Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/3b3215-5721-4345-841b-2ad9308f1f6c/1/Qkq4x890A7ViChuBPmrR2g2stE0.mft
File: Qkq4x890A7ViChuBPmrR2g2stE0.mft (raw, json)
Hash identifier: uecsYz27YssUIC9uoF15cy24V7KalahVbfl+cK1svMs=
Subject key identifier: AF:3E:82:0D:00:E9:36:CE:34:19:16:BB:D8:33:6B:93:36:BC:B1:86
Authority key identifier: 42:4A:B8:C7:CF:74:03:B5:62:0A:1B:81:3E:6A:D1:DA:0D:AC:B4:4D
Certificate issuer: /CN=424ab8c7cf7403b5620a1b813e6ad1da0dacb44d
Certificate serial: 019EC17FDA2FC5142B462CB84868BFE2E431
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qkq4x890A7ViChuBPmrR2g2stE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/3b3215-5721-4345-841b-2ad9308f1f6c/1/Qkq4x890A7ViChuBPmrR2g2stE0.mft
Manifest number: 195D
Signing time: Sat 13 Jun 2026 15:00:42 +0000
Manifest this update: Sat 13 Jun 2026 15:00:42 +0000
Manifest next update: Sun 14 Jun 2026 15:00:42 +0000
Files and hashes: 1: Qkq4x890A7ViChuBPmrR2g2stE0.crl (hash: 95GiSEsAFHwQ5ymCsNFK2SdlZXtrKo5+AXmKrB+Ph5c=)
2: dzTzYf-TKYJMVkOvvaBfstjTJ9w.roa (hash: ZIgS2/isxUOPCfVNIh153dBZ1pmUGjEqXD0BSekDaHQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/3b3215-5721-4345-841b-2ad9308f1f6c/1/Qkq4x890A7ViChuBPmrR2g2stE0.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/3b3215-5721-4345-841b-2ad9308f1f6c/1/Qkq4x890A7ViChuBPmrR2g2stE0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Qkq4x890A7ViChuBPmrR2g2stE0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:7f:da:2f:c5:14:2b:46:2c:b8:48:68:bf:e2:e4:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=424ab8c7cf7403b5620a1b813e6ad1da0dacb44d
Validity
Not Before: Jun 13 15:00:42 2026 GMT
Not After : Jun 14 15:00:42 2026 GMT
Subject: CN=af3e820d00e936ce341916bbd8336b9336bcb186
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:9e:45:79:ce:57:32:54:10:a1:30:bf:b0:d7:
1b:03:7e:ba:5a:8e:1c:71:13:66:0e:6a:34:9f:20:
dc:4d:77:7c:59:5f:04:ba:bf:f2:2b:25:29:41:cd:
6e:5d:07:19:e6:f5:22:ac:56:0e:de:75:0b:f8:b0:
41:3e:f7:76:48:02:2d:7a:a8:78:22:91:cb:4b:c4:
2c:d7:40:82:56:41:54:1e:fc:89:c2:44:00:84:99:
0d:53:f3:f7:2c:53:41:24:cb:c9:b9:3e:c4:f2:32:
05:f6:c0:14:54:24:c0:0e:39:be:4c:50:15:1b:ec:
82:b6:0f:64:51:72:55:5c:bf:a3:6d:f4:b0:a1:4a:
e4:cd:30:f8:f8:d3:b3:46:94:c9:6b:fd:07:30:af:
12:24:de:47:f5:81:1c:58:8f:52:e9:cd:60:09:87:
df:b9:ce:b0:ad:ce:50:f6:ba:55:49:3a:fc:df:64:
d8:35:bb:80:98:84:0a:6c:a7:f9:01:12:64:50:8e:
99:ed:10:86:d2:37:1c:6d:c3:8a:ef:89:b3:9e:96:
be:47:7c:24:91:94:0d:c1:8d:1f:10:18:ae:8c:4e:
04:25:08:3e:e8:c6:e8:6b:68:1c:89:02:bd:9e:67:
1e:fc:c9:2d:60:29:5d:08:09:54:dd:3c:9c:32:cd:
e5:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:3E:82:0D:00:E9:36:CE:34:19:16:BB:D8:33:6B:93:36:BC:B1:86
X509v3 Authority Key Identifier:
keyid:42:4A:B8:C7:CF:74:03:B5:62:0A:1B:81:3E:6A:D1:DA:0D:AC:B4:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qkq4x890A7ViChuBPmrR2g2stE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3b3215-5721-4345-841b-2ad9308f1f6c/1/Qkq4x890A7ViChuBPmrR2g2stE0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3b3215-5721-4345-841b-2ad9308f1f6c/1/Qkq4x890A7ViChuBPmrR2g2stE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:eb:c9:bb:b8:00:59:66:c7:e4:d3:a1:cb:4c:0c:ad:77:3a:
24:fd:07:b0:bd:81:9f:78:ac:59:03:6b:97:19:cc:f2:a3:97:
f6:46:4e:3b:a8:71:76:d2:4e:30:a6:4c:c7:b2:61:dc:f6:ea:
b1:f5:23:51:60:42:17:32:cc:3d:ef:f1:79:6f:07:66:24:e0:
97:dc:3e:2c:85:62:f4:3d:7d:9f:85:03:61:3a:c1:d4:0c:df:
50:cb:47:03:02:7b:4c:f2:d4:cb:60:5a:b0:d4:56:54:4e:3d:
ca:da:98:75:3c:19:c9:e4:2e:6c:cc:0f:60:08:63:b6:6c:a6:
cd:da:65:c5:ed:0e:46:22:48:36:3f:ba:5c:54:aa:83:8b:7b:
ee:12:a0:c3:e6:de:92:88:88:6e:fa:38:75:88:a7:32:10:7a:
d5:5f:b2:b4:f7:d3:a7:f1:ed:1e:12:c2:c8:27:81:07:31:e6:
d6:33:a6:8c:90:57:99:61:10:0c:cc:de:c4:e3:4a:c2:64:f2:
56:8d:ac:13:89:59:41:63:5b:c1:8f:a0:08:d6:0a:48:78:7f:
de:f8:81:74:48:43:87:0d:1d:74:3c:6f:a7:06:45:30:05:b1:
7e:8c:5b:cf:4c:49:45:61:1d:f2:72:36:c8:00:9b:a9:6a:15:
58:8b:5f:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 23:18:55 2026 by rpki-client