Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/c6f86d-f795-419f-ad31-ee9c3452cbaf/1/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.mft
File: QY34aPfZ6Y1P1B5tpZeig8kUG0Q.mft (raw, json)
Hash identifier: Ky4cjSAr9TMiPu1YP6wguzCMI3DE7nInHqGYcbJkA+A=
Subject key identifier: 10:72:9B:9F:89:1D:A4:A1:FA:A9:CA:72:3B:A3:00:C5:FB:DF:53:28
Authority key identifier: 41:8D:F8:68:F7:D9:E9:8D:4F:D4:1E:6D:A5:97:A2:83:C9:14:1B:44
Certificate issuer: /CN=418df868f7d9e98d4fd41e6da597a283c9141b44
Certificate serial: 019E2091B917D2BECD9A518733370B9E3EB4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/c6f86d-f795-419f-ad31-ee9c3452cbaf/1/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.mft
Manifest number: 190C
Signing time: Wed 13 May 2026 09:01:21 +0000
Manifest this update: Wed 13 May 2026 09:01:21 +0000
Manifest next update: Thu 14 May 2026 09:01:21 +0000
Files and hashes: 1: 16Of3nkjMP8UdSS9id5ZJPl_uic.roa (hash: 3kAPeMDB74ONzDFPUBPrWjZx5ADHmGueRoPekMbbEgg=)
2: QY34aPfZ6Y1P1B5tpZeig8kUG0Q.crl (hash: 8SF9SU4+vjVIfRNvPzYEkgzxgOg0RgKQtsjX7E/8BjE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/c6f86d-f795-419f-ad31-ee9c3452cbaf/1/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/c6f86d-f795-419f-ad31-ee9c3452cbaf/1/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 09:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:91:b9:17:d2:be:cd:9a:51:87:33:37:0b:9e:3e:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=418df868f7d9e98d4fd41e6da597a283c9141b44
Validity
Not Before: May 13 09:01:21 2026 GMT
Not After : May 14 09:01:21 2026 GMT
Subject: CN=10729b9f891da4a1faa9ca723ba300c5fbdf5328
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:b0:90:1d:a7:fc:93:69:63:fd:8b:eb:61:01:
77:51:35:97:e7:56:0c:5c:0e:e2:eb:de:de:4b:58:
3f:10:15:97:10:71:db:5a:35:0c:24:6f:fd:f8:5b:
03:aa:7c:56:2f:a3:57:08:91:0e:37:16:49:d2:60:
d5:b4:9d:69:1e:11:2e:5a:85:46:b8:db:56:38:cd:
2c:fc:8f:a4:85:9a:64:2c:18:92:95:7f:81:2b:dc:
a8:dc:7b:ad:02:5c:64:49:5f:ed:a8:02:d5:77:b1:
09:f7:0a:3c:e4:5b:de:17:28:82:03:32:26:3e:ca:
01:a9:8c:c9:75:72:0b:c2:f9:8b:16:1b:20:ee:0d:
af:50:05:f1:83:5f:af:c3:9c:8a:6b:63:6a:21:9e:
b8:c2:70:52:b3:da:58:10:eb:8a:89:eb:cf:9f:b1:
53:8f:46:a5:77:71:61:a2:78:fa:ec:7e:57:85:c3:
8b:06:53:b7:bb:a0:b2:e5:24:df:ae:ea:aa:9c:c3:
d8:a9:d6:eb:36:e5:f8:98:a8:c5:d1:5f:e0:0c:66:
9b:a0:3b:02:9e:eb:b3:a7:63:a0:16:72:a1:ff:fd:
83:08:c1:fa:94:87:77:14:c2:72:2e:d5:f7:61:5a:
57:52:33:40:92:fe:a4:02:3a:83:a5:5b:1d:ef:50:
43:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:72:9B:9F:89:1D:A4:A1:FA:A9:CA:72:3B:A3:00:C5:FB:DF:53:28
X509v3 Authority Key Identifier:
keyid:41:8D:F8:68:F7:D9:E9:8D:4F:D4:1E:6D:A5:97:A2:83:C9:14:1B:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/c6f86d-f795-419f-ad31-ee9c3452cbaf/1/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/c6f86d-f795-419f-ad31-ee9c3452cbaf/1/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:31:c4:af:a3:8b:c7:64:7b:4c:b1:97:a2:39:7d:02:e8:bf:
d0:02:73:bb:88:b9:ed:cf:79:1e:c1:78:53:b5:93:7a:02:88:
ac:3e:23:61:08:b7:36:88:a7:f8:41:36:6c:93:69:7c:04:20:
58:c5:6a:f9:1c:a0:d2:c9:61:0a:c9:51:aa:c8:36:f7:76:1e:
aa:1a:a4:fb:d8:66:9c:0b:aa:47:f8:7f:82:9f:0d:9a:66:2e:
50:08:fa:c7:09:15:67:6b:a5:8e:34:37:c5:03:7d:31:cd:7a:
8c:9d:ab:fb:f9:c0:09:ad:72:44:51:9f:c2:f5:6c:7a:5f:46:
6e:a0:0c:de:37:70:78:89:89:23:94:fd:70:6b:d9:6b:fc:0f:
5d:a8:7d:69:fd:8f:35:37:6f:9e:30:4b:fb:fd:cd:4f:73:dd:
ce:ca:d5:34:31:ff:df:21:50:18:a0:13:e8:e4:a0:28:d2:2c:
60:74:51:39:b6:c5:b4:f4:6b:25:b9:f3:b4:85:0e:f9:ba:2e:
b0:4c:6a:84:94:0b:7e:db:dd:25:8f:2f:00:f9:71:f0:88:2e:
c0:ba:7f:b5:ac:5b:9c:b3:1f:02:dd:8f:2e:10:a1:46:74:10:
de:aa:92:29:16:33:ad:c2:9a:bd:12:55:cc:b6:b7:65:fa:7a:
c8:2e:1b:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 19:34:17 2026 by rpki-client