Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
File: QH0twQwC9ewk9pD59mBVVIZWLlk.mft (raw, json)
Hash identifier: 8tVBzxm0CpRgHf7yBugrqj4+1GBp8m6SgkWoyrre1VY=
Subject key identifier: C4:92:DC:3E:9C:04:E0:E4:72:66:EC:0C:B1:14:B6:30:27:EC:49:36
Authority key identifier: 40:7D:2D:C1:0C:02:F5:EC:24:F6:90:F9:F6:60:55:54:86:56:2E:59
Certificate issuer: /CN=407d2dc10c02f5ec24f690f9f660555486562e59
Certificate serial: 019E1EA2C57341EBFB8414600B89B0335E7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QH0twQwC9ewk9pD59mBVVIZWLlk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
Manifest number: 1605
Signing time: Wed 13 May 2026 00:00:44 +0000
Manifest this update: Wed 13 May 2026 00:00:44 +0000
Manifest next update: Thu 14 May 2026 00:00:44 +0000
Files and hashes: 1: FtvcAFkah5MC2Z1_PcfWmzKSll8.roa (hash: lAzH9ctEUVZ0nWk96qJfvTNhA1rNNyQ5u0vfPKjJ5TI=)
2: QH0twQwC9ewk9pD59mBVVIZWLlk.crl (hash: VZbeTH0szJu99Rc+I1i9bdccW3kXZKI3Sb9OZGLxs70=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QH0twQwC9ewk9pD59mBVVIZWLlk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a2:c5:73:41:eb:fb:84:14:60:0b:89:b0:33:5e:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=407d2dc10c02f5ec24f690f9f660555486562e59
Validity
Not Before: May 13 00:00:44 2026 GMT
Not After : May 14 00:00:44 2026 GMT
Subject: CN=c492dc3e9c04e0e47266ec0cb114b63027ec4936
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:48:8e:9f:34:bc:f4:ca:c7:75:b1:0d:94:a1:
77:7b:53:d7:5f:df:e2:9b:3c:8e:11:64:7a:8d:4e:
e3:26:84:5f:2c:fe:ff:ce:7f:61:a4:6b:ab:b3:9a:
80:68:31:14:d0:4c:ac:42:05:19:82:91:6b:20:20:
38:35:2c:54:1f:c3:09:24:5f:20:bf:72:b0:e3:a5:
80:23:78:d1:24:8e:1e:31:05:f7:51:b0:36:02:03:
d1:f8:5e:5a:1b:2b:eb:ca:e3:0a:0c:d3:0f:f7:dc:
e0:61:8e:64:6b:bd:1a:f2:b8:c6:92:6c:b7:9f:71:
3f:df:ae:d0:04:cc:60:ce:8c:19:a6:e0:f1:2a:f9:
c3:e9:83:3c:19:43:e6:18:2d:11:76:ac:3d:85:82:
f8:38:c6:8d:8a:5d:f5:f8:ec:ae:6b:95:e7:f4:2a:
2b:e7:4a:5d:cb:13:19:54:9f:af:9a:c4:32:64:4a:
4d:70:f7:90:dc:a5:5f:68:4d:36:49:a1:b0:09:64:
d2:ee:97:07:58:c8:7b:ba:65:a2:c5:9c:cf:12:f0:
90:38:9b:32:78:e5:73:d8:0b:cc:b3:bc:38:3b:09:
cc:52:89:51:0b:a5:58:fc:89:33:df:e1:7a:68:b9:
09:a9:a1:74:bc:af:ac:e5:c8:b1:e8:b9:48:f4:35:
8b:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:92:DC:3E:9C:04:E0:E4:72:66:EC:0C:B1:14:B6:30:27:EC:49:36
X509v3 Authority Key Identifier:
keyid:40:7D:2D:C1:0C:02:F5:EC:24:F6:90:F9:F6:60:55:54:86:56:2E:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QH0twQwC9ewk9pD59mBVVIZWLlk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:a3:8a:03:75:7a:4b:b8:03:cf:f8:c2:d9:5a:df:68:7d:b6:
34:e1:d4:ec:dd:24:90:fb:bb:ae:bd:af:2d:71:27:d2:6e:24:
de:aa:7b:17:be:e0:ac:56:f8:95:cd:33:47:e9:51:d3:35:ae:
27:d8:3f:80:07:80:75:91:65:80:bf:67:e5:f2:2a:5b:3c:21:
13:54:55:80:28:93:b6:d4:74:95:1a:97:76:be:7d:e9:6c:6d:
4d:66:d5:0b:65:07:12:78:79:2d:e3:5f:30:e2:3b:c8:c9:fb:
b2:73:67:fc:a1:ca:3f:70:74:10:41:d6:6f:17:b0:ce:6e:4d:
7a:94:4d:f6:b2:1e:88:c5:cd:1e:a9:c7:62:76:61:47:72:c7:
b2:e9:cc:77:b4:a2:66:f7:f2:0d:29:99:0d:da:db:3f:83:41:
00:5e:21:b7:bc:e1:7b:91:71:75:ec:45:4b:35:90:3c:f0:c0:
3c:a7:8d:97:e2:29:1b:68:ca:25:d7:b3:19:a5:ed:b3:d5:3d:
02:c7:b1:84:5c:7a:e6:86:84:9c:cd:c1:39:4f:be:d1:89:21:
30:6f:11:8c:21:24:fa:a4:6e:b7:01:a4:a2:ad:40:bd:02:f1:
60:b4:4d:81:ac:e7:ba:89:c8:dc:15:5c:c6:57:7b:79:c2:b6:
43:64:5b:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:53:19 2026 by rpki-client