Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
File: 1QliA1xelRATygZwylaeefjWPBU.mft (raw, json)
Hash identifier: 3K3bVKMDTiCrcq/BfVmvtI6vderrY8btQRE87oUA7IQ=
Subject key identifier: FB:09:2E:E9:2C:56:B1:C6:D7:48:C7:98:5F:6C:A6:C3:99:C7:B4:75
Authority key identifier: D5:09:62:03:5C:5E:95:10:13:CA:06:70:CA:56:9E:79:F8:D6:3C:15
Certificate issuer: /CN=d50962035c5e951013ca0670ca569e79f8d63c15
Certificate serial: 019EBE7F561ABC1E692480711E2C6182CD46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1QliA1xelRATygZwylaeefjWPBU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
Manifest number: 1425
Signing time: Sat 13 Jun 2026 01:01:16 +0000
Manifest this update: Sat 13 Jun 2026 01:01:16 +0000
Manifest next update: Sun 14 Jun 2026 01:01:16 +0000
Files and hashes: 1: 1QliA1xelRATygZwylaeefjWPBU.crl (hash: BddCfo1vIeligEHooGUKKIunzs0DG24d5ZTH7V6YQOc=)
2: CfjqQqpPDnBhH-p0lAIrBIhNgY8.roa (hash: /5wTY3Au8nodbJrzfE4opPFUcgrAfS3BmM1XuaMh8Fg=)
3: SosxbjlFtLu-lsuh4-rF3Rw-rK0.roa (hash: c0C1OZyGN1Qv/oPDh5sJipEydB/aVrMAT59EdQMDAY4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
rsync://rpki.ripe.net/repository/DEFAULT/1QliA1xelRATygZwylaeefjWPBU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:7f:56:1a:bc:1e:69:24:80:71:1e:2c:61:82:cd:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d50962035c5e951013ca0670ca569e79f8d63c15
Validity
Not Before: Jun 13 01:01:16 2026 GMT
Not After : Jun 14 01:01:16 2026 GMT
Subject: CN=fb092ee92c56b1c6d748c7985f6ca6c399c7b475
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:27:64:73:2a:75:67:bc:6d:ba:50:94:e4:f1:
ea:21:6f:d8:c6:44:b4:59:fb:11:8b:8d:70:3e:02:
43:84:89:8f:7a:9e:be:e1:fa:7c:08:94:ba:e1:83:
5c:43:b6:3d:f7:a9:6a:54:42:90:d4:54:be:0f:04:
4b:8e:9e:eb:65:df:33:d2:13:d3:ea:c0:f8:52:15:
f4:0e:98:3a:f9:4f:4d:ce:f1:cf:be:f3:62:ad:d9:
ab:23:bc:17:c4:35:71:e3:c9:a4:76:8e:9b:02:45:
57:90:d5:cc:0e:68:23:ab:22:56:89:48:ac:0c:64:
24:c2:2d:c6:ab:7a:c0:cb:7f:ad:6b:77:26:f6:81:
d1:76:20:5a:52:22:35:3c:8d:5c:c2:00:9f:f3:01:
7c:7a:a6:99:32:bb:e0:7d:76:e0:48:ed:28:73:bd:
89:5e:91:7c:6c:71:19:95:ba:d3:04:c6:33:aa:a0:
cf:6a:26:6d:3f:29:b5:a4:cf:17:0c:e9:38:e0:f1:
1c:ee:e2:cb:a9:25:da:f7:3d:51:29:81:80:40:ea:
52:67:89:2b:ef:09:a0:35:9c:48:1c:d2:4c:eb:01:
8b:6d:09:e4:39:14:5f:f6:2f:9c:99:fc:05:20:cb:
2f:47:f5:d5:79:66:e9:a8:12:fc:85:bc:b8:89:50:
c4:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:09:2E:E9:2C:56:B1:C6:D7:48:C7:98:5F:6C:A6:C3:99:C7:B4:75
X509v3 Authority Key Identifier:
keyid:D5:09:62:03:5C:5E:95:10:13:CA:06:70:CA:56:9E:79:F8:D6:3C:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1QliA1xelRATygZwylaeefjWPBU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/d4e8e9-0d47-419b-b3e2-054a363115f5/1/1QliA1xelRATygZwylaeefjWPBU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:82:da:94:2d:8d:fd:c2:21:2c:52:18:bc:71:f2:f3:e6:03:
1d:cc:c3:04:41:b2:90:cf:4b:49:4d:ff:ea:3a:fe:75:ec:88:
4a:51:c5:f7:9a:63:70:74:be:4f:3b:a0:86:1d:80:ab:16:30:
ed:8d:ab:aa:3f:d8:82:11:de:6e:a4:75:4a:4a:3c:fc:a2:d3:
78:10:39:7a:85:c2:19:b5:ec:c6:2c:5d:3c:6f:37:ad:dd:63:
63:40:3c:e5:6b:be:70:3c:79:e5:8a:ef:ca:18:a6:d9:0a:98:
27:b7:60:8f:f3:43:50:00:e7:79:4d:44:c7:74:bf:46:54:b1:
50:f7:3b:ca:fb:a6:b8:dc:32:5c:b2:e3:6b:de:f2:5b:7a:a2:
73:2a:da:af:19:22:38:37:12:4d:40:67:95:e6:6a:d4:68:f2:
76:1d:fb:0f:e5:2a:75:f2:d2:4f:57:75:ff:5b:68:40:25:0f:
87:47:5a:27:7e:5b:25:ac:81:14:70:da:b6:69:fd:fc:7a:94:
6b:f0:66:2e:f4:b5:c4:f1:a9:01:0f:50:ba:cc:d1:77:da:d5:
a6:8c:18:0f:85:b1:28:8b:e0:1e:56:7c:a5:b5:98:c1:00:32:
91:68:f9:0f:e7:f5:65:2e:0e:16:a3:54:9d:9f:05:6a:b5:6b:
0b:10:46:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 08:09:58 2026 by rpki-client