Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/654b89-37c1-4061-90b3-6b95500da23b/1/QxfdFbYr3XESWZuBQjNg7uegEpY.mft
File: QxfdFbYr3XESWZuBQjNg7uegEpY.mft (raw, json)
Hash identifier: zBgK/2OJ+qBxDpptlp53NkzDFAoGZwgS7XMj/nxLhTs=
Subject key identifier: 56:F6:CD:8A:CF:EE:0A:76:34:D5:59:0D:02:E5:2E:BE:4C:37:7B:09
Authority key identifier: 43:17:DD:15:B6:2B:DD:71:12:59:9B:81:42:33:60:EE:E7:A0:12:96
Certificate issuer: /CN=4317dd15b62bdd7112599b81423360eee7a01296
Certificate serial: 019EC300ADDCB9817D78D95F26AA83A67169
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QxfdFbYr3XESWZuBQjNg7uegEpY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/654b89-37c1-4061-90b3-6b95500da23b/1/QxfdFbYr3XESWZuBQjNg7uegEpY.mft
Manifest number: 0AC1
Signing time: Sat 13 Jun 2026 22:01:02 +0000
Manifest this update: Sat 13 Jun 2026 22:01:02 +0000
Manifest next update: Sun 14 Jun 2026 22:01:02 +0000
Files and hashes: 1: QxfdFbYr3XESWZuBQjNg7uegEpY.crl (hash: duMPuyTcwUiYWBpKTCxZvnZna1vZp3Yd0oRmUhbIyB8=)
2: aPWLJM6IziuoIQ-9dg15aPOtRRI.roa (hash: nW9Lbvb0zK8UkUgMG6xc5L/WUYzGO8kQcti52apyWJQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/654b89-37c1-4061-90b3-6b95500da23b/1/QxfdFbYr3XESWZuBQjNg7uegEpY.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/654b89-37c1-4061-90b3-6b95500da23b/1/QxfdFbYr3XESWZuBQjNg7uegEpY.mft
rsync://rpki.ripe.net/repository/DEFAULT/QxfdFbYr3XESWZuBQjNg7uegEpY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c3:00:ad:dc:b9:81:7d:78:d9:5f:26:aa:83:a6:71:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4317dd15b62bdd7112599b81423360eee7a01296
Validity
Not Before: Jun 13 22:01:02 2026 GMT
Not After : Jun 14 22:01:02 2026 GMT
Subject: CN=56f6cd8acfee0a7634d5590d02e52ebe4c377b09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b9:fd:1b:de:8e:62:cd:e0:e8:21:25:c8:34:
ad:02:45:3a:cf:41:01:2a:e5:88:28:bd:b2:ab:85:
04:37:56:22:3c:4a:76:78:85:6b:d9:c5:d2:97:43:
5c:45:e0:ca:ca:78:60:16:c2:d1:0b:ad:a4:cc:c8:
43:28:3f:91:87:fd:67:ac:81:72:a8:7a:2d:a6:1c:
d0:4f:ff:22:b5:e6:bc:38:4d:5c:9f:2b:68:d7:a4:
0e:b1:0f:6c:b2:b0:8b:f3:25:a7:b0:b7:ba:57:2c:
66:cc:26:f2:19:90:00:fc:0d:d0:b8:21:9a:7b:52:
ae:8a:fe:6b:9a:cf:5b:5e:b9:a8:24:f4:ce:d7:fa:
c3:32:d2:80:21:3e:bf:48:ef:ec:ca:57:37:2e:29:
0a:4b:d4:66:4a:d6:09:7d:59:7a:77:1d:3b:83:98:
ec:08:a7:e4:d6:2d:0d:81:48:34:f3:2d:fd:b2:96:
c8:02:b4:e8:70:2e:d9:47:a8:e2:88:07:0e:51:45:
17:12:3d:2a:58:74:ab:f6:4c:4b:5c:60:c7:9f:5b:
20:61:4f:44:f1:25:88:e2:55:48:e0:97:15:9f:10:
02:ff:72:d4:3f:f6:7d:81:e9:2c:32:7d:71:06:2d:
aa:68:80:4a:b9:f7:f5:1a:38:2f:1c:3d:1d:94:63:
04:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:F6:CD:8A:CF:EE:0A:76:34:D5:59:0D:02:E5:2E:BE:4C:37:7B:09
X509v3 Authority Key Identifier:
keyid:43:17:DD:15:B6:2B:DD:71:12:59:9B:81:42:33:60:EE:E7:A0:12:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QxfdFbYr3XESWZuBQjNg7uegEpY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/654b89-37c1-4061-90b3-6b95500da23b/1/QxfdFbYr3XESWZuBQjNg7uegEpY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/654b89-37c1-4061-90b3-6b95500da23b/1/QxfdFbYr3XESWZuBQjNg7uegEpY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:9a:b0:ff:a3:85:e9:33:31:eb:f2:82:a6:51:03:86:b4:2c:
f4:8f:c3:bb:37:8e:a3:ba:79:15:43:5a:22:6a:6f:ae:f2:18:
2d:f7:31:28:cd:0a:c0:1d:9a:07:51:b6:8a:49:44:51:bd:94:
2e:e5:4d:3f:11:69:cd:54:82:a8:c0:98:7e:c5:41:0c:c9:a4:
76:37:da:e3:9e:ae:40:22:c3:f1:89:1c:16:9e:fc:00:9b:1a:
57:45:8b:fb:da:3b:a4:5e:b3:97:3a:0a:d4:4a:46:1d:80:60:
65:7c:76:4a:79:87:41:c4:79:72:50:1d:2e:9f:f9:e0:04:3d:
ca:a3:31:1d:6e:6d:56:69:07:b0:8a:5d:d5:a3:45:db:5d:85:
f3:ff:87:cc:aa:fc:fc:71:4d:8c:4c:99:a7:41:07:91:b6:92:
8c:0f:c6:94:f6:db:b6:8b:8f:40:b1:9a:62:45:bf:c6:42:de:
9d:66:9a:77:6c:61:e4:80:b9:24:36:f0:82:21:f6:73:24:40:
1b:7a:4d:82:25:1a:e9:00:5b:c5:b2:00:a9:43:ee:74:71:ab:
28:71:2e:23:86:18:76:e4:b1:93:88:40:90:28:cc:87:13:49:
f3:29:be:35:c7:ad:a3:32:f0:44:0a:6d:31:30:90:ce:35:7a:
e8:e4:24:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 02:52:02 2026 by rpki-client