Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft
File: QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft (raw, json)
Hash identifier: 4iZbw93ge1Xx4V3+rRHm69LHuXw8UEVCgY5vvO3jlyQ=
Subject key identifier: 2A:A0:79:1E:3E:E3:9D:E4:32:2A:DD:38:EE:95:A6:BB:5A:1D:84:53
Authority key identifier: 40:E3:95:3C:5C:B4:52:F1:59:F8:E1:50:5F:C7:02:E8:83:65:7E:72
Certificate issuer: /CN=40e3953c5cb452f159f8e1505fc702e883657e72
Certificate serial: 019EBFFF2DFC9019624DF7C533A4617FE84A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QOOVPFy0UvFZ-OFQX8cC6INlfnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft
Manifest number: 1961
Signing time: Sat 13 Jun 2026 08:00:32 +0000
Manifest this update: Sat 13 Jun 2026 08:00:32 +0000
Manifest next update: Sun 14 Jun 2026 08:00:32 +0000
Files and hashes: 1: 2pkPSs8gVn643UGplZoHfvgJ4jU.roa (hash: X1hpztinQvCh1GRCCDgW40Mdj2XAHD7UuWOgieEm9aw=)
2: 5_3H5oUB0Z5mLwXi_W_cQfYMDuk.roa (hash: NEc7QIS1126HxAUD9gRMIkc83/j75nLK/QAT5XjvVaU=)
3: JzhyAViO7IK7RlS2hXx7L9AIs80.roa (hash: DNuJU3HK3yevWo0xWtq0yRqUiOXXwFV8rL1Um11rKUA=)
4: QOOVPFy0UvFZ-OFQX8cC6INlfnI.crl (hash: NMo06idZTO2ceZ43jOCal86iGiZSJFhq0n6gRKf5Sms=)
5: zdUU6xh-U_UhQuIpzwDv3G1TgNc.roa (hash: Xcmlw4uYbZey4RR44rfO/TAhXzqgGs0gxnMsef5qoaI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QOOVPFy0UvFZ-OFQX8cC6INlfnI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:ff:2d:fc:90:19:62:4d:f7:c5:33:a4:61:7f:e8:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40e3953c5cb452f159f8e1505fc702e883657e72
Validity
Not Before: Jun 13 08:00:32 2026 GMT
Not After : Jun 14 08:00:32 2026 GMT
Subject: CN=2aa0791e3ee39de4322add38ee95a6bb5a1d8453
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d2:30:c5:ec:ae:d5:d6:c8:c3:5f:f0:7b:11:
98:e9:46:13:6c:73:c6:75:ad:f2:2c:91:03:a4:5b:
5c:fd:56:7f:8b:53:7a:83:c7:46:05:42:01:44:27:
d6:e5:56:67:23:76:b6:01:e0:8c:43:fc:66:3b:68:
20:5a:83:5a:d8:e5:03:c1:eb:b4:48:70:43:79:b3:
85:03:8e:ce:93:1d:ca:7f:2f:69:e3:84:f3:b8:81:
8e:f1:86:21:7e:3b:8f:2c:66:9d:3f:6a:db:ee:c9:
24:52:4e:71:37:b9:dc:3f:dd:40:da:a0:4d:d3:0f:
f4:08:59:81:cd:71:84:c0:3b:6c:71:97:22:98:0e:
3f:ba:68:9d:38:aa:96:57:26:1d:63:e7:19:a6:a5:
9c:75:00:91:fc:59:e4:ef:e5:de:b0:c6:3e:15:69:
bc:ca:d4:71:c2:4b:9e:1f:eb:cc:0a:78:bd:8c:3a:
9d:46:d8:34:f7:86:43:0f:23:d0:b9:44:95:42:5c:
58:f6:7d:2e:64:e1:99:0a:e6:92:34:37:f5:4f:40:
09:dd:4e:80:26:8e:14:f6:05:c2:50:43:89:53:1e:
12:0b:75:40:9a:66:04:89:73:39:bf:61:87:74:fd:
1e:92:42:3b:90:83:62:d0:aa:51:d5:a0:0f:d8:e3:
d8:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:A0:79:1E:3E:E3:9D:E4:32:2A:DD:38:EE:95:A6:BB:5A:1D:84:53
X509v3 Authority Key Identifier:
keyid:40:E3:95:3C:5C:B4:52:F1:59:F8:E1:50:5F:C7:02:E8:83:65:7E:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QOOVPFy0UvFZ-OFQX8cC6INlfnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:b5:bb:0c:50:0c:64:91:1f:dd:4a:1e:b7:2b:cf:4e:0f:ef:
cb:f4:a5:b0:1a:26:dd:b3:74:1f:7b:78:cc:13:7d:b9:31:c7:
5f:67:a9:01:87:45:a2:54:d3:44:e7:2c:73:5f:b1:fe:87:59:
be:4f:9b:c0:ad:69:44:8e:05:fa:92:e6:5f:19:ac:a3:20:9d:
6b:10:70:c3:78:15:f2:93:c3:18:04:41:28:c8:0b:f1:a5:79:
bc:3e:40:db:68:7d:c2:67:d8:aa:fd:e8:df:18:cc:c0:87:65:
be:1f:dc:9b:fc:9a:18:fd:f3:4f:11:15:48:07:e7:ae:99:df:
6c:c9:e2:cf:d7:a1:ed:d2:f6:7b:cd:48:a2:dd:7d:88:50:bd:
e1:58:d4:99:6a:e4:77:d3:44:c6:2f:00:30:ad:c2:4a:11:a5:
b2:34:74:19:c5:9b:d9:0b:4b:22:47:f9:6d:e0:89:f6:b7:6e:
fe:85:d9:d0:bd:99:c1:22:8a:d2:17:8d:ed:86:71:5c:63:a5:
b4:3b:e8:89:42:33:32:f3:09:2b:cf:ac:c4:d6:69:99:18:31:
5d:75:1d:d0:39:39:64:bd:ba:fc:05:be:0c:ed:88:e7:5d:8e:
9b:44:79:48:06:cb:8c:30:8b:50:3c:b4:88:db:d3:71:4c:2a:
3c:56:b8:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 12:53:21 2026 by rpki-client