Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/eb31db-e654-491e-a141-91d50738d1e8/1/qsqNwMC5IbCJ8WAmGORVN5enR0I.mft
File: qsqNwMC5IbCJ8WAmGORVN5enR0I.mft (raw, json)
Hash identifier: TivxPYANShQ0WVgWNYHuKDkBYo2pCn42hrwCLSZbSmM=
Subject key identifier: 59:51:33:15:79:60:69:B6:6E:82:A8:FF:56:67:D0:6C:0E:CE:8A:B1
Authority key identifier: AA:CA:8D:C0:C0:B9:21:B0:89:F1:60:26:18:E4:55:37:97:A7:47:42
Certificate issuer: /CN=aaca8dc0c0b921b089f1602618e4553797a74742
Certificate serial: 019EC25BF1B483465227A019EFBBDC735A22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qsqNwMC5IbCJ8WAmGORVN5enR0I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/eb31db-e654-491e-a141-91d50738d1e8/1/qsqNwMC5IbCJ8WAmGORVN5enR0I.mft
Manifest number: 04FE
Signing time: Sat 13 Jun 2026 19:01:05 +0000
Manifest this update: Sat 13 Jun 2026 19:01:05 +0000
Manifest next update: Sun 14 Jun 2026 19:01:05 +0000
Files and hashes: 1: G8uE_YXvAUsbhoJ7QQgS2ptGK4I.roa (hash: BCzWL8FjjNpuELNVuLODI9jH/96WSdwiWl+ywyyb3Cc=)
2: qsqNwMC5IbCJ8WAmGORVN5enR0I.crl (hash: yt5SwA6Lx93aMhipkXF1Xr1fQZhnp2p8NizCo6TQLus=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/eb31db-e654-491e-a141-91d50738d1e8/1/qsqNwMC5IbCJ8WAmGORVN5enR0I.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/eb31db-e654-491e-a141-91d50738d1e8/1/qsqNwMC5IbCJ8WAmGORVN5enR0I.mft
rsync://rpki.ripe.net/repository/DEFAULT/qsqNwMC5IbCJ8WAmGORVN5enR0I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 19:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:5b:f1:b4:83:46:52:27:a0:19:ef:bb:dc:73:5a:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aaca8dc0c0b921b089f1602618e4553797a74742
Validity
Not Before: Jun 13 19:01:05 2026 GMT
Not After : Jun 14 19:01:05 2026 GMT
Subject: CN=59513315796069b66e82a8ff5667d06c0ece8ab1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:8d:64:cf:d0:f0:ac:93:ce:c4:53:31:1c:ec:
fc:28:38:d5:b1:3d:f2:13:94:6a:6a:65:f7:8f:8a:
b9:41:fa:33:f7:40:fb:35:aa:3e:90:48:55:23:71:
9c:17:71:9d:96:f0:e1:25:bf:e7:eb:cb:87:41:22:
ec:36:b9:a8:6a:2f:4e:3b:93:29:9b:fd:19:ec:38:
dc:64:cc:2e:b8:2a:f9:ab:01:4e:ec:d6:e0:5a:54:
7b:49:49:44:0b:1b:6c:ac:2d:af:ef:7c:88:e8:05:
7e:89:a3:d4:c6:1d:c4:0e:4a:c8:cc:b2:0c:63:07:
da:1b:3e:2d:ae:64:87:13:76:08:2a:6b:6f:b9:6a:
a4:8d:6b:d0:9a:13:05:dc:65:93:0d:36:bc:07:9a:
01:9d:59:8e:f6:43:0c:c3:7d:99:12:00:1b:db:13:
f8:9b:2b:aa:55:14:05:88:76:33:01:78:01:b0:5b:
61:a5:b4:e2:c0:e2:0f:b8:b0:ed:25:8c:b9:4d:ae:
46:d0:9e:a9:97:5a:ea:af:35:52:0d:d1:25:3b:03:
1c:cf:eb:1b:6c:e3:ef:60:6b:73:89:31:e2:aa:9b:
76:e2:a2:87:8e:9d:d8:f9:62:74:c8:fe:41:15:b6:
61:aa:7c:db:c3:d2:78:3e:12:d6:94:af:c5:b2:d6:
a0:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:51:33:15:79:60:69:B6:6E:82:A8:FF:56:67:D0:6C:0E:CE:8A:B1
X509v3 Authority Key Identifier:
keyid:AA:CA:8D:C0:C0:B9:21:B0:89:F1:60:26:18:E4:55:37:97:A7:47:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qsqNwMC5IbCJ8WAmGORVN5enR0I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/eb31db-e654-491e-a141-91d50738d1e8/1/qsqNwMC5IbCJ8WAmGORVN5enR0I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/eb31db-e654-491e-a141-91d50738d1e8/1/qsqNwMC5IbCJ8WAmGORVN5enR0I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:e0:7e:86:ab:53:ec:e4:bf:91:17:8d:2e:11:3f:06:7b:06:
d2:3b:5e:81:97:99:9f:a9:51:db:31:5a:3f:62:e1:53:74:4b:
7e:e1:e9:72:27:7f:b3:0b:bb:c1:51:95:f4:c4:75:fb:bb:06:
cd:87:09:dc:1d:2d:a4:d7:8b:e4:24:b8:0c:12:b7:e8:ee:a3:
6a:62:59:22:30:a8:0b:89:c2:46:8f:e3:23:6e:8a:f9:94:a3:
df:0e:d3:e1:81:a9:0d:df:3e:dd:63:81:32:76:e7:e5:6e:46:
3d:b8:88:65:c7:59:c2:b9:68:ab:a3:39:e0:3c:c8:4d:7f:19:
b4:58:91:d0:84:04:de:12:c4:25:fd:84:7a:ed:82:42:6e:a1:
34:55:f2:a0:92:12:50:d4:44:33:27:29:ed:8f:cd:95:1c:b9:
aa:90:7a:85:a8:66:e1:94:ef:13:89:6e:0c:f1:38:8f:bc:e2:
54:08:16:b2:7d:b0:44:2f:ce:2f:37:7a:8b:e0:12:61:1c:a6:
1a:3a:3d:f8:a4:12:62:70:7e:06:bb:37:f1:37:54:dd:1e:aa:
c5:5f:56:27:94:56:b5:4a:a1:59:0f:8b:09:b0:d6:c4:36:5d:
e5:46:b7:0f:66:39:d0:e2:9e:07:25:f1:14:48:6f:ae:00:93:
e4:34:e7:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 04:16:15 2026 by rpki-client