Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
File: QBY91EFO8-eS4AUB80786UQKnE4.mft (raw, json)
Hash identifier: u1P3SctX9gNJRKCKVOhTxFtsJDtaeykfoP3iIckn93U=
Subject key identifier: 5A:B7:9E:96:9C:81:FD:01:B5:49:D2:83:D8:66:9B:02:14:1B:CD:E3
Authority key identifier: 40:16:3D:D4:41:4E:F3:E7:92:E0:05:01:F3:4E:FC:E9:44:0A:9C:4E
Certificate issuer: /CN=40163dd4414ef3e792e00501f34efce9440a9c4e
Certificate serial: 019EBFFF35A68C6575BC77D3FD0F85F6A8AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
Manifest number: 195C
Signing time: Sat 13 Jun 2026 08:00:33 +0000
Manifest this update: Sat 13 Jun 2026 08:00:33 +0000
Manifest next update: Sun 14 Jun 2026 08:00:33 +0000
Files and hashes: 1: QBY91EFO8-eS4AUB80786UQKnE4.crl (hash: 4vXrKOfes6ieomrfqFHJvFbZaVACdWGBV30eJSPoR+M=)
2: XVQmZyZgIfyuS-i9_dYYU_5CGT0.roa (hash: BPYDVshqMOmc9U1pef4+DfyaziPWsnfi+uZonkxHf4c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:ff:35:a6:8c:65:75:bc:77:d3:fd:0f:85:f6:a8:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40163dd4414ef3e792e00501f34efce9440a9c4e
Validity
Not Before: Jun 13 08:00:33 2026 GMT
Not After : Jun 14 08:00:33 2026 GMT
Subject: CN=5ab79e969c81fd01b549d283d8669b02141bcde3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:ba:ec:d7:e0:ee:21:36:0a:7e:b2:e9:b3:69:
c2:1e:d0:65:38:94:c3:ac:6d:c0:97:6d:60:84:71:
31:6d:cf:7f:8d:50:2e:84:61:21:dc:a9:1e:b6:c6:
f5:5a:b6:5e:a5:84:7b:63:16:01:4e:4c:34:bf:6e:
b9:8e:8e:39:6d:5a:65:a7:89:4b:74:c2:cc:c4:a2:
ff:dc:00:c0:fa:9e:3e:b1:14:5e:12:8f:ad:ce:e3:
80:d9:e1:a7:6e:aa:fa:dc:97:db:90:c1:7f:96:31:
5b:e2:b2:28:1b:8a:25:73:ed:4d:2a:22:54:87:c6:
01:07:f6:7c:e3:92:bc:de:7c:75:fa:05:5a:36:90:
68:dd:3b:6c:5f:bb:c8:03:88:61:dc:65:04:57:45:
c4:bb:c6:e1:09:ac:b8:92:0a:60:30:4b:4d:46:1b:
b4:a3:09:64:93:e0:b4:8d:2d:52:d9:bc:4a:fa:e6:
d0:6e:f8:11:59:ce:8a:b4:43:31:ed:f2:5d:55:76:
4a:57:01:5f:b8:05:08:16:9b:10:85:71:3f:7e:8b:
2b:d4:9b:66:fc:70:36:ad:8f:cc:f2:c4:58:2c:58:
6e:cf:31:53:82:7f:a7:52:c6:70:ba:41:77:f9:94:
85:b4:13:da:a9:7b:3a:c7:8e:95:aa:68:37:ad:7e:
ee:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:B7:9E:96:9C:81:FD:01:B5:49:D2:83:D8:66:9B:02:14:1B:CD:E3
X509v3 Authority Key Identifier:
keyid:40:16:3D:D4:41:4E:F3:E7:92:E0:05:01:F3:4E:FC:E9:44:0A:9C:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QBY91EFO8-eS4AUB80786UQKnE4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/521438-3e04-4d72-88de-3622ac7d65cc/1/QBY91EFO8-eS4AUB80786UQKnE4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:c3:a4:1e:53:81:39:ff:1e:a1:53:e8:6b:75:7c:b2:15:0c:
1f:ab:c1:5e:91:64:23:e3:33:8c:33:01:74:ee:b6:76:bf:b2:
85:61:60:ec:f6:22:16:2c:72:46:9d:14:4a:39:18:7c:11:f0:
ec:1a:e0:97:47:ea:aa:c4:34:b3:0d:b2:1c:1e:1a:ce:97:50:
66:55:93:3b:26:9b:16:9d:fe:a3:0b:62:2e:1d:65:cd:54:3d:
35:7e:b5:f0:d3:e1:6e:b4:c8:ae:04:95:90:30:2b:d6:8e:6c:
c0:54:23:a8:a3:61:c6:a7:94:78:fb:ef:b0:ef:83:ed:77:9c:
25:0c:46:e2:ef:3e:4b:0d:d8:67:ad:ce:98:b7:87:24:14:d6:
c6:ee:1a:ce:33:42:60:e3:e7:e4:c6:c8:bd:69:4d:d9:9e:9d:
81:63:69:5d:05:44:95:35:58:e9:f6:90:74:d6:24:fc:1f:78:
42:18:e5:d2:99:47:81:08:70:73:92:d3:5d:17:73:43:10:a0:
d3:87:d8:c0:46:6c:01:80:b9:18:01:01:b7:58:3c:42:f5:cb:
f0:24:48:b2:d7:85:13:8d:80:9f:c5:05:f6:5b:81:95:e6:39:
34:23:10:bc:4f:f7:a8:1c:78:df:ef:e3:9b:5d:d6:b0:f0:8d:
1f:b0:00:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 17:43:52 2026 by rpki-client