Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.mft
File: QTe22qILXgYYYrb7meI2rCwuNPg.mft (raw, json)
Hash identifier: 5izHsPCgS5j54aLokTZ8zPFF1xbvt3SKEELnoBbndrw=
Subject key identifier: D2:E4:A5:3F:B6:73:77:74:FD:D6:9C:8D:D9:8E:A2:74:29:65:DA:2E
Authority key identifier: 41:37:B6:DA:A2:0B:5E:06:18:62:B6:FB:99:E2:36:AC:2C:2E:34:F8
Certificate issuer: /CN=4137b6daa20b5e061862b6fb99e236ac2c2e34f8
Certificate serial: 019E1EA3C263E090B480F8B09BA1C4BA62CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QTe22qILXgYYYrb7meI2rCwuNPg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.mft
Manifest number: 08D5
Signing time: Wed 13 May 2026 00:01:48 +0000
Manifest this update: Wed 13 May 2026 00:01:48 +0000
Manifest next update: Thu 14 May 2026 00:01:48 +0000
Files and hashes: 1: QTe22qILXgYYYrb7meI2rCwuNPg.crl (hash: n0hCHXQ5K3E397QtW+Iy8lqjsoLCoqNDYXLrivuMG5w=)
2: cnMksPM8qHUJS7PE1xwm-IJZIEs.roa (hash: F0Xawui/3p0KQ1PsdF0IPS6D5QX+wIN0HvSrMKPyjOo=)
3: iXKcLuJmGyAb1eHjCTVSp7W3GfM.roa (hash: fKesRGsQOYtr1MHvJTlZYCSawG7ul48aKfBiS+3ImGM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.mft
rsync://rpki.ripe.net/repository/DEFAULT/QTe22qILXgYYYrb7meI2rCwuNPg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 00:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a3:c2:63:e0:90:b4:80:f8:b0:9b:a1:c4:ba:62:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4137b6daa20b5e061862b6fb99e236ac2c2e34f8
Validity
Not Before: May 13 00:01:48 2026 GMT
Not After : May 14 00:01:48 2026 GMT
Subject: CN=d2e4a53fb6737774fdd69c8dd98ea2742965da2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:1b:d2:57:7a:b4:73:d7:6f:5f:19:ae:e4:d7:
14:0c:3e:d8:34:f0:48:5c:5e:85:58:fb:92:43:24:
15:e3:5f:5d:00:0c:75:89:c6:eb:b5:8e:08:75:0e:
26:82:c3:2c:0f:45:7b:7a:17:c8:fb:94:02:3f:50:
80:b3:47:a5:25:f3:26:7c:1e:e6:37:94:04:51:f3:
ec:84:78:5f:82:81:01:1c:9d:8c:23:65:17:9c:20:
fc:57:c5:62:c9:b6:c8:19:fa:82:43:cf:6e:cb:c0:
2c:20:b0:2b:54:03:51:7e:52:3b:f3:0c:42:65:5b:
cf:ed:f1:a7:1b:8e:b7:69:5f:4c:5a:15:bb:6c:87:
4f:05:02:5b:39:a7:09:70:87:00:e1:97:97:ba:7c:
a3:72:ca:17:ea:8d:9f:7e:85:e6:d6:b6:6d:ba:82:
c3:0f:6e:54:50:d3:3a:3d:ef:55:e4:4d:66:83:d0:
d1:21:aa:6a:dd:65:d3:ef:7a:b0:49:31:81:c7:76:
dd:ca:4f:58:7d:44:61:c3:f2:86:42:f6:b0:0f:b0:
88:74:4a:06:c2:05:e5:b7:39:9b:2e:b1:d2:71:34:
39:a0:fe:2f:d6:5d:51:9e:17:91:6b:5c:96:fc:40:
40:87:f9:42:dd:ec:cf:e1:98:3d:ee:92:a9:c0:5b:
60:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:E4:A5:3F:B6:73:77:74:FD:D6:9C:8D:D9:8E:A2:74:29:65:DA:2E
X509v3 Authority Key Identifier:
keyid:41:37:B6:DA:A2:0B:5E:06:18:62:B6:FB:99:E2:36:AC:2C:2E:34:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QTe22qILXgYYYrb7meI2rCwuNPg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:30:66:ba:f8:26:d6:c5:8b:fa:64:63:da:0b:76:15:ef:2f:
71:f0:32:1d:fa:97:75:cf:c8:29:86:54:26:38:04:2c:f8:40:
a7:6e:66:84:81:63:be:19:ac:ce:d4:27:6b:76:e4:2b:5d:05:
eb:71:71:2e:aa:55:95:5c:fa:15:05:3f:d4:85:81:5d:4c:d3:
73:c0:e7:a6:f0:2e:e2:8d:0d:04:e4:90:25:cd:b6:be:a6:a5:
93:69:f4:32:26:0d:ae:ec:81:26:6f:62:83:98:22:01:ec:15:
00:18:14:60:d7:b2:6e:c5:2b:84:5c:d0:c1:80:94:4c:49:09:
58:55:d7:80:4a:be:08:be:5a:4f:43:72:c3:f2:3b:b5:c3:c2:
43:4a:88:bd:a8:a8:8c:37:04:c3:07:fe:af:56:69:2c:41:f1:
41:90:11:85:8d:07:b4:6b:b9:1d:95:9b:24:ca:47:c6:71:94:
6e:37:72:9d:e6:5e:2c:89:ea:7c:69:3a:f2:33:e9:91:30:f1:
49:6d:ef:ad:91:2d:f5:36:a2:0b:68:d4:87:f8:96:e1:c2:79:
f3:d0:ae:ef:d2:e3:c3:00:c0:45:33:97:0f:a8:be:60:64:44:
f4:4f:e3:07:05:84:dd:17:cd:40:7e:89:9d:38:11:b1:ad:a2:
24:f8:cc:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 10:24:06 2026 by rpki-client