Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/52a6de-7232-49b1-91c7-cfdfcd4ee0f2/1/QIVi4riWGyLinHYtbJkDMbo2Zm8.mft
File: QIVi4riWGyLinHYtbJkDMbo2Zm8.mft (raw, json)
Hash identifier: UbfXNU3uoPTtBjWoMTKQuslStIKL93ikN17J0B4qLw8=
Subject key identifier: 28:C7:0D:DD:E5:E3:7C:6D:03:54:8C:E9:D4:FD:D8:9C:5F:29:81:73
Authority key identifier: 40:85:62:E2:B8:96:1B:22:E2:9C:76:2D:6C:99:03:31:BA:36:66:6F
Certificate issuer: /CN=408562e2b8961b22e29c762d6c990331ba36666f
Certificate serial: 019EC1EDD37C9109CB4A61AD7CDA5064EAA7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QIVi4riWGyLinHYtbJkDMbo2Zm8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/52a6de-7232-49b1-91c7-cfdfcd4ee0f2/1/QIVi4riWGyLinHYtbJkDMbo2Zm8.mft
Manifest number: 1614
Signing time: Sat 13 Jun 2026 17:00:49 +0000
Manifest this update: Sat 13 Jun 2026 17:00:49 +0000
Manifest next update: Sun 14 Jun 2026 17:00:49 +0000
Files and hashes: 1: QIVi4riWGyLinHYtbJkDMbo2Zm8.crl (hash: MUTzl0PZbgcMLgrZsS0ujaxY6OoRQCRiP4gydI/nB48=)
2: fJkHv2XKmgf3wdAAPhmkHMSymi8.roa (hash: moVcLbH6Jw6NJ/DI/9GEobHmBwmywaAnRhkWYEC9LnI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/52a6de-7232-49b1-91c7-cfdfcd4ee0f2/1/QIVi4riWGyLinHYtbJkDMbo2Zm8.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/52a6de-7232-49b1-91c7-cfdfcd4ee0f2/1/QIVi4riWGyLinHYtbJkDMbo2Zm8.mft
rsync://rpki.ripe.net/repository/DEFAULT/QIVi4riWGyLinHYtbJkDMbo2Zm8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:ed:d3:7c:91:09:cb:4a:61:ad:7c:da:50:64:ea:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=408562e2b8961b22e29c762d6c990331ba36666f
Validity
Not Before: Jun 13 17:00:49 2026 GMT
Not After : Jun 14 17:00:49 2026 GMT
Subject: CN=28c70ddde5e37c6d03548ce9d4fdd89c5f298173
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:c2:76:fc:12:7d:f5:24:75:54:e4:58:3c:91:
f2:5d:31:61:e0:52:1c:65:19:b4:a8:f5:4c:01:c5:
1e:f9:44:9b:4c:7f:72:d1:ef:82:e3:b7:5e:ab:04:
60:6c:65:59:10:9c:32:0e:ec:b7:1c:b7:35:bd:f8:
a8:6c:95:b4:38:05:11:49:ef:b5:7e:be:c2:43:7f:
8a:d1:41:dc:30:6d:c0:2f:3d:58:f7:1f:2d:22:66:
1a:a8:b0:0f:a1:8c:fb:27:17:13:fc:23:51:9f:9f:
77:ca:ef:8f:7b:27:ab:19:ce:b9:bf:6f:95:a5:98:
5d:47:45:c1:d7:54:ba:3f:bf:ad:32:7b:31:3e:2d:
33:2f:04:51:81:b7:fe:ca:4f:f9:fa:22:fe:d5:7f:
1c:0b:79:90:27:c1:c8:a7:7b:59:01:31:f7:d0:4d:
7e:bc:ad:e8:b0:bb:95:56:2a:47:65:e6:0d:b0:0d:
78:3b:bc:66:90:10:04:93:89:df:09:c2:3b:ca:06:
60:83:e1:72:ce:26:c5:a7:c1:45:ea:11:0f:7d:2b:
d0:a0:22:9d:c0:70:f3:ac:d1:b8:5d:b8:ff:4d:00:
af:4c:ce:a0:29:af:20:62:24:1d:09:0b:d6:7e:04:
20:cc:e7:95:51:87:0c:8d:f0:4a:f5:12:2b:92:26:
5d:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:C7:0D:DD:E5:E3:7C:6D:03:54:8C:E9:D4:FD:D8:9C:5F:29:81:73
X509v3 Authority Key Identifier:
keyid:40:85:62:E2:B8:96:1B:22:E2:9C:76:2D:6C:99:03:31:BA:36:66:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QIVi4riWGyLinHYtbJkDMbo2Zm8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/52a6de-7232-49b1-91c7-cfdfcd4ee0f2/1/QIVi4riWGyLinHYtbJkDMbo2Zm8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/52a6de-7232-49b1-91c7-cfdfcd4ee0f2/1/QIVi4riWGyLinHYtbJkDMbo2Zm8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:d3:b5:95:9d:71:20:eb:f7:2f:bd:a6:02:c0:4f:6d:40:d8:
87:90:5c:b5:d3:2d:66:b0:de:95:e2:34:fe:0c:05:33:e8:19:
58:fb:72:87:61:9e:82:f2:b8:93:73:ff:73:9e:dd:2d:f8:74:
29:6f:a1:90:a6:9b:c6:b9:dc:2a:38:de:1e:31:1e:af:93:60:
4e:08:78:ee:b0:b6:68:8f:1b:05:58:9b:20:dc:16:d4:fe:57:
23:df:5e:53:dd:e6:e4:7c:1a:0b:a5:ea:8b:3b:56:7b:9e:a6:
50:97:fa:e3:2a:9b:bc:8d:83:a9:d6:1a:e8:b8:94:b1:61:81:
a2:be:f1:aa:4e:3e:fc:1b:86:ce:69:af:22:d4:30:00:fe:a9:
af:55:6d:4d:2a:04:ca:c3:ac:ad:bb:75:24:d0:b9:10:c0:59:
58:49:f0:25:a9:89:8d:27:a3:cb:37:42:fc:25:8a:26:0f:23:
09:21:fa:47:85:45:84:54:91:a9:d9:41:d1:df:12:08:89:4c:
46:08:1f:55:2e:59:6e:3c:2b:a6:47:1b:ee:ef:7e:62:65:11:
c4:ff:e2:6d:e9:91:4e:52:f5:c8:44:97:08:da:a5:b3:33:3e:
a3:84:25:8b:7e:11:31:45:18:f7:ef:ef:30:eb:8a:40:dc:cf:
10:eb:08:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 23:16:11 2026 by rpki-client