Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/35d598-c32c-49a7-b1f6-8f913e2696e5/1/qsV1yvoAvEHVfElKwfXbz-54My4.mft
File: qsV1yvoAvEHVfElKwfXbz-54My4.mft (raw, json)
Hash identifier: 8YOPLckyfz+ve6XH2B4C5B5H7OzsslplsvhRUmjhRl8=
Subject key identifier: F4:29:C4:3D:02:92:7A:D8:88:B4:44:D4:46:B3:B4:9D:88:D6:53:4E
Authority key identifier: AA:C5:75:CA:FA:00:BC:41:D5:7C:49:4A:C1:F5:DB:CF:EE:78:33:2E
Certificate issuer: /CN=aac575cafa00bc41d57c494ac1f5dbcfee78332e
Certificate serial: 019E1DFE373B306F621A69D9199093D90BB1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qsV1yvoAvEHVfElKwfXbz-54My4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/35d598-c32c-49a7-b1f6-8f913e2696e5/1/qsV1yvoAvEHVfElKwfXbz-54My4.mft
Manifest number: 1906
Signing time: Tue 12 May 2026 21:00:59 +0000
Manifest this update: Tue 12 May 2026 21:00:59 +0000
Manifest next update: Wed 13 May 2026 21:00:59 +0000
Files and hashes: 1: IPShWGUXlOQysmlHN59ggxp79no.roa (hash: h66cPY9mKXXd6y+2DIeK9BUX2MMAhCZtqkFLMLMhdLk=)
2: UUFYP2GnG27gknclmWjbFXee-5c.asa (hash: vtuGXz4SCbN+csRPRpu2i0eRfkh5mJ/Z4XlVSXzxMy4=)
3: qsV1yvoAvEHVfElKwfXbz-54My4.crl (hash: GENejOuRD0qRPXmQrJ+WdE3269V3RNc0Wm0iN2qXICE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/35d598-c32c-49a7-b1f6-8f913e2696e5/1/qsV1yvoAvEHVfElKwfXbz-54My4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/35d598-c32c-49a7-b1f6-8f913e2696e5/1/qsV1yvoAvEHVfElKwfXbz-54My4.mft
rsync://rpki.ripe.net/repository/DEFAULT/qsV1yvoAvEHVfElKwfXbz-54My4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 21:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:fe:37:3b:30:6f:62:1a:69:d9:19:90:93:d9:0b:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aac575cafa00bc41d57c494ac1f5dbcfee78332e
Validity
Not Before: May 12 21:00:59 2026 GMT
Not After : May 13 21:00:59 2026 GMT
Subject: CN=f429c43d02927ad888b444d446b3b49d88d6534e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:14:5c:2b:a1:86:1e:c0:40:b5:ef:c3:78:7a:
f3:29:ca:ee:a4:e0:d7:66:fc:79:73:35:ac:23:e0:
bd:4b:69:76:2b:f9:e1:64:11:1f:a5:66:ec:32:68:
8e:91:8c:85:d4:60:be:02:f7:a2:4f:b1:db:1d:d4:
5c:62:f7:a2:e7:f1:60:79:11:56:97:8b:4f:87:17:
0f:31:60:09:6b:cf:87:f2:78:ce:17:a8:80:c8:46:
35:d1:d7:7e:eb:77:e8:72:b4:2c:5b:1f:a8:6c:5a:
84:b8:69:a8:12:dc:ce:15:d7:d7:44:bf:1d:6b:63:
3f:1c:59:1b:4e:f8:c1:4f:9e:75:29:73:37:37:14:
7a:e4:6e:b4:65:5e:09:47:76:0d:dd:72:1a:60:9d:
1d:1d:f7:5b:73:ec:14:a5:7e:ce:2c:25:24:e3:ba:
f5:2d:fd:69:92:a6:d9:7d:3f:16:4a:e7:27:ee:2d:
77:2e:38:88:f3:1a:c1:9e:ba:8d:d9:5a:8c:17:ed:
ea:16:9f:77:17:73:ac:e5:0d:9d:7d:15:07:72:0d:
e8:50:3f:c1:cf:7e:1f:cf:45:99:69:0e:90:0f:6a:
37:0c:bf:3a:87:df:85:24:56:49:1d:fe:b3:3a:7c:
79:51:4f:52:6f:06:92:9a:59:1e:6f:43:56:bb:b4:
c4:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:29:C4:3D:02:92:7A:D8:88:B4:44:D4:46:B3:B4:9D:88:D6:53:4E
X509v3 Authority Key Identifier:
keyid:AA:C5:75:CA:FA:00:BC:41:D5:7C:49:4A:C1:F5:DB:CF:EE:78:33:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qsV1yvoAvEHVfElKwfXbz-54My4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/35d598-c32c-49a7-b1f6-8f913e2696e5/1/qsV1yvoAvEHVfElKwfXbz-54My4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/35d598-c32c-49a7-b1f6-8f913e2696e5/1/qsV1yvoAvEHVfElKwfXbz-54My4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:e5:1c:c9:38:55:13:51:63:ed:ff:9d:36:4a:a9:fe:3c:69:
22:41:cf:a1:36:c2:51:e0:71:73:28:e9:b4:a2:3a:cf:91:e8:
0f:a5:1f:30:2e:54:e0:43:10:c4:93:8c:fb:af:10:ce:e5:c8:
60:92:0e:74:db:a0:b4:d1:19:82:99:38:1e:b5:3b:e1:f6:28:
cf:50:97:8e:ee:07:73:af:ad:e5:80:39:6a:7e:41:89:98:c3:
cd:93:ed:3d:a2:58:66:80:8b:73:4c:c8:ef:fc:3c:df:81:a3:
7b:e9:41:41:1a:56:bc:e0:a3:e2:15:0f:96:ce:38:c9:70:3a:
9e:5b:5b:26:c6:40:1c:c7:da:eb:18:92:cf:25:69:dc:41:e1:
57:c2:ad:3c:cd:a3:46:9f:ce:5a:4e:ed:b5:ee:c6:40:1f:97:
0a:15:ff:b6:23:ae:12:c5:8f:b4:a8:dc:e6:72:b5:e8:62:9e:
af:ee:f0:02:fe:3c:1e:9c:c4:48:99:36:76:55:52:9d:f3:2c:
29:a8:a6:cf:fb:ba:00:7e:be:af:b5:eb:19:6a:ce:73:e2:e0:
66:cf:ba:d5:fb:90:0d:d7:13:ca:8e:1a:d1:96:1d:ad:95:63:
37:4d:e6:ff:15:ba:db:78:db:42:8a:4b:47:c3:e9:ac:35:ce:
d3:33:c8:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 04:05:05 2026 by rpki-client