Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.mft
File: QJLEfbiiGTEVRgXVdsO3NB0GtLQ.mft (raw, json)
Hash identifier: 7Iy5PFP5w3pDYM8sBjt1Cyprl6X/dKZ32CAfCa+BCHU=
Subject key identifier: 84:4E:08:7A:2F:C4:57:F3:EF:D5:53:AB:1F:D0:4C:5D:59:B1:88:12
Authority key identifier: 40:92:C4:7D:B8:A2:19:31:15:46:05:D5:76:C3:B7:34:1D:06:B4:B4
Certificate issuer: /CN=4092c47db8a21931154605d576c3b7341d06b4b4
Certificate serial: 019DA942F954CAF8B3BA87F57886B7C6D41C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.mft
Manifest number: 1653
Signing time: Mon 20 Apr 2026 05:00:31 +0000
Manifest this update: Mon 20 Apr 2026 05:00:31 +0000
Manifest next update: Tue 21 Apr 2026 05:00:31 +0000
Files and hashes: 1: 4lRlhSc9Jzpgo2qyOZgRPmeBS8E.roa (hash: fe25PIHE4R92mruy7bWhmhbyquYQv4J/2uT5rEcGMtI=)
2: QJLEfbiiGTEVRgXVdsO3NB0GtLQ.crl (hash: GYuaPBz6evyYxS18/jjpRMnEERVJ9DlxQepWnX+XKUk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Apr 2026 05:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a9:42:f9:54:ca:f8:b3:ba:87:f5:78:86:b7:c6:d4:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4092c47db8a21931154605d576c3b7341d06b4b4
Validity
Not Before: Apr 20 05:00:31 2026 GMT
Not After : Apr 21 05:00:31 2026 GMT
Subject: CN=844e087a2fc457f3efd553ab1fd04c5d59b18812
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:9a:9d:b5:88:af:d3:4c:74:3f:b3:fb:48:00:
47:3a:24:a0:ab:37:c5:0d:9a:6d:af:a8:55:43:14:
d3:f5:71:72:38:f2:b7:4e:41:f6:e3:0e:2d:b7:a5:
46:f6:f6:97:7b:a4:63:ea:2c:9c:1f:42:c0:ab:81:
58:24:e2:62:72:38:d2:87:79:08:a3:6d:df:e1:37:
2d:94:27:d9:56:bc:08:74:f8:26:40:f3:ed:1d:7d:
60:02:32:22:2a:ca:de:59:4c:81:ef:9e:10:af:d3:
ff:64:a7:33:6c:4c:a2:2d:bd:f9:78:cb:6b:c4:6f:
f3:b2:1c:da:c9:cf:fa:a1:cd:d2:a9:5e:25:93:c2:
b3:1d:a0:de:28:dd:7d:f7:ac:06:25:4d:3b:2e:63:
c4:28:b7:73:de:0e:5c:b6:58:c4:d5:61:a3:1f:79:
ae:2f:71:5c:71:c4:e1:a9:89:a8:84:e3:e7:26:99:
c0:4e:e3:24:f4:92:9a:46:c4:d7:d8:33:ca:4c:dd:
3c:b0:99:a2:b7:9f:50:1d:fe:f3:3c:9c:4e:2b:35:
ad:44:1e:6f:92:41:99:3b:89:b0:44:b4:36:bb:8a:
3c:86:95:d8:a0:28:08:ab:f1:5a:30:68:b6:1a:13:
44:3b:0b:bc:9f:1f:47:68:ed:76:d4:92:31:ed:d8:
66:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:4E:08:7A:2F:C4:57:F3:EF:D5:53:AB:1F:D0:4C:5D:59:B1:88:12
X509v3 Authority Key Identifier:
keyid:40:92:C4:7D:B8:A2:19:31:15:46:05:D5:76:C3:B7:34:1D:06:B4:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:b3:7f:29:85:b8:59:89:ee:43:72:91:f3:66:aa:47:ea:3d:
50:9c:80:27:a2:07:91:1f:cc:85:3a:44:c0:88:c7:b2:d2:1c:
86:c9:7a:67:83:59:0f:d0:b7:72:8d:5b:a9:5f:60:53:4c:ac:
3c:a1:96:f3:16:e2:5c:1a:bc:28:c0:9a:79:2b:65:1b:57:ed:
61:63:fa:8e:bb:e2:bc:1c:4a:af:3d:15:6f:8f:00:ff:6b:06:
d8:cd:07:18:a3:d6:d1:14:d2:60:d9:4f:0d:20:38:19:80:ba:
d3:a2:4a:2e:8b:d0:85:39:66:54:bd:9d:be:e9:ce:f3:21:9f:
7d:e0:a6:34:f1:e3:9a:d5:06:6d:4a:92:ba:f9:90:12:b0:fa:
19:cf:36:df:17:58:71:f5:fd:2e:74:f1:2a:e0:23:de:7a:7e:
20:8f:6e:ea:c2:35:b5:a5:ce:c0:ca:a1:10:3d:79:44:06:7e:
fa:c2:89:40:bd:09:78:93:11:8a:37:98:e0:ac:62:f1:8a:5a:
58:e9:2d:64:22:4b:26:d3:40:b1:6b:6d:ea:fb:a3:72:6b:45:
28:b0:d7:47:2f:23:91:51:26:e4:f8:e2:97:7f:ef:cd:9e:ac:
f7:79:52:b1:ee:37:52:5f:99:82:55:dc:13:d1:a9:f1:dd:54:
7c:b5:88:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 20 08:41:04 2026 by rpki-client