Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.mft
File: Q94YPxSj8k-bhtBE-HcphoC1Ers.mft (raw, json)
Hash identifier: ZOlvhZmvX20WArjCSu7t006VPPevTCDc/PzRidrquY4=
Subject key identifier: A1:C3:E9:15:BB:8F:54:DF:FA:FF:4E:DA:8C:FD:14:CD:22:4C:03:C3
Authority key identifier: 43:DE:18:3F:14:A3:F2:4F:9B:86:D0:44:F8:77:29:86:80:B5:12:BB
Certificate issuer: /CN=43de183f14a3f24f9b86d044f877298680b512bb
Certificate serial: 019EBFFF9B19AF131FAA4B74F49F36D10D06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q94YPxSj8k-bhtBE-HcphoC1Ers.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.mft
Manifest number: 07C4
Signing time: Sat 13 Jun 2026 08:01:00 +0000
Manifest this update: Sat 13 Jun 2026 08:01:00 +0000
Manifest next update: Sun 14 Jun 2026 08:01:00 +0000
Files and hashes: 1: Q94YPxSj8k-bhtBE-HcphoC1Ers.crl (hash: HDiUb6CRiNyaplUSAVbI4K0sk3WndPNADJBRHeE3bYw=)
2: eRzoAPCehzYUsTKWzumpWnRkGv4.asa (hash: XuGTrIZBYEhP0vD01NV66qn1i9p1ktzdlWy+jaqHixE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q94YPxSj8k-bhtBE-HcphoC1Ers.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:ff:9b:19:af:13:1f:aa:4b:74:f4:9f:36:d1:0d:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43de183f14a3f24f9b86d044f877298680b512bb
Validity
Not Before: Jun 13 08:01:00 2026 GMT
Not After : Jun 14 08:01:00 2026 GMT
Subject: CN=a1c3e915bb8f54dffaff4eda8cfd14cd224c03c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:82:9f:c7:96:d8:41:99:8c:69:1d:2b:32:15:
06:92:13:43:00:d4:8d:10:69:da:72:72:56:eb:f1:
25:e5:9c:ea:a4:0b:81:3b:7d:c0:5e:50:b5:cb:62:
a4:d8:33:59:b7:5c:c2:ef:7b:b5:1c:d1:d1:f2:7d:
b9:77:17:0b:5b:1b:eb:96:bd:41:b3:2f:ee:fe:78:
9d:ca:62:a3:bb:c0:d5:b6:d4:a9:1e:67:6f:b9:f2:
88:09:8d:c5:c5:0c:3a:46:85:2f:3b:ab:9a:9e:11:
25:97:33:c6:8c:f4:94:ff:e5:b6:6f:a3:b6:1d:29:
6c:2d:37:b3:d6:3b:8c:4a:64:3f:3f:22:b3:bb:70:
fb:f1:e3:08:78:b7:e2:95:07:be:71:ca:a8:96:96:
ff:2e:c1:5e:30:02:2d:44:b4:22:44:86:58:33:89:
b6:36:72:bf:35:eb:22:45:43:83:2c:f8:91:4d:10:
b9:59:f3:0c:f1:cb:96:1e:03:29:ef:f2:a2:79:e9:
53:95:d9:28:6c:7d:f8:c7:91:a9:aa:8f:35:3e:21:
95:fb:41:d8:9c:db:50:2f:b2:e0:48:27:59:59:08:
88:50:0c:60:ea:48:c7:ca:61:ee:07:5a:0a:4c:a6:
71:da:c3:d3:47:7d:ae:b7:21:66:4d:fa:1c:98:a5:
0f:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:C3:E9:15:BB:8F:54:DF:FA:FF:4E:DA:8C:FD:14:CD:22:4C:03:C3
X509v3 Authority Key Identifier:
keyid:43:DE:18:3F:14:A3:F2:4F:9B:86:D0:44:F8:77:29:86:80:B5:12:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q94YPxSj8k-bhtBE-HcphoC1Ers.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:d4:4e:ef:55:2a:d8:fd:c7:01:23:9d:74:7d:7f:52:c9:ee:
69:9e:46:63:87:6a:01:ec:95:75:9c:df:96:ac:45:c3:e5:5b:
f3:36:85:a2:5c:8b:3f:55:57:26:b9:0c:af:cd:16:5e:a3:83:
10:f2:e7:df:80:c3:17:5d:b3:13:1a:30:7a:40:2b:b2:68:44:
44:d4:ce:3d:ea:ac:d2:b4:49:e1:75:50:60:50:d4:62:15:c3:
64:46:a3:8d:a4:d9:69:b5:64:c6:7b:71:4a:93:e3:1c:22:5a:
6e:66:91:a2:24:95:64:55:c0:a0:2e:e2:d0:1e:01:1c:f4:a5:
d1:96:84:7f:fc:34:52:2c:ce:e2:c3:6b:88:a5:b4:1e:c4:53:
99:c8:41:46:84:c0:3b:19:04:d9:88:69:2e:17:4e:16:18:2e:
c9:d1:8e:d5:28:59:f9:d7:74:9c:52:14:c5:16:9f:c9:30:42:
8d:d4:fd:30:1a:18:67:c9:6a:90:59:c7:d7:f9:95:ff:dc:3e:
4b:b4:a3:4e:a7:cc:b6:e1:59:de:6a:20:8c:ca:c4:65:e2:70:
c0:42:0b:21:c6:5f:96:92:7d:57:d8:01:16:30:d5:8f:39:db:
49:67:52:37:31:cf:28:95:b8:07:78:c2:46:05:d0:58:ec:b4:
7f:59:bc:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 15:27:28 2026 by rpki-client