Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/aa31cf-bb31-497c-a577-09b969d160fe/1/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.mft
File: Q89BYZOhwu0wVrZH5aRlAxSOOCQ.mft (raw, json)
Hash identifier: WHWKLzoiitAaOkFof80I74Jak0EKARPfrJoNl6ZXhz0=
Subject key identifier: 6E:4E:3C:D4:91:0F:6A:0F:54:AC:7A:77:F6:DB:30:35:3D:CF:D0:6C
Authority key identifier: 43:CF:41:61:93:A1:C2:ED:30:56:B6:47:E5:A4:65:03:14:8E:38:24
Certificate issuer: /CN=43cf416193a1c2ed3056b647e5a46503148e3824
Certificate serial: 019E1EA39D5716A98BF2B3C8322BB917CCEC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/aa31cf-bb31-497c-a577-09b969d160fe/1/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.mft
Manifest number: 09C6
Signing time: Wed 13 May 2026 00:01:39 +0000
Manifest this update: Wed 13 May 2026 00:01:39 +0000
Manifest next update: Thu 14 May 2026 00:01:39 +0000
Files and hashes: 1: Q89BYZOhwu0wVrZH5aRlAxSOOCQ.crl (hash: +FwWeZUKtSqPZQEEzEEWBDqPDSQG6chrOt33NiVE+SQ=)
2: uRy6lNHq57rdX7_VPdepBDiNmnc.roa (hash: 65Rm9CIooU3CDnzNITl4VhD3i1B6DOi7f6KdO4ec990=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/aa31cf-bb31-497c-a577-09b969d160fe/1/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/aa31cf-bb31-497c-a577-09b969d160fe/1/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 00:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a3:9d:57:16:a9:8b:f2:b3:c8:32:2b:b9:17:cc:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43cf416193a1c2ed3056b647e5a46503148e3824
Validity
Not Before: May 13 00:01:39 2026 GMT
Not After : May 14 00:01:39 2026 GMT
Subject: CN=6e4e3cd4910f6a0f54ac7a77f6db30353dcfd06c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:b7:df:1a:2b:7f:6a:78:e0:52:91:fe:cc:9c:
01:42:04:4d:7d:93:6a:2a:98:52:d6:96:22:af:78:
16:22:3a:6b:ac:54:1b:ce:32:aa:ae:23:f6:4f:5a:
4c:f2:9c:ff:43:2b:cd:3c:c1:2b:6e:79:4a:a3:f6:
75:0c:8e:24:55:66:2b:82:28:7c:4c:57:24:c3:4c:
b3:84:9c:43:08:17:cc:23:12:8a:f9:e7:7d:97:64:
2d:9d:7f:28:73:12:74:a0:0a:19:b9:4e:bb:0a:5a:
57:41:c4:af:ad:65:2d:48:01:d3:b3:a7:80:aa:14:
b7:12:32:21:8b:29:72:98:90:d8:90:ad:d5:e4:05:
7a:55:2c:32:7f:1d:2b:a1:78:67:5f:95:bc:73:39:
85:cc:04:1a:d6:83:b5:94:4d:7d:55:49:98:fb:1a:
bb:10:29:8c:8b:3e:72:ac:1b:91:90:0f:b9:56:b2:
15:5d:0f:2d:16:bb:36:f5:b3:7d:60:29:bf:95:11:
af:52:24:00:4c:e0:f8:b6:d3:d8:8e:d4:65:8e:de:
9d:5d:d6:6f:a1:d1:a7:d8:c0:5d:30:79:10:a9:c8:
e4:18:94:ac:36:c4:cd:18:90:c7:4c:dd:65:74:86:
a0:0e:4a:74:80:fc:e3:d6:af:ab:a0:c0:c8:36:45:
98:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:4E:3C:D4:91:0F:6A:0F:54:AC:7A:77:F6:DB:30:35:3D:CF:D0:6C
X509v3 Authority Key Identifier:
keyid:43:CF:41:61:93:A1:C2:ED:30:56:B6:47:E5:A4:65:03:14:8E:38:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/aa31cf-bb31-497c-a577-09b969d160fe/1/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/aa31cf-bb31-497c-a577-09b969d160fe/1/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:65:1c:88:59:f0:10:0e:91:de:fd:90:5c:11:53:b3:6f:a0:
d5:a1:39:2b:ea:ff:ad:d6:03:d8:1e:3d:3b:cb:7c:09:72:91:
ce:e4:cb:ed:ad:57:ae:cb:f7:82:8d:e4:99:fc:ae:8a:36:8f:
a5:c4:9a:fb:7a:93:05:d8:a2:9f:c5:d6:3b:97:a2:b2:49:83:
1d:4b:13:a3:e5:fe:71:11:33:21:3c:82:81:a3:4f:8a:91:00:
ab:5a:34:4c:5f:ae:36:b0:26:4a:31:95:b0:76:e1:d0:e2:c4:
ba:a9:6a:c3:08:16:74:2e:d6:cc:2a:35:74:db:85:95:4d:8e:
fd:a8:9f:0e:d9:c5:e5:c9:f4:aa:f5:75:64:a3:d6:5b:d2:22:
ce:17:0a:c5:bc:8c:be:3a:8c:1e:2f:14:70:ee:f8:fb:42:61:
98:f4:36:a4:49:e2:78:11:3f:61:08:22:0d:bf:6d:6e:c2:18:
87:a1:08:de:36:e8:b1:15:fb:0a:b6:03:34:24:97:ad:a3:ef:
4e:00:ee:10:d6:46:2a:06:d8:4d:94:b3:0b:d9:ef:4f:3c:f0:
b5:42:bf:ff:9a:78:2a:b8:2e:64:fe:5c:8f:05:96:0c:a6:6d:
8a:44:9b:2f:c9:9b:e1:9b:99:dc:eb:dd:c3:23:8e:42:68:5e:
aa:f5:7b:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 11:03:13 2026 by rpki-client