Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft
File: QY1UtVsZKiSLhHI026US-XYMq_o.mft (raw, json)
Hash identifier: FISteaczZrE34oIxlNpqUv0iXOX4E8XrTUySweN0Yvc=
Subject key identifier: AD:71:96:EF:91:B5:6A:6D:7F:0F:33:53:3D:57:0E:B7:67:73:90:3D
Authority key identifier: 41:8D:54:B5:5B:19:2A:24:8B:84:72:34:DB:A5:12:F9:76:0C:AB:FA
Certificate issuer: /CN=418d54b55b192a248b847234dba512f9760cabfa
Certificate serial: 019E216D79D534FC4C95712BB81F02E12823
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QY1UtVsZKiSLhHI026US-XYMq_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft
Manifest number: 0C8C
Signing time: Wed 13 May 2026 13:01:23 +0000
Manifest this update: Wed 13 May 2026 13:01:23 +0000
Manifest next update: Thu 14 May 2026 13:01:23 +0000
Files and hashes: 1: QY1UtVsZKiSLhHI026US-XYMq_o.crl (hash: E3q5A4a6d5W265koL0O9oekcHGScFlbkDYspZVhDxKQ=)
2: SD4DOOe1Q-YfVl5PpC2wzjneINo.roa (hash: rAueVU0HnCRC0myAX4koUuZ65An0z5mJknuS+tLrJrQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft
rsync://rpki.ripe.net/repository/DEFAULT/QY1UtVsZKiSLhHI026US-XYMq_o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 13:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:21:6d:79:d5:34:fc:4c:95:71:2b:b8:1f:02:e1:28:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=418d54b55b192a248b847234dba512f9760cabfa
Validity
Not Before: May 13 13:01:23 2026 GMT
Not After : May 14 13:01:23 2026 GMT
Subject: CN=ad7196ef91b56a6d7f0f33533d570eb76773903d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:60:0e:2f:c4:31:6d:ec:bf:28:a7:7f:0b:35:
e3:32:66:b0:41:00:a0:d1:2a:89:f5:c0:f4:98:d8:
2a:8a:52:15:b7:ce:0d:83:7f:f6:50:43:dd:fd:c3:
12:bf:7a:1d:5a:6a:9e:79:bb:dc:f3:53:97:14:85:
80:c9:09:ca:e1:00:8a:ad:b6:4a:c7:e9:2b:69:c2:
b7:2f:ae:e5:6c:52:7d:91:a5:51:de:9e:c9:2c:9c:
0d:3e:f1:35:54:50:cf:7e:3f:a0:bf:da:96:e6:49:
09:c7:15:6e:14:9f:b5:f9:1a:12:f6:a3:f3:3b:d0:
0f:9c:54:7d:cc:ba:87:6d:3d:41:8c:db:ce:b0:23:
e1:c0:65:39:1d:e7:02:eb:09:68:c2:3b:5f:1d:0e:
3c:b3:2b:c4:0e:17:f8:f7:8e:ed:21:60:5a:bb:ab:
b3:96:61:1e:e2:bd:cb:db:39:2c:a4:14:30:2e:24:
67:2d:34:09:91:a7:32:f9:ee:1c:3c:50:5d:29:79:
ab:d0:d3:aa:ca:a1:b8:ed:61:ac:4f:a0:49:45:81:
48:00:9c:b1:a0:eb:c5:49:31:c0:62:b9:08:e4:c2:
5a:73:45:53:87:a5:22:73:35:12:5a:40:f0:9f:1c:
12:7a:60:2e:79:73:89:c2:d5:1d:87:5a:d8:11:a1:
6a:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:71:96:EF:91:B5:6A:6D:7F:0F:33:53:3D:57:0E:B7:67:73:90:3D
X509v3 Authority Key Identifier:
keyid:41:8D:54:B5:5B:19:2A:24:8B:84:72:34:DB:A5:12:F9:76:0C:AB:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QY1UtVsZKiSLhHI026US-XYMq_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:c4:2e:03:ed:82:01:ec:52:0b:c8:b5:45:9f:18:a0:d9:1c:
40:40:6d:db:bf:66:1f:67:92:ed:9b:ec:a7:31:ae:9d:27:16:
e6:f7:a2:24:53:b6:bd:47:f1:b3:fd:57:82:b1:a5:28:8c:bf:
e9:cd:3a:ff:68:08:88:df:b1:ec:e4:62:d9:af:e7:79:c5:7f:
ac:00:27:93:79:87:e5:00:8b:d7:d6:18:3a:3c:4d:7c:d0:59:
bf:de:1b:4d:cc:0f:8b:52:07:16:c2:3a:3d:cd:37:a1:e6:59:
0c:9e:bf:a0:31:c3:ea:8d:3c:4b:b1:83:ee:c7:67:e5:d3:36:
25:4a:b2:c2:30:5d:0a:97:bc:f2:77:c1:62:b2:7d:d0:88:99:
b5:6c:cc:ab:6e:fb:30:bf:00:cc:de:d0:ab:a9:0f:1f:8c:82:
19:ee:ac:ea:1c:71:85:a9:aa:98:36:98:3f:47:cc:2e:37:84:
39:60:ec:ec:75:dc:b4:3b:1d:b8:fc:e2:8e:29:b1:76:1b:be:
1b:de:b3:e4:03:bb:a1:79:17:eb:9e:01:77:a8:bf:2d:05:aa:
b6:b8:3c:30:66:47:44:6d:a7:43:0f:5d:95:ec:46:da:e2:cf:
15:af:20:73:38:54:55:ed:12:dd:c1:79:73:02:e4:d6:ad:f3:
46:89:05:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 17:49:56 2026 by rpki-client