Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.mft
File: qvHI3UCIS0nwiAZNPBANKhiahHQ.mft (raw, json)
Hash identifier: XduxK4U+IjW31laNauIC0UNoqB74hGTx2zfBh97W3RE=
Subject key identifier: 38:EA:37:97:FA:46:6D:2A:58:50:EC:4C:70:D0:9C:F3:F2:3F:07:9F
Authority key identifier: AA:F1:C8:DD:40:88:4B:49:F0:88:06:4D:3C:10:0D:2A:18:9A:84:74
Certificate issuer: /CN=aaf1c8dd40884b49f088064d3c100d2a189a8474
Certificate serial: 019E1FECA20CC28DE70F193DABF7E4CAC544
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qvHI3UCIS0nwiAZNPBANKhiahHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.mft
Manifest number: 0564
Signing time: Wed 13 May 2026 06:01:02 +0000
Manifest this update: Wed 13 May 2026 06:01:02 +0000
Manifest next update: Thu 14 May 2026 06:01:02 +0000
Files and hashes: 1: TPinzjQGStjo9WplkE5Cz7wKV1E.roa (hash: PHy3g+7P0F5Q3MN1sN50m0Ft2cJh+htWlf3pquiUF5Y=)
2: qvHI3UCIS0nwiAZNPBANKhiahHQ.crl (hash: F1FfPrb5BLZCtTnnPbTyQu9Ct0crkdGgcw7FYWK8vUY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/qvHI3UCIS0nwiAZNPBANKhiahHQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:ec:a2:0c:c2:8d:e7:0f:19:3d:ab:f7:e4:ca:c5:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aaf1c8dd40884b49f088064d3c100d2a189a8474
Validity
Not Before: May 13 06:01:02 2026 GMT
Not After : May 14 06:01:02 2026 GMT
Subject: CN=38ea3797fa466d2a5850ec4c70d09cf3f23f079f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f4:ec:a4:e2:74:41:46:c9:e8:f1:d6:34:ea:
89:cb:45:46:89:e5:8e:0d:4e:50:ab:70:0c:f5:8c:
c6:06:5b:50:db:ac:24:9c:90:63:a5:7c:cb:ba:b5:
02:9f:75:40:14:4f:ba:99:73:5b:24:bc:8d:85:c4:
d8:0b:8d:82:6f:8b:aa:bd:4a:d6:97:d6:25:95:51:
0f:a3:17:d5:1c:92:dd:8e:f9:3a:b2:d7:86:0f:41:
52:c1:6c:ab:ae:90:63:15:f0:8d:34:4c:c5:c7:55:
09:5c:3b:7f:fe:4d:bf:c2:a0:2b:7c:a5:1e:37:1d:
d2:a1:1d:31:4f:82:1c:66:f8:3f:4c:0d:57:e6:69:
fa:bb:80:0c:06:81:b5:bd:5b:11:fd:0c:d4:b6:7e:
f1:05:08:c8:61:db:a0:4a:aa:99:8f:ea:49:04:d7:
f6:47:25:7d:93:7f:8e:91:1a:03:50:19:bd:5e:50:
46:71:dc:c2:56:48:45:9b:17:5c:7d:3d:23:fc:4c:
0a:e2:7a:f7:e6:eb:2b:ad:3c:6f:3b:24:23:c2:40:
f1:c3:6f:a3:27:15:c3:1b:a5:39:b8:1b:b3:0f:2a:
a8:73:68:72:16:73:c1:b2:ab:5b:f0:54:82:21:27:
0e:01:e4:80:bb:d1:b6:dc:55:46:bd:06:b8:4b:a4:
12:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:EA:37:97:FA:46:6D:2A:58:50:EC:4C:70:D0:9C:F3:F2:3F:07:9F
X509v3 Authority Key Identifier:
keyid:AA:F1:C8:DD:40:88:4B:49:F0:88:06:4D:3C:10:0D:2A:18:9A:84:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qvHI3UCIS0nwiAZNPBANKhiahHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:87:a9:cb:78:9c:ac:2e:93:4f:e8:d1:88:d2:f0:b9:2a:8c:
13:2e:60:bc:52:6c:13:14:ad:22:d0:73:ce:ca:de:7d:c2:3b:
9d:bf:1c:af:5d:55:23:b8:d9:11:36:83:6a:62:a1:5a:65:29:
7f:32:38:42:34:fd:8b:0d:56:2f:23:42:23:c3:c7:85:bc:7c:
cf:81:a1:a8:8a:27:5b:12:01:9e:76:e0:a0:f5:01:c5:97:0b:
41:8c:18:1a:13:74:51:b7:33:00:4a:eb:b6:89:d1:a4:a6:9f:
67:49:d8:36:f5:52:2f:d1:22:13:26:28:fe:88:97:5b:d7:ec:
e8:a5:3a:ca:b9:fd:ea:8c:c0:0f:15:db:94:63:2d:10:4f:50:
43:1d:f8:87:11:d8:78:d9:a0:72:16:ab:2b:99:67:76:f9:01:
35:8a:7c:19:97:a0:46:32:48:a2:90:fd:43:8b:50:0c:85:7c:
23:4d:b8:68:2b:6d:79:b7:7e:31:ef:de:06:9d:e7:59:86:bd:
8d:a7:48:24:56:36:e8:d3:68:56:97:98:58:a1:6f:b5:36:a1:
f5:92:91:3c:98:a9:c2:b9:5f:6b:41:a8:07:58:c7:f0:f2:fe:
36:8f:92:e5:d9:ff:7b:ce:09:3b:74:da:4c:63:03:69:87:94:
99:ba:f2:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 09:45:09 2026 by rpki-client