Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
File: QH0twQwC9ewk9pD59mBVVIZWLlk.mft (raw, json)
Hash identifier: dmTr8AoFCPsYK7KMHg/7iWHYdNAEtYgKeLhhlx7kAL8=
Subject key identifier: DE:C8:5D:A2:99:F0:EA:2C:D8:8E:5D:06:9C:F1:DA:3C:18:25:8C:FC
Authority key identifier: 40:7D:2D:C1:0C:02:F5:EC:24:F6:90:F9:F6:60:55:54:86:56:2E:59
Certificate issuer: /CN=407d2dc10c02f5ec24f690f9f660555486562e59
Certificate serial: 019EC2CA3A478085AAAC314240F2ED600DFC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QH0twQwC9ewk9pD59mBVVIZWLlk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
Manifest number: 165A
Signing time: Sat 13 Jun 2026 21:01:33 +0000
Manifest this update: Sat 13 Jun 2026 21:01:33 +0000
Manifest next update: Sun 14 Jun 2026 21:01:33 +0000
Files and hashes: 1: FtvcAFkah5MC2Z1_PcfWmzKSll8.roa (hash: lAzH9ctEUVZ0nWk96qJfvTNhA1rNNyQ5u0vfPKjJ5TI=)
2: QH0twQwC9ewk9pD59mBVVIZWLlk.crl (hash: Ie8q/ZN0taA7XNcM5ZcqLU/SXUjrIEGscOjNIer1IOw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QH0twQwC9ewk9pD59mBVVIZWLlk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:ca:3a:47:80:85:aa:ac:31:42:40:f2:ed:60:0d:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=407d2dc10c02f5ec24f690f9f660555486562e59
Validity
Not Before: Jun 13 21:01:33 2026 GMT
Not After : Jun 14 21:01:33 2026 GMT
Subject: CN=dec85da299f0ea2cd88e5d069cf1da3c18258cfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:a9:01:7d:f7:b1:a3:b3:28:5b:b1:be:62:93:
2f:a8:44:f3:9c:c8:34:39:da:d7:93:ea:1e:03:ff:
9f:0f:8d:39:52:d0:3b:ba:ce:05:93:45:e4:6d:ea:
fe:36:a1:30:86:63:e9:be:bb:84:6a:ba:49:65:c5:
09:46:ea:be:37:24:21:42:5a:ab:93:ee:bd:4e:b6:
8e:e0:42:12:82:d9:df:68:62:d6:29:85:af:d1:16:
9b:57:fb:9b:b6:a5:b6:82:04:5d:ed:6a:af:40:81:
ca:d4:fe:26:f1:f9:03:74:9d:a4:1e:27:65:d6:2f:
53:56:f9:27:4a:51:f0:ce:47:39:57:0a:53:a5:2e:
1f:48:5a:36:c2:37:df:be:51:c4:b4:a2:99:a8:0c:
58:cc:46:16:c5:d3:8d:1c:90:53:b6:08:af:73:c4:
09:d7:16:81:b7:29:89:3c:15:e7:4d:54:d2:c2:a7:
37:96:c1:52:9c:8f:0f:67:99:bb:a5:4f:b3:c7:18:
09:45:36:47:20:f2:87:2d:26:00:a8:bc:af:95:7c:
39:e6:b0:bc:d3:e0:19:e1:d2:04:eb:27:03:32:e9:
b6:4b:b7:d0:12:25:80:86:f8:17:75:70:3e:1f:ea:
fd:4d:75:4c:a0:a6:6e:32:c5:a8:86:ea:f3:f4:3d:
95:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:C8:5D:A2:99:F0:EA:2C:D8:8E:5D:06:9C:F1:DA:3C:18:25:8C:FC
X509v3 Authority Key Identifier:
keyid:40:7D:2D:C1:0C:02:F5:EC:24:F6:90:F9:F6:60:55:54:86:56:2E:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QH0twQwC9ewk9pD59mBVVIZWLlk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:1c:99:52:c0:89:3d:88:86:e1:96:95:4e:c5:58:37:f6:e4:
17:9b:40:42:60:51:de:07:ca:cb:f7:d0:75:9c:87:5e:8f:3f:
6f:72:4d:13:2a:96:2e:0d:70:79:30:70:6f:4b:c6:fe:8a:06:
9b:26:35:41:e1:91:73:28:7f:00:67:f4:ec:22:91:df:5f:35:
d7:b2:a1:7c:de:f6:b6:c9:b9:df:85:80:1a:57:b7:30:53:bc:
0c:a6:60:6e:80:59:2e:08:85:d7:f9:3d:48:cf:97:3e:11:0b:
0a:60:9a:c4:c0:45:d8:84:8c:7e:04:50:b1:16:a8:ab:24:db:
70:ae:f2:f5:24:7a:12:32:3e:1f:0a:71:9e:ea:bd:1a:35:2a:
c8:bc:b1:a6:10:fe:2c:ef:24:88:4d:d1:35:0f:47:b7:37:77:
91:2c:fb:22:5c:da:80:0c:66:c3:3f:1e:3f:69:f4:07:42:fd:
e4:7a:83:c7:c4:c1:0c:f1:f9:e4:8f:2e:c3:4b:f7:97:24:85:
9f:67:45:f3:aa:17:f5:dc:9f:21:42:04:22:ff:21:a1:f4:44:
2d:93:d8:5d:c6:df:cd:d9:07:d0:e4:b3:fe:f6:fa:90:75:26:
37:7c:ae:1c:a8:17:f4:42:8b:9c:9f:99:9c:6a:e5:ba:ee:7f:
17:65:76:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 00:39:23 2026 by rpki-client