Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.mft
File: QclkksAECK1U1zDA62KeOgtQ2A8.mft (raw, json)
Hash identifier: 038ZyViTVGcxHAKLS4TP6L+1VBB15p257ZVMeyDFIgU=
Subject key identifier: CF:F1:B1:42:E4:72:20:90:11:10:05:03:9E:FB:42:7C:6A:BA:E9:A3
Authority key identifier: 41:C9:64:92:C0:04:08:AD:54:D7:30:C0:EB:62:9E:3A:0B:50:D8:0F
Certificate issuer: /CN=41c96492c00408ad54d730c0eb629e3a0b50d80f
Certificate serial: 019E1D22E409440DF2D6CC2C4C2B1C030E36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QclkksAECK1U1zDA62KeOgtQ2A8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.mft
Manifest number: 0590
Signing time: Tue 12 May 2026 17:01:26 +0000
Manifest this update: Tue 12 May 2026 17:01:26 +0000
Manifest next update: Wed 13 May 2026 17:01:26 +0000
Files and hashes: 1: A06G0jKoVHkOoVsdJmlcMjUtuYg.roa (hash: /ucUBoWCtbDVXH8l3LkIjvANk7l2kl8IZAXTo8qEuVA=)
2: QclkksAECK1U1zDA62KeOgtQ2A8.crl (hash: ozwPhMOZU4U24HxBB8So6YrguooL80GXdOc6qwSqkDE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.mft
rsync://rpki.ripe.net/repository/DEFAULT/QclkksAECK1U1zDA62KeOgtQ2A8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:22:e4:09:44:0d:f2:d6:cc:2c:4c:2b:1c:03:0e:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41c96492c00408ad54d730c0eb629e3a0b50d80f
Validity
Not Before: May 12 17:01:26 2026 GMT
Not After : May 13 17:01:26 2026 GMT
Subject: CN=cff1b142e4722090111005039efb427c6abae9a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d7:47:b0:89:a6:69:98:cd:e1:95:79:7b:b7:
ba:9d:4f:92:32:74:0a:29:3d:e1:87:c5:14:f0:2e:
ba:35:1c:7a:39:cf:86:cb:0e:28:a6:f9:bf:93:de:
39:9a:d5:01:a3:2b:1c:95:dd:47:7b:2e:74:0c:b5:
a7:49:3f:3c:e5:38:8f:0e:e9:4d:46:d0:77:e7:6b:
e1:e9:8a:29:2d:86:1d:08:c9:b3:af:13:e1:3d:93:
13:54:6f:c8:7f:a4:7d:a0:63:86:cc:f9:c0:2a:02:
92:38:3a:1b:95:a5:50:25:1b:a3:08:50:1c:e7:eb:
67:ed:c1:5e:02:db:b0:20:4b:d8:cc:ca:aa:4e:ca:
d2:b0:5a:e3:3a:ee:5f:a9:64:96:94:fc:2a:fd:d3:
ef:e9:82:79:b6:99:e6:c6:cc:6b:ec:30:f4:d5:b7:
59:22:9e:59:24:ce:10:26:52:9e:19:86:d1:4d:83:
d7:bd:d2:21:dc:10:eb:a3:91:01:66:32:d6:5e:2a:
a2:bd:dc:98:bb:be:5f:e7:4f:71:bf:ad:dd:52:f0:
42:c6:30:ef:08:0b:21:14:2c:6d:23:92:4f:53:d1:
db:57:92:84:12:ce:17:53:15:26:3b:19:c2:53:fd:
3d:12:92:23:fb:50:fe:06:48:aa:ae:d0:1d:49:87:
9b:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:F1:B1:42:E4:72:20:90:11:10:05:03:9E:FB:42:7C:6A:BA:E9:A3
X509v3 Authority Key Identifier:
keyid:41:C9:64:92:C0:04:08:AD:54:D7:30:C0:EB:62:9E:3A:0B:50:D8:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QclkksAECK1U1zDA62KeOgtQ2A8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:fa:34:61:70:c9:ec:ed:eb:27:66:ed:d9:87:c1:de:b6:77:
20:45:f2:d5:cf:b0:06:08:5a:44:fe:a8:44:ea:a8:c7:07:fe:
8a:2e:ec:46:51:d2:dc:e0:5e:a4:6f:40:58:fa:14:33:d5:3a:
90:34:5f:7c:d5:63:2c:ee:7a:27:e6:76:41:1d:34:91:fa:88:
cf:78:54:7e:7e:e2:51:e7:d8:41:fa:be:02:26:4a:e8:ca:03:
3a:6f:01:80:ef:e0:35:5c:77:48:99:e4:60:2e:65:3e:1b:7b:
51:b3:70:92:a7:90:a6:c6:51:3a:0e:8e:d3:99:56:fe:ef:8e:
4a:3a:8f:3b:c5:80:a9:8a:b3:63:ab:63:3e:80:ff:cd:12:2b:
d8:1b:2c:64:8f:1a:bb:99:be:22:30:73:01:52:d7:6a:09:84:
36:37:08:d2:f3:6d:a9:39:c9:6e:28:da:78:d9:0f:d6:a5:8d:
ad:53:15:57:cb:c0:53:f9:36:0a:2b:5c:99:46:6f:36:48:f6:
2e:85:de:cb:26:dc:4b:3b:2a:ea:87:56:c8:98:a3:9e:1d:c2:
53:29:20:d2:ea:5b:3e:43:49:c8:6c:b3:6c:c6:d4:78:cd:7f:
df:d2:5a:ec:59:02:15:4c:c6:c6:cc:ca:0e:51:00:dc:15:34:
fd:1d:ca:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:27:19 2026 by rpki-client