Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.mft
File: QM9pzKLIbhlHVHiO3NiONS7U4Rw.mft (raw, json)
Hash identifier: N7+tgBSRsfyhUUbTU8Kf0yTqepJ9CN1IjPpzOEdWsvc=
Subject key identifier: A1:62:B6:FA:F6:0D:13:5C:D8:96:EF:3A:48:F1:C9:56:6C:A3:BA:89
Authority key identifier: 40:CF:69:CC:A2:C8:6E:19:47:54:78:8E:DC:D8:8E:35:2E:D4:E1:1C
Certificate issuer: /CN=40cf69cca2c86e194754788edcd88e352ed4e11c
Certificate serial: 019E1E6C053410867A6F16B79085C9EE0F3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QM9pzKLIbhlHVHiO3NiONS7U4Rw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.mft
Manifest number: 0F24
Signing time: Tue 12 May 2026 23:00:56 +0000
Manifest this update: Tue 12 May 2026 23:00:56 +0000
Manifest next update: Wed 13 May 2026 23:00:56 +0000
Files and hashes: 1: QM9pzKLIbhlHVHiO3NiONS7U4Rw.crl (hash: adMi9X8+PSqRPaphEuI1sV3x9nvgfF9xJtDlEB58rsk=)
2: yaEEybz2NfCWEApyu2Dzx2yLpcI.roa (hash: j2pzI49xHsyv/Ol3MBefWz6almNV2xHEmt1n4qjR/Wk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.mft
rsync://rpki.ripe.net/repository/DEFAULT/QM9pzKLIbhlHVHiO3NiONS7U4Rw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:6c:05:34:10:86:7a:6f:16:b7:90:85:c9:ee:0f:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40cf69cca2c86e194754788edcd88e352ed4e11c
Validity
Not Before: May 12 23:00:56 2026 GMT
Not After : May 13 23:00:56 2026 GMT
Subject: CN=a162b6faf60d135cd896ef3a48f1c9566ca3ba89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:23:f7:61:d1:f7:04:c3:b1:3f:a1:18:bb:bb:
11:ff:6e:86:ae:2e:7f:81:fd:14:e8:b5:a8:33:06:
41:0e:0c:25:bb:ca:e6:21:41:b3:7f:83:3a:f0:17:
54:7f:01:b0:c0:d3:1f:0e:bc:89:74:22:34:d8:5a:
0c:b9:62:50:a7:d8:c1:a4:42:18:da:85:52:1a:fb:
c5:45:cd:bb:8c:18:7f:be:ea:59:19:13:57:d3:ba:
d3:fb:fe:26:0e:e1:fd:5f:b1:0a:51:17:05:18:a6:
95:f8:63:ff:0d:ed:26:c4:ec:4f:5e:74:ed:20:d2:
1b:11:5e:6a:49:84:37:07:49:9d:78:38:6b:10:48:
ba:7a:dd:47:37:25:75:9f:91:cf:f4:38:e2:a3:32:
0a:ce:7b:91:a1:aa:2a:ef:79:04:c7:ad:2b:b2:be:
0e:2a:8a:6f:e1:5f:3a:03:f6:01:08:08:16:0a:91:
05:95:d5:e9:72:db:5e:6d:c8:e8:61:a8:2b:62:eb:
49:53:06:8b:2a:3b:ab:eb:f7:80:21:15:3a:1b:9f:
87:f2:09:76:c0:68:a7:ae:50:98:8c:49:13:ae:c8:
2e:c6:30:83:05:d0:01:e1:cc:3d:0d:2e:ff:55:fe:
c8:69:96:31:eb:65:89:d0:e6:f3:1a:5e:8b:f9:57:
5e:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:62:B6:FA:F6:0D:13:5C:D8:96:EF:3A:48:F1:C9:56:6C:A3:BA:89
X509v3 Authority Key Identifier:
keyid:40:CF:69:CC:A2:C8:6E:19:47:54:78:8E:DC:D8:8E:35:2E:D4:E1:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QM9pzKLIbhlHVHiO3NiONS7U4Rw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:9f:9e:87:0c:ed:eb:94:73:8e:71:73:cb:2a:69:8e:cd:55:
64:7b:fd:d0:a8:93:34:34:ac:9d:09:84:c1:74:4a:13:11:7b:
0b:cc:83:fc:5a:d1:6b:6a:71:48:b2:d4:f9:d4:4f:a0:65:49:
f3:67:93:99:2e:19:1d:3c:bc:a2:f7:8d:1f:bb:f6:8e:9b:8c:
41:98:cb:21:60:68:8c:bf:c7:9d:de:dc:dd:90:57:82:c8:90:
75:11:c5:ab:95:9b:43:a8:6b:1e:b3:dd:41:b6:29:0a:7e:b0:
5f:14:99:f9:1b:d8:80:db:7c:72:a8:29:b0:8c:d5:1d:17:4c:
5e:32:bc:1b:39:f8:9a:8d:a9:81:a4:16:71:a5:e4:b9:d2:f3:
9d:dc:2a:ea:8c:0e:63:44:42:56:0f:f7:28:e2:91:73:fa:9a:
90:d6:37:18:20:07:d3:b5:e4:04:23:ce:15:33:8d:8a:cf:7e:
06:95:68:2d:cb:c7:69:a7:6e:36:bc:ff:6f:43:6a:c9:6a:ee:
c1:3b:41:9d:a2:6e:00:41:32:12:49:62:61:f6:f9:56:e0:0a:
e1:49:c9:25:02:4a:89:83:c7:ac:58:73:2b:d4:dd:c4:74:b1:
b6:c1:73:6f:83:c0:20:b0:dc:f3:db:ab:4e:f2:f3:9a:67:bb:
fa:d9:46:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 08:59:40 2026 by rpki-client