Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
File: QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft (raw, json)
Hash identifier: V8cj/V/ILxyMOjH5cNndAAaPHBpogHtN3/ndNq0kWeY=
Subject key identifier: BA:21:CD:96:18:8F:BA:E6:81:E1:9F:31:EC:7E:44:7B:45:A1:24:71
Authority key identifier: 42:1B:4C:D4:0B:AE:47:D4:8F:51:C9:CC:CC:60:7C:CE:57:CE:00:F7
Certificate issuer: /CN=421b4cd40bae47d48f51c9cccc607cce57ce00f7
Certificate serial: 019EC2922875515398BF81F4F5F5EE24E324
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhtM1AuuR9SPUcnMzGB8zlfOAPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
Manifest number: 195B
Signing time: Sat 13 Jun 2026 20:00:18 +0000
Manifest this update: Sat 13 Jun 2026 20:00:18 +0000
Manifest next update: Sun 14 Jun 2026 20:00:18 +0000
Files and hashes: 1: QhtM1AuuR9SPUcnMzGB8zlfOAPc.crl (hash: DdL31Y82uzjHQnUuTVexNB91S8P5SWvwtBWCJP4xE9g=)
2: vvBOQ04V9GOEp_xWifhOTx36DlE.roa (hash: kyJgbX8RGqWByplGJZ1fz/UdnF/eQPqYIRllvHcTi70=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
rsync://rpki.ripe.net/repository/DEFAULT/QhtM1AuuR9SPUcnMzGB8zlfOAPc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 19:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:92:28:75:51:53:98:bf:81:f4:f5:f5:ee:24:e3:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=421b4cd40bae47d48f51c9cccc607cce57ce00f7
Validity
Not Before: Jun 13 20:00:18 2026 GMT
Not After : Jun 14 20:00:18 2026 GMT
Subject: CN=ba21cd96188fbae681e19f31ec7e447b45a12471
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:91:77:45:00:54:fd:2b:6c:e9:bb:dd:e3:77:
82:8d:d0:47:14:8f:8e:46:28:f5:cd:3a:f6:36:9f:
05:89:54:1d:c3:25:63:99:9c:15:94:7c:4c:a4:1f:
d1:cf:4d:5c:b4:60:ea:e7:6d:38:44:89:9d:22:00:
56:fb:e3:28:78:14:0e:f3:4f:b5:5a:4b:b7:95:2b:
80:0f:81:cf:8d:a2:e0:cf:10:17:38:d2:ae:51:02:
d7:7a:6f:2f:61:12:f0:c8:63:51:72:8a:c4:c2:af:
fa:58:7e:62:7d:56:c1:f7:e4:c6:de:5c:a0:bc:df:
51:fc:90:db:41:35:8a:c7:18:f1:29:d4:ee:1f:42:
eb:66:6f:1e:9f:6c:19:aa:95:f4:0b:8a:f1:6a:3f:
da:df:55:3e:59:da:16:20:d1:1a:89:43:10:48:a6:
b4:db:12:aa:17:7b:44:40:57:fe:49:8d:dd:7f:52:
47:38:5c:a6:8f:0a:ae:d1:03:e2:14:44:51:05:0e:
05:2a:03:58:10:52:72:93:09:30:5a:fc:5c:ba:25:
93:08:36:94:20:48:26:82:40:bf:b1:55:94:f1:90:
9f:a6:2e:0d:c7:90:c1:68:2e:8e:4a:b3:99:c2:e2:
a6:2e:e5:55:f0:b1:8c:c8:b5:88:5b:4b:98:52:16:
69:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:21:CD:96:18:8F:BA:E6:81:E1:9F:31:EC:7E:44:7B:45:A1:24:71
X509v3 Authority Key Identifier:
keyid:42:1B:4C:D4:0B:AE:47:D4:8F:51:C9:CC:CC:60:7C:CE:57:CE:00:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhtM1AuuR9SPUcnMzGB8zlfOAPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:d9:ec:db:c7:6a:9a:1f:66:d3:12:e7:56:99:b0:90:c4:2e:
7e:cc:cc:f5:83:0f:c5:be:14:18:96:95:a4:cc:de:8e:a2:bb:
e1:3c:e8:4b:85:c4:e7:02:3c:e3:f2:95:3f:de:58:e5:38:c3:
bb:77:66:c0:ee:a7:94:6c:f2:9b:33:28:8b:78:74:4f:eb:60:
9c:9b:5a:9c:ae:25:6a:ab:11:b2:ff:fb:04:94:22:90:14:57:
09:d0:b9:2e:3a:62:0f:a7:c6:c5:b8:1f:ae:e9:9b:59:83:32:
6d:c1:a1:bd:3a:a7:0a:13:25:38:ba:19:ae:b7:eb:36:85:c3:
f6:b7:f5:ff:55:a3:bd:93:2b:e3:32:a2:ba:13:eb:f0:60:30:
f6:fb:69:92:43:35:22:e5:49:c1:c2:fa:0c:06:92:ba:a8:fc:
92:54:60:fd:41:3b:34:59:7e:3d:b7:ad:c7:36:bc:b6:72:f3:
7e:dd:4a:8e:99:7e:bf:84:15:9d:a9:b4:56:88:82:18:d3:2f:
d7:ff:65:ee:f6:6a:2e:49:9a:58:cf:30:ae:c6:83:0b:75:05:
27:5f:64:7e:90:4e:8c:93:79:a6:ea:19:95:bd:25:50:68:0a:
08:a3:20:a5:09:93:02:bc:e6:86:df:0c:69:f5:56:60:b6:e3:
8c:a0:29:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 05:09:04 2026 by rpki-client