Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/955a40-9d94-4f82-88e5-69c6298415f8/1/QukMnRAJsywZRbb45liUg8XqR0M.mft
File: QukMnRAJsywZRbb45liUg8XqR0M.mft (raw, json)
Hash identifier: KZyi8QzcRy2Yim95uGdXOtOEabqAVjUWw9xPA0aTwk0=
Subject key identifier: 95:E5:EE:C7:E2:49:83:65:9F:16:C7:34:15:FD:F0:6D:66:30:CE:08
Authority key identifier: 42:E9:0C:9D:10:09:B3:2C:19:45:B6:F8:E6:58:94:83:C5:EA:47:43
Certificate issuer: /CN=42e90c9d1009b32c1945b6f8e6589483c5ea4743
Certificate serial: 019E2091225EC57CD62A9D049CD8E569DD66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QukMnRAJsywZRbb45liUg8XqR0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/955a40-9d94-4f82-88e5-69c6298415f8/1/QukMnRAJsywZRbb45liUg8XqR0M.mft
Manifest number: 0CF0
Signing time: Wed 13 May 2026 09:00:42 +0000
Manifest this update: Wed 13 May 2026 09:00:42 +0000
Manifest next update: Thu 14 May 2026 09:00:42 +0000
Files and hashes: 1: J5ZOlJUFOltu4GqoVFNsLAc_Yhc.roa (hash: lcx5+pKS3s5wMnsyT5k7DP3iJe+El0QomD11K0ox374=)
2: QukMnRAJsywZRbb45liUg8XqR0M.crl (hash: 5t/jV73Z758uxt2peEt3uDn/2Nhn4uoJ3fMmFZj/6zg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/955a40-9d94-4f82-88e5-69c6298415f8/1/QukMnRAJsywZRbb45liUg8XqR0M.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/955a40-9d94-4f82-88e5-69c6298415f8/1/QukMnRAJsywZRbb45liUg8XqR0M.mft
rsync://rpki.ripe.net/repository/DEFAULT/QukMnRAJsywZRbb45liUg8XqR0M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:91:22:5e:c5:7c:d6:2a:9d:04:9c:d8:e5:69:dd:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42e90c9d1009b32c1945b6f8e6589483c5ea4743
Validity
Not Before: May 13 09:00:42 2026 GMT
Not After : May 14 09:00:42 2026 GMT
Subject: CN=95e5eec7e24983659f16c73415fdf06d6630ce08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:d4:71:f3:de:60:eb:4c:64:2d:7f:a5:e9:2d:
6a:44:f5:df:12:55:70:b9:4b:e2:15:c4:1a:c8:dd:
af:f5:4d:f9:bc:8e:38:3b:b0:82:db:c8:07:67:44:
fc:2e:a4:31:a4:26:c9:d7:cf:dd:cd:de:c3:d2:38:
ad:0d:09:d1:fb:a8:f0:1e:c2:a2:87:b7:53:42:6e:
89:99:e4:d5:b9:7a:8a:b5:e4:de:45:26:92:b8:45:
96:e2:50:e3:f5:5e:66:62:aa:ac:a0:9e:b9:e0:e9:
85:00:0c:26:f7:72:26:aa:6b:3f:1b:ea:81:50:37:
18:db:34:97:cc:b3:96:35:27:cf:cb:04:60:27:21:
0b:34:4b:72:c4:7f:e7:f2:4f:0c:f4:fc:f4:0c:40:
4e:33:2a:12:1f:ca:3b:86:d1:42:b2:3d:2c:4c:95:
c4:35:6b:5d:54:bd:fc:71:79:23:61:c3:de:b3:fe:
e9:e5:dc:8f:fb:61:96:f1:f3:7d:e6:4e:b1:2a:81:
3b:f9:5d:17:7f:81:d6:e5:62:02:21:49:08:4e:60:
31:1b:62:45:fe:cc:78:7e:fd:f0:7c:ac:ab:94:45:
c7:ea:ee:bd:61:a8:69:31:f9:b4:47:bf:92:9b:e6:
7e:2c:cf:ac:c2:ce:4b:46:c5:9f:87:bc:21:04:48:
e7:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:E5:EE:C7:E2:49:83:65:9F:16:C7:34:15:FD:F0:6D:66:30:CE:08
X509v3 Authority Key Identifier:
keyid:42:E9:0C:9D:10:09:B3:2C:19:45:B6:F8:E6:58:94:83:C5:EA:47:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QukMnRAJsywZRbb45liUg8XqR0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/955a40-9d94-4f82-88e5-69c6298415f8/1/QukMnRAJsywZRbb45liUg8XqR0M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/955a40-9d94-4f82-88e5-69c6298415f8/1/QukMnRAJsywZRbb45liUg8XqR0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:63:0e:65:c6:8a:12:a0:8b:64:3f:44:60:c4:82:2f:1b:d5:
fc:6b:b4:02:58:9a:60:89:0b:8f:7a:5a:e8:a7:7a:5a:4b:ff:
4d:9e:de:ce:8d:bb:e6:10:b8:b0:6d:91:14:83:42:5d:fb:25:
e9:22:cd:53:a3:ad:32:d1:37:98:86:73:c1:00:96:26:66:93:
ac:0d:d4:cc:5c:9a:f0:c5:5b:1a:06:65:f9:97:c3:69:63:ed:
01:11:d3:91:a6:8a:91:74:60:02:31:3a:66:94:e0:c1:31:e3:
98:a4:49:37:ed:5a:37:4f:a7:72:88:2f:50:bd:51:73:b5:f4:
c4:b6:52:21:f1:48:46:e3:da:dd:6b:4b:04:89:70:8e:de:2c:
49:af:3c:07:58:4f:a5:18:ac:ca:e5:68:d2:39:64:01:eb:35:
f6:fc:e9:ea:68:33:f3:21:66:26:c1:3c:b1:4c:06:51:b6:8f:
7d:b2:5e:b3:f1:29:af:58:63:fb:13:9a:e6:3f:b0:13:c2:8e:
0b:9d:e7:d2:11:44:4e:ac:c6:28:6b:16:2c:9d:65:ac:ea:bb:
33:ef:ef:b8:6a:db:1c:0a:2b:79:78:e0:a1:00:3b:cc:c6:31:
a1:26:d8:ad:fa:02:41:ab:84:f4:00:bc:96:01:ae:65:39:1f:
1e:6c:ae:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 14:26:21 2026 by rpki-client