Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.mft
File: QsCVkBFifd0NBX1zHo-lpRApZZI.mft (raw, json)
Hash identifier: tsYz/ap6MC5lz5Pb/tBwIcC5z1+jYwv+TaYOegOH4yc=
Subject key identifier: A5:DB:52:E0:2F:BB:CD:2F:8F:B0:36:3F:5C:D0:8E:60:06:95:D1:F6
Authority key identifier: 42:C0:95:90:11:62:7D:DD:0D:05:7D:73:1E:8F:A5:A5:10:29:65:92
Certificate issuer: /CN=42c0959011627ddd0d057d731e8fa5a510296592
Certificate serial: 019EC06D60811E054AEB5E8D1221DBD737D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QsCVkBFifd0NBX1zHo-lpRApZZI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.mft
Manifest number: 195B
Signing time: Sat 13 Jun 2026 10:00:54 +0000
Manifest this update: Sat 13 Jun 2026 10:00:54 +0000
Manifest next update: Sun 14 Jun 2026 10:00:54 +0000
Files and hashes: 1: QsCVkBFifd0NBX1zHo-lpRApZZI.crl (hash: gP6M1Ft5a2bj4MxnYARLncIfpY+GQ71IEh/4InqTFZg=)
2: RMmBnfd1TCGUmEC2O6JokpnQVQ8.roa (hash: wPMgtMcsG/KMNrN9/altEtQua2Hm0vaKQpeGiiY5B3Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QsCVkBFifd0NBX1zHo-lpRApZZI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:6d:60:81:1e:05:4a:eb:5e:8d:12:21:db:d7:37:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42c0959011627ddd0d057d731e8fa5a510296592
Validity
Not Before: Jun 13 10:00:54 2026 GMT
Not After : Jun 14 10:00:54 2026 GMT
Subject: CN=a5db52e02fbbcd2f8fb0363f5cd08e600695d1f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:35:75:ff:01:92:fe:5a:83:1e:d2:0f:39:7a:
0c:05:17:10:1b:bb:8f:cf:db:f5:25:4d:78:7d:13:
ff:89:54:f4:de:2d:fc:35:75:c2:e0:0b:bf:e3:9e:
a4:3b:29:8b:11:b5:dc:80:14:f9:51:ac:33:92:cb:
24:ef:15:7b:fe:f1:25:49:d8:7b:3c:42:c0:19:f8:
80:77:c9:e4:db:a9:51:2f:94:1d:81:d1:32:f4:14:
95:1f:5a:04:db:2f:21:55:03:ae:e7:43:24:f3:3a:
7d:32:50:c7:32:37:16:de:dc:04:d2:2a:c0:e7:04:
09:bf:b9:d8:82:4f:23:55:63:62:86:f4:f2:f0:2a:
fe:2d:d0:7a:ea:e4:d0:ae:c6:55:82:0c:04:a1:ab:
b8:4a:06:70:61:e9:14:4f:c4:06:0e:bd:87:ff:07:
fe:c8:93:50:90:6e:6a:92:ec:91:93:17:a9:a9:ab:
d8:02:71:80:0c:14:1a:ad:72:46:b2:f6:63:56:49:
52:d8:60:e3:05:c9:8a:d7:5e:4f:e9:77:34:84:8a:
6b:54:10:7c:11:ca:3f:c6:33:64:7b:0d:1c:84:58:
c7:75:2e:3c:fa:da:12:04:89:95:b1:98:81:38:be:
ee:21:fa:b3:b9:9e:7c:43:d7:82:d8:40:84:7c:00:
4e:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:DB:52:E0:2F:BB:CD:2F:8F:B0:36:3F:5C:D0:8E:60:06:95:D1:F6
X509v3 Authority Key Identifier:
keyid:42:C0:95:90:11:62:7D:DD:0D:05:7D:73:1E:8F:A5:A5:10:29:65:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QsCVkBFifd0NBX1zHo-lpRApZZI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:3d:4e:20:e9:fa:9a:92:a3:a0:2a:15:0c:72:d8:1a:17:86:
0b:3a:95:77:91:3e:a9:de:fa:aa:94:25:cc:dc:bf:04:91:da:
75:d6:3c:30:19:35:ec:24:b2:8e:8a:2d:45:56:53:ec:6c:c3:
1b:38:b0:5e:ef:03:ab:0f:49:b1:79:67:93:8e:74:8d:db:54:
b1:02:76:76:b8:2c:e3:ec:43:85:81:e8:f5:7a:77:e8:ae:05:
e9:6b:94:1e:d1:d5:51:eb:35:a4:aa:2c:70:46:81:44:20:98:
0c:84:5e:e2:44:84:06:7d:74:67:f6:c2:95:2c:fd:17:c9:84:
33:d7:c8:c2:a1:dc:99:1d:2d:a5:a8:dd:81:2d:af:37:32:b9:
4d:19:c9:e8:0d:69:30:37:c6:24:c4:76:54:de:cf:5e:93:2b:
9f:16:f3:4b:29:4f:d2:22:df:aa:19:5e:a6:8c:65:29:e8:f6:
5f:02:3c:a8:5d:e6:ee:0d:8e:ee:9c:6a:86:9c:69:62:d4:a1:
a6:b9:8e:df:79:8a:ac:5d:ee:0b:4b:8c:62:8f:f9:d9:8b:b6:
40:d5:19:76:76:71:a5:dd:1e:91:1a:8b:55:01:98:55:8b:14:
db:69:ce:00:75:8d:cd:32:ad:f0:1e:c2:e1:62:21:08:28:b1:
de:61:ee:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 15:51:04 2026 by rpki-client