Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/52a97f-2ad6-4059-8646-0686160a7e68/1/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.mft
File: Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.mft (raw, json)
Hash identifier: 82eZC9IV3zSzTFFT4TS+Yjtj6xdNx8zsoM9w3QSN/t0=
Subject key identifier: AF:FD:D3:2C:67:24:E1:56:D2:60:A0:7F:1C:A5:B6:E7:DF:AC:5F:D2
Authority key identifier: 43:0E:09:49:DF:59:30:F6:B7:9E:FC:BD:9C:BA:17:4C:A2:13:F5:69
Certificate issuer: /CN=430e0949df5930f6b79efcbd9cba174ca213f569
Certificate serial: 019ED5ABAEC9720EC0EB6BBBACA8646DE9C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/52a97f-2ad6-4059-8646-0686160a7e68/1/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.mft
Manifest number: 18F9
Signing time: Wed 17 Jun 2026 13:00:58 +0000
Manifest this update: Wed 17 Jun 2026 13:00:58 +0000
Manifest next update: Thu 18 Jun 2026 13:00:58 +0000
Files and hashes: 1: Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.crl (hash: d8HbCivVOrnJPtizG5n8ZMPZoUoXb3QGsAYx9gVIxzc=)
2: e3szWYnRwcnVrlDIwYxJ3pYMom4.roa (hash: BKtUpfmwzLTGUQniKBkvPeoFHhYGa5oaDqKuTCxUab8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/52a97f-2ad6-4059-8646-0686160a7e68/1/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/52a97f-2ad6-4059-8646-0686160a7e68/1/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 18 Jun 2026 08:33:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:d5:ab:ae:c9:72:0e:c0:eb:6b:bb:ac:a8:64:6d:e9:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=430e0949df5930f6b79efcbd9cba174ca213f569
Validity
Not Before: Jun 17 13:00:58 2026 GMT
Not After : Jun 18 13:00:58 2026 GMT
Subject: CN=affdd32c6724e156d260a07f1ca5b6e7dfac5fd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:9d:f9:53:df:df:60:2a:bc:6f:aa:9b:5b:ae:
c8:12:e5:c8:dd:6a:33:00:15:bc:df:e1:81:f8:81:
c7:44:c2:56:b7:1c:d9:06:34:3e:38:77:eb:58:21:
b9:1c:00:f4:7e:de:f8:4a:62:83:ed:65:2a:d7:a8:
e8:9a:17:92:58:4d:cf:8d:f3:d7:ee:21:47:95:50:
28:5c:68:73:61:13:66:1e:52:7e:58:36:02:da:98:
3c:cb:b5:b0:31:4c:f8:f2:eb:a7:c5:7f:71:96:2a:
a5:e7:4f:13:47:17:45:78:e7:50:82:84:13:45:7c:
a9:a1:97:c5:43:a5:ee:b2:8b:98:64:d7:60:7c:da:
e6:3d:13:e4:93:23:d2:13:0f:ca:6b:09:c0:b3:20:
33:39:44:47:a4:60:d0:0c:87:7d:54:f9:ca:77:a5:
1d:06:dc:a7:1c:07:88:c6:7e:42:d3:d6:5a:c8:9f:
8e:ba:df:de:af:60:a5:d0:c3:7e:18:9a:97:63:9c:
e0:a7:31:c5:f6:54:12:7f:3d:8b:af:0d:40:7a:0b:
19:fa:cf:90:d2:b7:4a:3f:53:5d:47:7d:70:b6:0b:
19:c3:26:1a:ee:dd:80:c3:d6:e7:e8:d7:74:67:e0:
05:b3:43:37:49:0f:e0:2c:37:65:d5:9a:9a:c3:04:
db:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:FD:D3:2C:67:24:E1:56:D2:60:A0:7F:1C:A5:B6:E7:DF:AC:5F:D2
X509v3 Authority Key Identifier:
keyid:43:0E:09:49:DF:59:30:F6:B7:9E:FC:BD:9C:BA:17:4C:A2:13:F5:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/52a97f-2ad6-4059-8646-0686160a7e68/1/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/52a97f-2ad6-4059-8646-0686160a7e68/1/Qw4JSd9ZMPa3nvy9nLoXTKIT9Wk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:1c:5f:89:cd:57:02:c8:98:29:53:b9:9c:2e:6d:ec:6a:99:
e2:b3:47:db:7d:dc:41:fd:95:d8:c8:e1:15:22:4e:90:24:7b:
63:a0:fa:a4:fd:40:43:1c:45:58:d7:9a:80:a5:74:9b:51:fd:
68:7d:2b:90:f1:b0:3e:4f:5f:df:5f:bd:97:06:b8:b5:b0:94:
c2:5d:04:a8:76:d9:04:b5:b9:e0:32:5e:ff:ea:b7:5f:78:00:
31:fb:01:2e:e9:06:ad:d8:79:81:e1:bd:aa:ca:6d:de:82:1f:
b2:82:30:90:60:58:ae:af:24:6d:12:9d:94:3a:c2:ea:d2:22:
89:ef:07:ef:a9:4a:b5:b5:fc:f5:45:5d:f7:8e:b4:65:fe:16:
1b:43:34:6b:f2:9e:08:2b:a5:c4:01:10:24:a5:4b:4f:21:dc:
90:7b:5e:d5:9e:69:7c:9e:e5:40:37:30:73:69:14:94:85:08:
f1:75:a6:cf:e1:ba:23:ee:f8:b1:4b:ef:67:5e:7f:09:50:1d:
65:fc:ef:c5:47:05:09:03:76:4f:fb:76:c0:1c:0d:4d:4c:2c:
bc:15:e6:42:1f:10:1a:16:4f:ec:00:02:7c:99:25:91:d6:ae:
8b:e5:dc:51:9b:ff:47:9d:bc:c1:fe:0c:30:17:37:86:f5:ac:
cc:ba:a8:21
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7Vq67Jcg7A62u7rKhkbenAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQzMGUwOTQ5ZGY1OTMwZjZiNzllZmNiZDljYmExNzRjYTIx
M2Y1NjkwHhcNMjYwNjE3MTMwMDU4WhcNMjYwNjE4MTMwMDU4WjAzMTEwLwYDVQQD
EyhhZmZkZDMyYzY3MjRlMTU2ZDI2MGEwN2YxY2E1YjZlN2RmYWM1ZmQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjp35U9/fYCq8b6qbW67IEuXI3Woz
ABW83+GB+IHHRMJWtxzZBjQ+OHfrWCG5HAD0ft74SmKD7WUq16jomheSWE3PjfPX
7iFHlVAoXGhzYRNmHlJ+WDYC2pg8y7WwMUz48uunxX9xliql508TRxdFeOdQgoQT
RXypoZfFQ6XusouYZNdgfNrmPRPkkyPSEw/KawnAsyAzOURHpGDQDId9VPnKd6Ud
BtynHAeIxn5C09ZayJ+Out/er2Cl0MN+GJqXY5zgpzHF9lQSfz2Lrw1AegsZ+s+Q
0rdKP1NdR31wtgsZwyYa7t2Aw9bn6Nd0Z+AFs0M3SQ/gLDdl1ZqawwTboQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK/90yxnJOFW0mCgfxyltuffrF/SMB8GA1UdIwQY
MBaAFEMOCUnfWTD2t578vZy6F0yiE/VpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUXc0SlNkOVpNUGEzbnZ5OW5Mb1hUS0lUOVdrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC81MmE5N2YtMmFkNi00MDU5LTg2NDYt
MDY4NjE2MGE3ZTY4LzEvUXc0SlNkOVpNUGEzbnZ5OW5Mb1hUS0lUOVdrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OC81MmE5N2YtMmFkNi00MDU5LTg2NDYtMDY4NjE2MGE3ZTY4
LzEvUXc0SlNkOVpNUGEzbnZ5OW5Mb1hUS0lUOVdrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAihxfic1X
AsiYKVO5nC5t7GqZ4rNH233cQf2V2MjhFSJOkCR7Y6D6pP1AQxxFWNeagKV0m1H9
aH0rkPGwPk9f31+9lwa4tbCUwl0EqHbZBLW54DJe/+q3X3gAMfsBLukGrdh5geG9
qspt3oIfsoIwkGBYrq8kbRKdlDrC6tIiie8H76lKtbX89UVd9460Zf4WG0M0a/Ke
CCulxAEQJKVLTyHckHte1Z5pfJ7lQDcwc2kUlIUI8XWmz+G6I+74sUvvZ15/CVAd
ZfzvxUcFCQN2T/t2wBwNTUwsvBXmQh8QGhZP7AACfJklkdaui+XcUZv/R528wf4M
MBc3hvWszLqoIQ==
-----END CERTIFICATE-----
Generated at Wed Jun 17 15:35:20 2026 by rpki-client