Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.mft
File: QEPj9wJFibliregc9EVjBvTTXmg.mft (raw, json)
Hash identifier: G20V8QGn5VrN1e8AaVWI4fdLAfUjXMr6pLSOF+kHu0c=
Subject key identifier: D6:CF:53:78:BB:BB:50:92:E1:A7:F5:AC:84:CE:51:84:F2:66:52:08
Authority key identifier: 40:43:E3:F7:02:45:89:B9:62:AD:E8:1C:F4:45:63:06:F4:D3:5E:68
Certificate issuer: /CN=4043e3f7024589b962ade81cf4456306f4d35e68
Certificate serial: 019EC1B6736E0A12FF48B6E8F5B0A868D459
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QEPj9wJFibliregc9EVjBvTTXmg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.mft
Manifest number: 1642
Signing time: Sat 13 Jun 2026 16:00:20 +0000
Manifest this update: Sat 13 Jun 2026 16:00:20 +0000
Manifest next update: Sun 14 Jun 2026 16:00:20 +0000
Files and hashes: 1: QEPj9wJFibliregc9EVjBvTTXmg.crl (hash: vD+duZQbdIQTF3dnzLOppdBZsGqgI68ll6xjAj21Z+c=)
2: w011lYt62c3hWszahC6AWv6giHI.roa (hash: xoQYARNhUnVWQjLbtBlHZU61msSzpQAeDZVvNEmV+D0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.mft
rsync://rpki.ripe.net/repository/DEFAULT/QEPj9wJFibliregc9EVjBvTTXmg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:b6:73:6e:0a:12:ff:48:b6:e8:f5:b0:a8:68:d4:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4043e3f7024589b962ade81cf4456306f4d35e68
Validity
Not Before: Jun 13 16:00:20 2026 GMT
Not After : Jun 14 16:00:20 2026 GMT
Subject: CN=d6cf5378bbbb5092e1a7f5ac84ce5184f2665208
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:dd:f1:81:97:1c:1f:55:74:60:75:da:07:d9:
02:7d:0c:e4:fc:41:0f:6e:ec:1b:b6:ec:1d:06:be:
8c:7e:e7:e5:fa:ac:06:bc:12:9b:b5:00:86:ad:6a:
34:07:9a:2a:9b:c7:a0:aa:2a:3f:99:28:44:37:32:
f4:3e:5a:e7:22:06:85:2e:4f:2d:4d:53:f0:0f:e5:
e3:aa:66:9d:58:d5:f3:de:ba:14:4d:88:a3:bc:5b:
e0:d4:0f:1a:63:4c:70:67:6c:d6:41:2d:ff:c0:78:
71:2b:b3:61:3e:4b:82:04:a0:89:39:3a:99:4a:a0:
43:aa:75:04:c1:3b:ea:2f:35:12:c0:42:a2:34:d6:
32:90:22:a5:5f:a2:44:d4:60:bc:e6:09:ce:55:c9:
2e:f6:19:05:b5:6b:44:ed:2c:39:20:dd:8b:4e:9a:
c1:66:15:13:32:c9:82:62:76:99:6a:16:1a:a0:a6:
0f:39:b7:cf:42:f0:6c:73:f8:a9:9f:10:a9:65:6b:
ce:6c:eb:31:e1:ab:c1:54:21:7c:2e:68:48:ff:2e:
c6:cf:21:04:54:c8:34:33:3d:0a:89:b9:27:ad:33:
43:2a:50:d6:a9:cf:81:4e:03:7d:f9:f0:ff:5e:5e:
fa:8e:92:2d:11:90:84:84:7b:55:12:12:ae:1d:0e:
38:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:CF:53:78:BB:BB:50:92:E1:A7:F5:AC:84:CE:51:84:F2:66:52:08
X509v3 Authority Key Identifier:
keyid:40:43:E3:F7:02:45:89:B9:62:AD:E8:1C:F4:45:63:06:F4:D3:5E:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QEPj9wJFibliregc9EVjBvTTXmg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:49:b9:12:e6:8f:9f:e2:4f:b6:31:19:c8:47:77:2d:74:60:
63:11:8c:2e:37:da:e7:1a:72:a6:18:0d:8d:cc:25:e3:0a:bb:
d3:f7:89:3b:7b:d9:0d:c7:4a:01:c9:ca:d0:03:88:50:37:7c:
ad:c0:85:d7:dd:66:ce:5f:c8:d2:fd:47:90:42:c0:58:d2:c2:
f6:82:a4:4f:83:e0:c8:03:a2:8d:6a:c2:c7:c0:e0:db:f2:99:
19:b0:18:51:cb:d1:58:f0:c6:8c:99:79:39:28:b8:b8:b6:2b:
09:48:ed:19:e5:41:2c:85:33:c9:65:f1:bc:59:eb:e4:da:3a:
ee:82:e1:77:ed:2d:2a:a0:b9:42:f0:18:e2:83:be:aa:2a:7d:
94:8d:0a:57:b5:e1:23:81:84:c9:ac:5a:fd:71:af:c4:8b:d5:
2d:24:5e:0a:9b:46:3d:27:5b:18:17:54:f2:b6:e0:48:54:e9:
07:70:f9:a8:99:1d:77:5f:a6:b0:57:b5:ea:95:5c:f5:0f:61:
d1:32:1b:e8:37:73:ae:86:5f:c8:24:58:e8:14:97:1e:2c:34:
68:8d:62:9e:11:bf:55:16:a7:1c:14:75:0c:68:a7:6c:8d:11:
d5:46:26:74:df:0d:c1:97:be:37:34:43:1e:91:28:6e:c5:ac:
85:85:43:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 00:34:13 2026 by rpki-client