b:70:a4:2f:93:9d:
fb:cd:2a:8d:a4:57:7f:c1:55:41:46:29:11:5e:31:a5:0e:d4:
fe:67:7d:6a:c7:58:42:19:74:c1:c0:0d:10:81:36:87:69:b6:
1f:ba:ab:52:6b:83:12:f9:a1:e0:9d:af:9a:84:1a:35:c6:97:
d5:ab:31:ef:7a:c5:89:44:c1:fa:1a:2a:09:e5:22:cb:2a:42:
3a:de:51:bb:ab:35:cd:39:c6:19:58:3a:39:65:c9:2a:6b:e3:
6b:9a:a3:03:31:a0:9f:01:ad:84:b0:18:b0:40:67:c3:96:0c:
d7:6b:e5:10:6f:cd:b9:95:09:63:b2:d5:28:3e:2f:92:ac:2b:
0a:0b:d8:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:55:57 2026 by rpki-client