Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/a26050-49ec-4955-9810-e5453707a58e/1/qyt5QmiS7R2nsuYYZ3DPsErmA80.mft
File: qyt5QmiS7R2nsuYYZ3DPsErmA80.mft (raw, json)
Hash identifier: RR8fsBe/kLeV6X4OGGCPOka8LRr26uE+Xo6NqneNT5o=
Subject key identifier: 4E:21:0F:87:79:71:8D:60:A1:05:DC:AD:D8:08:65:3A:8F:39:62:27
Authority key identifier: AB:2B:79:42:68:92:ED:1D:A7:B2:E6:18:67:70:CF:B0:4A:E6:03:CD
Certificate issuer: /CN=ab2b79426892ed1da7b2e6186770cfb04ae603cd
Certificate serial: 019EC06DC3DDA149ACA17275917374571509
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qyt5QmiS7R2nsuYYZ3DPsErmA80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/a26050-49ec-4955-9810-e5453707a58e/1/qyt5QmiS7R2nsuYYZ3DPsErmA80.mft
Manifest number: 0C01
Signing time: Sat 13 Jun 2026 10:01:19 +0000
Manifest this update: Sat 13 Jun 2026 10:01:19 +0000
Manifest next update: Sun 14 Jun 2026 10:01:19 +0000
Files and hashes: 1: Ep1UdBXzCWlqSTpFzem1RUVZTHA.asa (hash: f0L/PAFatn0IgaIhqoEyZoZ0cRFuKV57J/o6cZd4vJM=)
2: UVwGUstyqvelkq37jwrCyB34k94.asa (hash: E7qX0L3M0NDAHs6Gtk5Rp5Gs8S25rdSfJnVG4BtVL6w=)
3: qyt5QmiS7R2nsuYYZ3DPsErmA80.crl (hash: FWM5tNg8sKZtFdMTb0QZYNJjzf+QFfIFB3A63+wzhDU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/a26050-49ec-4955-9810-e5453707a58e/1/qyt5QmiS7R2nsuYYZ3DPsErmA80.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/a26050-49ec-4955-9810-e5453707a58e/1/qyt5QmiS7R2nsuYYZ3DPsErmA80.mft
rsync://rpki.ripe.net/repository/DEFAULT/qyt5QmiS7R2nsuYYZ3DPsErmA80.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:6d:c3:dd:a1:49:ac:a1:72:75:91:73:74:57:15:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2b79426892ed1da7b2e6186770cfb04ae603cd
Validity
Not Before: Jun 13 10:01:19 2026 GMT
Not After : Jun 14 10:01:19 2026 GMT
Subject: CN=4e210f8779718d60a105dcadd808653a8f396227
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:81:86:88:46:f2:52:1c:21:f3:1a:d0:aa:5f:
d2:f6:ed:f1:5c:3b:16:1b:32:11:2b:7b:f5:e5:d3:
37:fc:b3:ec:20:a0:b0:a0:41:e2:f5:ce:fa:9e:5d:
e0:12:d2:72:04:73:29:49:7b:f1:b9:7a:62:87:58:
89:a6:0c:7e:6d:1c:f5:9e:c9:ea:3e:6a:2b:61:53:
e3:50:b7:69:11:21:a0:66:6d:89:01:e3:54:c5:2a:
51:0b:2d:b0:31:ba:3d:ad:9e:d4:11:6a:a8:32:51:
ee:ab:77:69:a7:3a:8c:76:bb:14:c2:0f:88:92:96:
c1:f0:ec:1d:d3:3b:7c:a3:2d:33:89:3e:ec:04:04:
0c:cd:dd:c4:cb:91:20:51:20:dc:a1:e2:30:a1:f5:
20:c8:6e:23:a8:84:95:1e:57:56:29:14:9e:fc:e7:
2f:f4:7f:89:09:dd:be:4b:96:d6:97:ec:6e:ee:5f:
27:d2:b6:48:1c:09:8f:0b:ed:fe:a1:f3:58:f0:75:
01:f8:c4:16:a0:db:97:6c:54:6c:4d:7f:8f:5f:11:
83:93:ee:4d:95:8e:b3:a7:ff:57:28:c8:cd:4a:35:
5a:b1:04:51:fc:58:39:36:18:fb:e4:d4:f0:fd:b0:
fb:82:94:92:9f:62:23:98:fd:0b:88:bb:d2:d8:a9:
6e:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:21:0F:87:79:71:8D:60:A1:05:DC:AD:D8:08:65:3A:8F:39:62:27
X509v3 Authority Key Identifier:
keyid:AB:2B:79:42:68:92:ED:1D:A7:B2:E6:18:67:70:CF:B0:4A:E6:03:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qyt5QmiS7R2nsuYYZ3DPsErmA80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/a26050-49ec-4955-9810-e5453707a58e/1/qyt5QmiS7R2nsuYYZ3DPsErmA80.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/a26050-49ec-4955-9810-e5453707a58e/1/qyt5QmiS7R2nsuYYZ3DPsErmA80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:08:49:ce:1f:a3:34:54:41:37:39:10:79:36:2a:71:0a:1d:
a3:f1:da:35:16:b3:2c:66:a0:ef:78:56:96:a3:7d:b7:af:91:
69:01:96:09:e0:81:10:26:cb:83:81:33:00:a6:8e:50:71:3a:
35:eb:1b:8f:6b:50:66:88:3b:d0:25:ad:e8:c4:e9:5d:fa:1a:
6e:36:f5:2d:59:d9:c5:18:a5:36:87:f3:03:c4:a0:2e:e9:5b:
81:f7:de:cd:80:a5:7d:b2:82:11:60:2d:1b:75:06:ad:b7:40:
b3:f4:c3:7b:2f:17:7d:f3:19:31:ad:ab:7b:81:d5:eb:a3:40:
15:3a:95:4d:14:7d:70:eb:1d:85:fd:9c:97:b0:a4:b8:db:72:
39:e4:47:9e:1a:bb:7c:00:2c:c7:bb:33:59:ac:a9:78:9b:d3:
32:b7:05:02:c8:34:30:77:82:c9:95:0d:75:d0:5a:f4:96:17:
cb:a5:e0:96:de:1b:e8:f4:6a:0d:c7:a7:3b:55:84:43:c4:82:
0c:6b:f8:c7:c2:0b:2f:0a:08:5e:2f:0e:18:d3:39:00:ba:b1:
61:5a:38:4f:1b:ae:6d:51:92:5a:a3:24:9f:b0:50:cd:25:b5:
da:ef:47:13:10:2e:8c:db:98:22:53:d9:98:7a:25:85:e3:bf:
99:09:1e:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 13:01:21 2026 by rpki-client