Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.mft
File: qltHHQugidnp9GwpExlnT6yBKNA.mft (raw, json)
Hash identifier: 87WIbPpavhXdYHwAXNWDX5EizItvbl5Z95tl1f5s8Us=
Subject key identifier: B8:3F:59:E3:50:77:49:C7:FE:0A:27:B7:97:70:71:85:E4:44:A2:D3
Authority key identifier: AA:5B:47:1D:0B:A0:89:D9:E9:F4:6C:29:13:19:67:4F:AC:81:28:D0
Certificate issuer: /CN=aa5b471d0ba089d9e9f46c291319674fac8128d0
Certificate serial: 019E1F7E7FCE8190B7FF5952320740E5C481
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qltHHQugidnp9GwpExlnT6yBKNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.mft
Manifest number: 0F59
Signing time: Wed 13 May 2026 04:00:44 +0000
Manifest this update: Wed 13 May 2026 04:00:44 +0000
Manifest next update: Thu 14 May 2026 04:00:44 +0000
Files and hashes: 1: RGHMhabHZkPW5wXprVh6WUeUNEU.roa (hash: aWxpktwD4HwK4DqUq/i3jSDZlGsjYGbb6rrk+6zxpz0=)
2: hW9pmZmoOAPv4EQxUHQXTXDJr6s.roa (hash: mjwhxdNEgH8aH/IfZWkqyz4fW356i+YVNu/YE2e6m8A=)
3: qltHHQugidnp9GwpExlnT6yBKNA.crl (hash: EgDLYNdAfcjf8s2c0BT88X377j73DJ9vHez5X0qywoU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.mft
rsync://rpki.ripe.net/repository/DEFAULT/qltHHQugidnp9GwpExlnT6yBKNA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:7e:7f:ce:81:90:b7:ff:59:52:32:07:40:e5:c4:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa5b471d0ba089d9e9f46c291319674fac8128d0
Validity
Not Before: May 13 04:00:44 2026 GMT
Not After : May 14 04:00:44 2026 GMT
Subject: CN=b83f59e3507749c7fe0a27b797707185e444a2d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:83:35:02:c3:ca:6e:bb:c9:77:e2:90:e9:77:
1d:43:1c:bb:c0:35:35:12:fa:0d:eb:d7:1d:ce:44:
74:c4:da:63:60:d3:4a:6d:b6:8c:9f:08:4c:fa:67:
2e:3c:bd:01:a3:24:b4:84:5b:0e:c6:35:35:02:3c:
55:d5:43:1b:f7:97:d0:99:0f:81:c1:55:97:46:d4:
49:64:be:5a:82:05:d9:43:bc:f3:3f:b6:10:65:71:
cb:a6:63:08:78:33:ed:83:cf:00:a4:70:50:3d:85:
68:c4:1e:71:af:e5:02:df:72:8b:3e:d3:4a:20:e1:
99:3b:c1:56:e8:20:e5:2f:c1:0c:31:00:96:cf:55:
58:a7:1a:6c:cc:bd:99:6c:fd:b7:91:2c:a5:ce:4e:
89:e4:92:be:2c:db:87:9e:5c:28:30:34:1d:9c:a7:
5e:af:8f:61:c9:cf:84:75:13:8a:ba:ff:8d:d5:95:
f1:c6:b2:24:ce:5e:1c:17:6d:55:fd:fe:e7:1b:57:
e0:9c:99:93:7d:87:ae:77:dd:6f:50:42:b7:2d:aa:
0b:dd:2c:a9:28:69:c3:d0:fd:20:2c:7d:d1:4d:07:
2b:89:af:80:e5:0f:85:b1:d4:b4:c5:92:18:32:de:
ce:6b:64:d9:c0:f4:e2:98:a1:43:4d:f3:09:44:12:
64:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:3F:59:E3:50:77:49:C7:FE:0A:27:B7:97:70:71:85:E4:44:A2:D3
X509v3 Authority Key Identifier:
keyid:AA:5B:47:1D:0B:A0:89:D9:E9:F4:6C:29:13:19:67:4F:AC:81:28:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qltHHQugidnp9GwpExlnT6yBKNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:59:8c:c8:04:42:d8:4b:80:d4:b4:5e:6f:8d:36:f2:7a:64:
de:52:5d:f1:a0:bb:d4:1b:49:9f:2a:5e:75:d3:30:3e:3a:06:
4f:08:c5:ba:f8:8c:cb:20:d4:17:42:9b:8b:e5:a4:24:93:b8:
56:13:32:98:22:9e:da:cd:2e:86:c0:d8:a4:d9:7a:cd:ad:3b:
23:0b:5e:61:45:73:4c:ed:7a:c0:fc:40:bd:4c:aa:6b:32:68:
59:cd:d8:bf:24:65:44:01:18:6d:d3:b4:aa:96:5f:b6:1e:4d:
93:da:e9:47:7f:e7:aa:7e:eb:66:7e:01:d1:18:81:50:4b:b3:
8f:ef:ac:88:2c:31:b6:96:4e:9e:da:86:2e:e4:6b:72:e9:89:
39:c9:77:ab:f4:a0:f2:fb:ae:13:c5:5b:ae:d9:a1:fa:a9:36:
06:7a:2e:c6:09:71:a7:c4:cf:cc:46:57:31:0c:6d:01:1c:1c:
aa:b1:69:cf:e7:38:23:ce:7c:33:23:d5:96:dd:7a:dc:ea:45:
a2:ba:0b:08:f8:02:d4:ad:0b:1a:53:13:ea:91:da:39:b2:cc:
18:a3:93:92:b2:de:5b:0d:dd:a0:58:02:f0:65:86:db:b4:e7:
1d:dd:32:b2:9f:23:62:78:2e:33:30:4b:c8:e0:71:e8:a2:bd:
8a:87:c4:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:42:56 2026 by rpki-client