Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/a87ea8-c3b6-472d-a96c-a971a334faa4/1/QHznj0rDupAqDDjcAaDF8hJlGbA.mft
File: QHznj0rDupAqDDjcAaDF8hJlGbA.mft (raw, json)
Hash identifier: 2uuyRUKADMhN1PGAEtHCmGrN2uATj11fAabG+YTkGOw=
Subject key identifier: 2E:87:16:C5:2F:A7:12:F9:7C:FF:C1:4D:7D:88:CB:20:A7:95:B0:3A
Authority key identifier: 40:7C:E7:8F:4A:C3:BA:90:2A:0C:38:DC:01:A0:C5:F2:12:65:19:B0
Certificate issuer: /CN=407ce78f4ac3ba902a0c38dc01a0c5f2126519b0
Certificate serial: 019E1DFDF16D057D8F97D706EBC57206D9FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QHznj0rDupAqDDjcAaDF8hJlGbA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/a87ea8-c3b6-472d-a96c-a971a334faa4/1/QHznj0rDupAqDDjcAaDF8hJlGbA.mft
Manifest number: 0D74
Signing time: Tue 12 May 2026 21:00:42 +0000
Manifest this update: Tue 12 May 2026 21:00:42 +0000
Manifest next update: Wed 13 May 2026 21:00:42 +0000
Files and hashes: 1: QHznj0rDupAqDDjcAaDF8hJlGbA.crl (hash: NehUaGAWAfjGvLIIyz7V2NHoeKRN/2kKZQ/JAWRCTVg=)
2: UKN4qXdB5emZZX9TzM0PF4jJuRs.roa (hash: Y842Sm+wv4FkMHDbdNeBmo19SEMhJtIByCHRBpFd6qo=)
3: qOyavHaQUzWIgFJKhwDzN8qp-NU.roa (hash: 6+GcU7ai/o4JeNdvfA796blKNzslNJ8s8dxyOTcoPxA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/a87ea8-c3b6-472d-a96c-a971a334faa4/1/QHznj0rDupAqDDjcAaDF8hJlGbA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/a87ea8-c3b6-472d-a96c-a971a334faa4/1/QHznj0rDupAqDDjcAaDF8hJlGbA.mft
rsync://rpki.ripe.net/repository/DEFAULT/QHznj0rDupAqDDjcAaDF8hJlGbA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 21:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:fd:f1:6d:05:7d:8f:97:d7:06:eb:c5:72:06:d9:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=407ce78f4ac3ba902a0c38dc01a0c5f2126519b0
Validity
Not Before: May 12 21:00:42 2026 GMT
Not After : May 13 21:00:42 2026 GMT
Subject: CN=2e8716c52fa712f97cffc14d7d88cb20a795b03a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:57:77:68:28:fb:c9:53:34:1c:c6:a9:40:94:
e7:c1:4d:20:44:5a:7b:76:19:90:e2:a6:79:bc:da:
1b:fb:d6:e2:6d:d2:45:c8:c4:c0:27:1f:ad:99:fa:
25:03:d3:1e:b9:55:10:58:61:78:a5:3d:90:09:7c:
b3:98:1c:9b:97:97:c5:46:58:f2:a3:2e:d4:0d:68:
37:05:97:a4:ee:54:04:93:a7:24:c3:2a:09:f0:e1:
48:5c:31:7c:84:3c:ac:9f:0e:28:11:fd:0a:16:29:
d6:36:f1:a6:73:b3:6f:3a:06:12:3a:66:30:be:19:
df:18:d9:99:c2:61:96:43:8d:d6:cb:0e:a6:67:e6:
7b:56:82:54:04:18:6e:ab:bc:86:7a:57:93:ad:07:
cc:65:c9:95:3b:e4:fa:07:4b:57:44:31:19:7b:07:
1e:47:88:17:20:43:78:46:42:8a:c2:32:78:50:70:
72:11:10:37:66:37:78:60:26:d8:48:4a:48:30:49:
61:cc:a4:c6:3a:4b:61:03:8f:b3:cf:16:30:f3:fb:
09:ab:9d:2a:94:a9:7b:6b:ec:02:a3:90:22:05:09:
bf:6a:ad:3c:ab:7d:23:60:29:dd:c6:f0:13:a7:41:
18:4a:1b:ec:a2:1d:a0:51:ac:8c:3b:5b:63:ea:5a:
ab:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:87:16:C5:2F:A7:12:F9:7C:FF:C1:4D:7D:88:CB:20:A7:95:B0:3A
X509v3 Authority Key Identifier:
keyid:40:7C:E7:8F:4A:C3:BA:90:2A:0C:38:DC:01:A0:C5:F2:12:65:19:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QHznj0rDupAqDDjcAaDF8hJlGbA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a87ea8-c3b6-472d-a96c-a971a334faa4/1/QHznj0rDupAqDDjcAaDF8hJlGbA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a87ea8-c3b6-472d-a96c-a971a334faa4/1/QHznj0rDupAqDDjcAaDF8hJlGbA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:13:a0:d5:1f:90:fa:a2:92:c1:7f:77:e6:87:bf:ff:f7:22:
0b:eb:9a:83:e1:1f:f1:66:b8:48:dc:8a:ae:94:60:8b:1b:b8:
7a:26:cb:fb:56:7c:b1:03:6f:30:d8:e8:98:3d:78:6a:ea:91:
71:f1:0d:38:c7:55:5b:14:ba:8d:c2:62:7e:6e:51:3a:43:22:
75:94:30:bb:34:a3:73:4b:56:eb:ac:45:08:cf:5a:d1:80:3c:
cf:25:fb:7f:32:fb:52:62:71:d4:58:38:e6:96:08:38:78:9d:
47:90:44:c8:33:dc:81:f8:b0:b3:d7:1f:7d:a6:41:15:5f:7d:
4b:a4:c1:cb:a5:ea:04:73:02:b3:21:bf:3f:dc:e4:bb:09:ea:
f0:9a:1e:5b:1a:b5:b2:de:9b:06:dd:9e:ee:c0:75:ff:e5:ec:
8f:27:b4:b4:14:29:29:e3:f3:99:f4:91:47:ab:84:bd:ca:e6:
67:db:3f:12:a7:67:fd:51:c7:05:89:34:1b:be:0c:29:ef:ff:
9c:47:cf:f1:04:4c:b0:d6:ed:64:e9:fb:ef:ed:d3:16:50:66:
52:64:9f:91:b7:6d:7f:8e:d6:52:67:48:4b:24:6d:6b:a0:00:
f1:89:71:0d:6c:e5:39:59:95:3d:32:72:e4:27:ec:78:ca:28:
0e:8b:1e:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 08:15:38 2026 by rpki-client