Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/8a7569-ed74-4a92-8627-985ed15c9aeb/1/QHxwg0YOGkxyxLxCdjE9OoWUSoc.mft
File: QHxwg0YOGkxyxLxCdjE9OoWUSoc.mft (raw, json)
Hash identifier: hZWo1KCSkZjvNyHLGvzikAigPF2hv3FFjMFHVZ3DLhY=
Subject key identifier: 2C:63:80:6C:12:19:3A:6F:40:96:6D:50:D2:3D:F5:90:CC:3D:A9:37
Authority key identifier: 40:7C:70:83:46:0E:1A:4C:72:C4:BC:42:76:31:3D:3A:85:94:4A:87
Certificate issuer: /CN=407c7083460e1a4c72c4bc4276313d3a85944a87
Certificate serial: 019EC1ED91DBA88C74905884702C3344BDE3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QHxwg0YOGkxyxLxCdjE9OoWUSoc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/8a7569-ed74-4a92-8627-985ed15c9aeb/1/QHxwg0YOGkxyxLxCdjE9OoWUSoc.mft
Manifest number: 10ED
Signing time: Sat 13 Jun 2026 17:00:32 +0000
Manifest this update: Sat 13 Jun 2026 17:00:32 +0000
Manifest next update: Sun 14 Jun 2026 17:00:32 +0000
Files and hashes: 1: 9l35f4vtEnwERy91rSIzMefrFvk.roa (hash: o4NZxjI3TjEffFvPCpSdso698d9KA9gU7jcbU25ovX4=)
2: QHxwg0YOGkxyxLxCdjE9OoWUSoc.crl (hash: 9uOmxQvH0xPi2M+NnfSobOkSL4RdGG9p/Y9wQeufQ3A=)
3: _DMWomZ-zw9r2w8AsNSptLxDmfA.roa (hash: 5DRqqMVL9GM/PG8SfYwPRoOqjNYLEPPU5+fO2uX+eWE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/8a7569-ed74-4a92-8627-985ed15c9aeb/1/QHxwg0YOGkxyxLxCdjE9OoWUSoc.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/8a7569-ed74-4a92-8627-985ed15c9aeb/1/QHxwg0YOGkxyxLxCdjE9OoWUSoc.mft
rsync://rpki.ripe.net/repository/DEFAULT/QHxwg0YOGkxyxLxCdjE9OoWUSoc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:ed:91:db:a8:8c:74:90:58:84:70:2c:33:44:bd:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=407c7083460e1a4c72c4bc4276313d3a85944a87
Validity
Not Before: Jun 13 17:00:32 2026 GMT
Not After : Jun 14 17:00:32 2026 GMT
Subject: CN=2c63806c12193a6f40966d50d23df590cc3da937
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:68:a3:9c:d0:17:a7:51:6e:38:a2:cc:cd:24:
df:9b:dd:f0:a9:8f:70:25:f7:59:fb:34:6d:67:1e:
8f:a3:d6:56:67:6e:6a:54:5d:10:e7:7d:ab:8e:d5:
fa:ad:6f:9f:8a:c8:07:c8:fc:d0:03:ca:2f:b4:c1:
89:90:b4:a2:6b:aa:f5:76:fd:2f:70:06:8a:4e:a6:
bb:8e:3e:38:c7:ad:62:9d:f8:ec:99:2d:c1:0d:fc:
26:70:a6:d7:13:95:50:d4:0e:b1:70:96:0a:13:0f:
be:61:ce:67:de:45:a3:e8:8d:a7:01:cc:2c:00:38:
9a:f6:13:08:83:9d:0c:e4:4d:e4:34:8e:35:a8:80:
9b:29:e0:23:a8:54:0e:db:d5:31:6b:3b:40:0a:79:
54:2c:66:fd:61:f8:b7:b8:a8:ef:d3:81:96:42:f7:
14:37:b8:73:e6:e0:59:4a:e3:8d:fe:83:ed:0f:a2:
1c:d5:f0:fd:0a:3c:ff:dd:31:3b:3b:87:b0:d1:14:
dd:83:0e:8b:d9:1f:0f:b4:f7:be:90:c0:71:7e:e4:
10:1e:c6:42:f8:70:88:94:64:03:ad:be:b5:c2:a5:
87:ac:a0:4b:a1:21:0e:0c:82:d0:6e:6c:ab:be:4f:
f2:f4:1d:27:44:47:10:bb:d7:db:ec:a6:d8:a5:0e:
8a:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:63:80:6C:12:19:3A:6F:40:96:6D:50:D2:3D:F5:90:CC:3D:A9:37
X509v3 Authority Key Identifier:
keyid:40:7C:70:83:46:0E:1A:4C:72:C4:BC:42:76:31:3D:3A:85:94:4A:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QHxwg0YOGkxyxLxCdjE9OoWUSoc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/8a7569-ed74-4a92-8627-985ed15c9aeb/1/QHxwg0YOGkxyxLxCdjE9OoWUSoc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/8a7569-ed74-4a92-8627-985ed15c9aeb/1/QHxwg0YOGkxyxLxCdjE9OoWUSoc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:bc:e3:b0:8a:40:ae:1a:ee:68:a5:ca:c5:60:61:00:c9:e7:
bd:02:d6:fd:03:27:4d:47:e2:64:31:f2:ef:3f:85:d4:db:2d:
c9:76:d3:a5:57:ad:ab:24:d4:5d:89:00:48:05:ea:e1:72:ab:
d4:35:b4:a5:02:c5:b9:0c:bb:d3:a7:11:6f:1e:33:69:b6:6d:
21:3e:24:03:86:60:44:71:0f:6d:fd:42:5e:32:71:64:77:93:
b5:23:05:af:2d:e5:56:cb:6a:a1:d8:bb:b5:55:ad:f0:a2:b8:
e7:f4:64:bb:3e:94:ce:77:0f:ec:a1:e4:38:13:e5:d7:e0:83:
a3:a9:df:ae:14:d7:54:e8:0f:98:cf:ac:58:ed:9c:74:8a:1d:
9f:57:53:83:97:18:ee:97:f4:2d:3d:58:15:e0:88:61:8f:77:
9e:ca:5a:1c:3f:17:ee:2c:ff:5d:cd:a1:23:e3:e8:d5:b1:81:
66:fc:a5:4f:cf:bd:52:9d:b8:46:36:37:3a:c0:c2:13:b7:18:
5f:c1:9a:cd:24:33:d6:77:24:6e:90:b4:b7:55:73:32:6c:b1:
d1:8e:98:80:20:b7:17:32:43:55:f6:50:cf:8b:3c:3f:c6:cc:
bb:17:35:9b:55:94:2e:31:11:ae:33:84:ef:90:47:eb:eb:76:
75:2b:73:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 00:25:10 2026 by rpki-client