Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/3c7f83-bc28-4282-aa02-969f2a00ede0/1/QpXD7wDP_s4vcbYZkcbG09pJwRA.mft
File: QpXD7wDP_s4vcbYZkcbG09pJwRA.mft (raw, json)
Hash identifier: saMeFzfyWziPgDIUAZocGhAEOREjA2WSXH6KVGcF8Ok=
Subject key identifier: FC:56:4D:9B:9C:51:1F:79:EA:BC:34:3F:C9:B5:B9:48:B0:E8:5B:50
Authority key identifier: 42:95:C3:EF:00:CF:FE:CE:2F:71:B6:19:91:C6:C6:D3:DA:49:C1:10
Certificate issuer: /CN=4295c3ef00cffece2f71b61991c6c6d3da49c110
Certificate serial: 019E1DFE715E2A77D1572B7002D8EE547DBF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QpXD7wDP_s4vcbYZkcbG09pJwRA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/3c7f83-bc28-4282-aa02-969f2a00ede0/1/QpXD7wDP_s4vcbYZkcbG09pJwRA.mft
Manifest number: 05F0
Signing time: Tue 12 May 2026 21:01:14 +0000
Manifest this update: Tue 12 May 2026 21:01:14 +0000
Manifest next update: Wed 13 May 2026 21:01:14 +0000
Files and hashes: 1: BIcN5aoAOl1KvHqrpwSgfpe3bKQ.roa (hash: lnNlQg8amQO6kFSvzSOC3nKLC4UQiHYnnxg5VQ58z58=)
2: QpXD7wDP_s4vcbYZkcbG09pJwRA.crl (hash: 0NLmnxIwdohYHrilUeN2DH98Io8xL831/bNYOCDpN3M=)
3: mFfXpLKFugPnpjv01dOdi4FA4Gw.roa (hash: 3g2SXGJpuzV1vU10pMqGPocyoDuCUv6hUHSIZHwoqs4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/3c7f83-bc28-4282-aa02-969f2a00ede0/1/QpXD7wDP_s4vcbYZkcbG09pJwRA.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/3c7f83-bc28-4282-aa02-969f2a00ede0/1/QpXD7wDP_s4vcbYZkcbG09pJwRA.mft
rsync://rpki.ripe.net/repository/DEFAULT/QpXD7wDP_s4vcbYZkcbG09pJwRA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 21:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:fe:71:5e:2a:77:d1:57:2b:70:02:d8:ee:54:7d:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4295c3ef00cffece2f71b61991c6c6d3da49c110
Validity
Not Before: May 12 21:01:14 2026 GMT
Not After : May 13 21:01:14 2026 GMT
Subject: CN=fc564d9b9c511f79eabc343fc9b5b948b0e85b50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:20:23:73:96:2c:69:44:2f:b4:f5:92:40:08:
9a:24:d9:88:b6:4d:67:52:7e:37:b5:15:b0:1b:36:
9f:f1:f7:50:21:4d:66:fd:57:d1:8b:dc:9c:37:91:
36:c2:71:a1:80:18:60:7e:b9:68:c0:44:5a:72:35:
78:c8:a9:13:42:7a:b8:45:f4:d3:a0:20:b4:44:3d:
7d:b1:16:49:1a:15:b4:fa:0f:ea:5a:a2:66:97:f9:
eb:50:a3:d7:3e:7d:82:e4:20:0e:4e:1e:87:60:55:
4b:13:69:fd:73:62:f8:11:af:36:f9:9a:56:d8:d7:
3c:a9:b7:51:7f:dd:40:a3:1b:a5:c4:1e:8b:4a:00:
f0:16:ac:cb:86:ae:8d:f6:92:0d:f9:24:c9:5d:b8:
3c:9a:68:a0:78:7d:80:ce:93:d3:3a:86:89:68:e7:
46:e2:a8:9a:c8:db:14:a5:3e:cf:34:fc:c5:34:7c:
86:b6:81:aa:4b:ba:80:e8:bc:eb:3b:a4:50:79:bd:
f9:50:28:f5:5d:7d:3f:1a:7a:31:64:72:fd:ce:c1:
ea:ef:10:de:ae:b8:3c:de:79:50:6e:3f:f9:f8:79:
e6:33:5b:95:71:be:12:7c:ca:ff:aa:9e:58:7b:86:
0a:d4:21:23:a0:ae:f0:c0:dd:02:5e:88:ac:aa:cd:
a9:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:56:4D:9B:9C:51:1F:79:EA:BC:34:3F:C9:B5:B9:48:B0:E8:5B:50
X509v3 Authority Key Identifier:
keyid:42:95:C3:EF:00:CF:FE:CE:2F:71:B6:19:91:C6:C6:D3:DA:49:C1:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QpXD7wDP_s4vcbYZkcbG09pJwRA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/3c7f83-bc28-4282-aa02-969f2a00ede0/1/QpXD7wDP_s4vcbYZkcbG09pJwRA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/3c7f83-bc28-4282-aa02-969f2a00ede0/1/QpXD7wDP_s4vcbYZkcbG09pJwRA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:a2:b6:33:fb:21:5a:d3:3f:66:ae:27:9e:64:6d:5d:83:a1:
ea:ee:73:e6:4c:51:60:d7:38:09:c8:f0:95:6a:88:a1:cf:81:
94:d7:85:2d:a4:3b:51:99:55:db:89:0b:57:ae:20:82:a0:83:
16:01:56:a3:6a:c5:3f:19:48:fc:b7:de:49:5e:ab:a0:df:b8:
b4:1e:a4:f8:2c:5b:12:fb:4b:8a:d8:61:cd:d2:ce:f9:d6:73:
92:72:96:e6:c9:bd:f3:4b:41:6f:69:5d:19:ba:b7:e5:54:58:
e9:76:16:e4:73:75:cb:ec:d7:9b:27:5c:1d:d8:4c:2f:f4:8e:
c5:79:a2:dc:de:62:21:d3:aa:08:e0:92:07:51:81:c6:69:cf:
f6:22:ac:37:a1:10:78:1d:1a:ee:cd:81:fd:bd:9b:e6:ed:ed:
64:52:64:76:9a:08:41:c4:87:51:d7:5a:42:ac:19:55:9a:7c:
39:07:ef:27:0f:e4:bc:de:41:db:6d:2a:bb:0a:16:91:cd:b6:
63:90:fd:df:dd:07:a1:62:3c:0c:7d:71:75:0e:26:0e:99:4e:
58:53:95:5a:ac:56:e8:3b:48:62:1e:f9:ca:7d:0e:52:e2:2b:
a7:ec:2b:0c:58:70:cb:da:1e:d6:aa:81:84:96:75:ad:74:45:
fe:e9:b9:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:28:16 2026 by rpki-client