Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.mft
File: Q1SkGSJdXXn0oa4VIKOxpW1FJow.mft (raw, json)
Hash identifier: YL7eQn8cCxpTLaznzG1xECxA4b6kEUUEj10gsQ2/yPM=
Subject key identifier: 72:D1:8A:0B:7C:4F:08:C6:F4:FB:8E:AC:B2:0F:50:84:97:A8:FD:EE
Authority key identifier: 43:54:A4:19:22:5D:5D:79:F4:A1:AE:15:20:A3:B1:A5:6D:45:26:8C
Certificate issuer: /CN=4354a419225d5d79f4a1ae1520a3b1a56d45268c
Certificate serial: 019E20C89E001D5B3961A540910C04298C15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q1SkGSJdXXn0oa4VIKOxpW1FJow.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.mft
Manifest number: 0C7C
Signing time: Wed 13 May 2026 10:01:18 +0000
Manifest this update: Wed 13 May 2026 10:01:18 +0000
Manifest next update: Thu 14 May 2026 10:01:18 +0000
Files and hashes: 1: JXLkT6VnIp-SB5I9EMRZOw0DYZI.roa (hash: l3rRARSXe/Kv5HUcutLJRW5ribdNSHw4ggpcG9Mw0ro=)
2: Q1SkGSJdXXn0oa4VIKOxpW1FJow.crl (hash: TCFtikoW0qe9DgjQ8Rks0rfgZqa1ZgyxuYsmX8ugRYM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q1SkGSJdXXn0oa4VIKOxpW1FJow.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 10:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:c8:9e:00:1d:5b:39:61:a5:40:91:0c:04:29:8c:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4354a419225d5d79f4a1ae1520a3b1a56d45268c
Validity
Not Before: May 13 10:01:18 2026 GMT
Not After : May 14 10:01:18 2026 GMT
Subject: CN=72d18a0b7c4f08c6f4fb8eacb20f508497a8fdee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:3b:95:92:07:6a:5e:6a:a4:d4:38:3c:14:49:
8f:2c:49:8e:e7:cf:1c:00:88:d9:37:eb:e1:e8:93:
ed:be:84:6e:06:53:dd:35:2d:59:94:7f:4c:70:c0:
ec:a2:47:85:27:2d:91:b9:fa:57:a8:b7:16:78:fa:
39:ef:e0:d9:41:f3:cc:b4:64:58:2e:e5:5f:0a:96:
b7:7d:a4:53:69:91:a5:35:85:90:3d:78:8a:83:78:
27:86:1e:db:9e:27:39:57:d7:4b:9e:92:7b:12:e0:
c3:70:d7:1b:39:17:a5:a0:ee:6c:c7:76:95:88:07:
de:73:79:fd:cd:d3:9d:64:8e:fa:8d:4f:36:ea:bc:
ff:1c:92:cc:87:d2:b6:e4:c0:d9:dd:e8:89:e0:8f:
1c:a5:9f:76:72:21:2b:7d:7a:fb:46:6f:8d:57:90:
59:ff:34:d8:d3:9d:18:1c:80:cd:98:f2:f2:ff:06:
46:9f:92:6e:34:63:a4:a5:b8:18:db:57:b1:e5:c1:
ad:00:58:51:9a:01:20:35:c5:f6:9b:ee:95:65:f8:
86:11:61:77:f3:0c:0e:f1:14:85:31:d4:9d:27:3e:
f3:80:10:18:36:d4:fc:80:a8:51:6e:68:78:32:e5:
d1:3a:72:89:83:75:40:0b:59:88:f6:13:66:92:c3:
18:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:D1:8A:0B:7C:4F:08:C6:F4:FB:8E:AC:B2:0F:50:84:97:A8:FD:EE
X509v3 Authority Key Identifier:
keyid:43:54:A4:19:22:5D:5D:79:F4:A1:AE:15:20:A3:B1:A5:6D:45:26:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q1SkGSJdXXn0oa4VIKOxpW1FJow.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:06:6c:6c:36:30:d1:7f:0d:e2:1d:f9:aa:a6:b8:e3:08:46:
06:33:7e:ab:ba:76:bf:96:a9:cd:35:5f:03:30:47:07:e2:64:
ea:5d:d1:e2:57:51:ed:11:09:e8:1e:e5:4b:89:fa:cc:3b:08:
17:76:6f:89:c7:00:1a:0c:7d:17:7d:dd:a4:2d:67:0c:3c:e1:
50:47:81:0d:29:3d:4a:30:e3:5c:ca:05:49:32:69:d0:5c:22:
85:c0:53:32:b4:50:cf:82:f0:84:24:a0:b2:ef:97:5a:d7:e2:
1b:68:1d:26:da:c9:8f:26:c3:09:13:09:98:e6:b8:f2:72:51:
cf:fb:8a:bb:38:eb:77:f4:5a:41:56:31:02:ea:44:a3:da:17:
ff:a9:41:73:fc:10:24:34:9d:03:8d:d7:ab:94:47:cd:ab:e2:
0a:8b:2b:db:13:ac:7c:5e:ae:b9:f3:44:59:2a:b1:10:38:3b:
f7:b4:b1:65:68:94:83:d0:dc:1c:95:fa:0f:2f:35:4c:79:16:
64:a1:59:86:43:81:04:bf:a2:cf:5f:b4:54:65:ec:a4:1d:3b:
b3:23:24:b8:4b:42:5f:8a:6c:7c:eb:3e:4a:91:6a:66:d3:38:
7f:ef:67:41:6f:6c:55:4d:94:9a:18:30:81:95:21:e5:b1:42:
c1:da:a8:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 16:48:47 2026 by rpki-client