Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.mft
File: QI-gF1Mv9tn7OLQAN4lq-vCqz4s.mft (raw, json)
Hash identifier: jp7gFAsiHkKtkfjcG0BL/RSJznexLzcOguG0yN3iMzM=
Subject key identifier: 3C:19:83:CB:E9:5E:98:47:3C:2A:63:10:27:7F:91:AD:E6:4C:EB:5D
Authority key identifier: 40:8F:A0:17:53:2F:F6:D9:FB:38:B4:00:37:89:6A:FA:F0:AA:CF:8B
Certificate issuer: /CN=408fa017532ff6d9fb38b40037896afaf0aacf8b
Certificate serial: 019EFC4B2DE5FCD9165AD4678EE6B5369229
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.mft
Manifest number: 0B46
Signing time: Thu 25 Jun 2026 01:00:45 +0000
Manifest this update: Thu 25 Jun 2026 01:00:45 +0000
Manifest next update: Fri 26 Jun 2026 01:00:45 +0000
Files and hashes: 1: QI-gF1Mv9tn7OLQAN4lq-vCqz4s.crl (hash: CHk/0jz5Iu78/kWe9KrLWlcI6aXopKd6u9+u+CC+QL0=)
2: RhhybVhgxehJpyQFfu1dQiF3RZc.roa (hash: vTXKPtYUm1UxDqfrm9GUHJ6eZM3EZfiTITZU7YFaPA8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.mft
rsync://rpki.ripe.net/repository/DEFAULT/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 26 Jun 2026 01:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:fc:4b:2d:e5:fc:d9:16:5a:d4:67:8e:e6:b5:36:92:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=408fa017532ff6d9fb38b40037896afaf0aacf8b
Validity
Not Before: Jun 25 01:00:45 2026 GMT
Not After : Jun 26 01:00:45 2026 GMT
Subject: CN=3c1983cbe95e98473c2a6310277f91ade64ceb5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:52:b8:3e:96:2e:ed:34:a9:ce:21:4b:61:1f:
31:45:36:51:d3:c7:0e:66:a2:4a:b7:00:5b:81:01:
db:aa:c9:15:4d:e0:3d:98:e3:8f:5c:84:8c:50:4e:
fd:c5:44:e7:ac:4c:db:e6:cf:93:c4:1d:38:a7:97:
06:c3:13:bd:b0:59:ad:37:b6:a4:86:32:be:d9:9a:
12:b5:92:b5:14:60:c6:bd:1d:98:6c:a0:9b:f4:65:
6a:a6:82:a5:ea:07:1d:d5:9b:0f:1f:f3:55:db:fc:
a4:7d:e2:d8:94:b2:7a:32:01:69:3f:c9:a4:7d:8a:
cb:b6:02:c8:f8:03:b6:44:d4:20:2e:7e:30:43:85:
4c:0e:0d:2b:07:a8:cc:d7:61:ac:4f:bf:97:c5:a8:
9f:5e:43:92:81:ad:e7:e9:67:65:8a:4e:bb:17:ee:
69:b3:23:a3:fd:bc:5a:dd:c6:70:1a:39:d3:f3:32:
e4:25:79:d8:3b:ab:6e:80:65:c2:a3:8c:3b:e0:61:
ac:fc:ca:67:9a:41:e1:cd:89:00:ba:40:1c:29:b8:
65:e0:a4:2d:f3:26:60:35:a2:96:c5:f0:fa:05:f0:
99:b4:3e:db:93:50:f5:d9:64:4e:70:13:90:54:1a:
83:e1:64:08:05:4c:aa:e4:d7:a7:92:54:2c:f4:89:
e5:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:19:83:CB:E9:5E:98:47:3C:2A:63:10:27:7F:91:AD:E6:4C:EB:5D
X509v3 Authority Key Identifier:
keyid:40:8F:A0:17:53:2F:F6:D9:FB:38:B4:00:37:89:6A:FA:F0:AA:CF:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:79:b0:ef:5d:55:7e:15:54:bb:5f:1e:2d:b5:be:e7:4e:79:
dc:8f:40:c1:c1:47:8b:99:5d:76:18:eb:71:b0:af:0a:99:8e:
f6:c8:3d:d2:88:cb:24:ca:85:b4:d5:04:ef:fa:71:cb:0c:e6:
dd:f7:17:d9:ce:84:0c:72:e4:7b:44:3e:e1:32:49:9d:05:33:
9f:6b:74:a6:ea:d7:b8:58:53:af:a5:79:83:4a:51:dd:f6:21:
12:53:0b:16:d8:d1:9e:38:23:9f:2b:cb:50:14:8e:74:fc:ae:
9e:d2:4d:e1:6d:2e:93:12:f8:ea:9a:83:fd:39:5b:4a:5f:d3:
96:da:e7:0f:99:5b:cb:ad:b7:23:3b:d0:13:d0:f4:b6:88:8d:
bb:71:be:1f:4b:d7:86:f0:d1:1d:62:63:87:45:83:21:ad:21:
b7:6a:c1:ac:28:ed:62:da:b9:fe:7c:5a:21:69:c5:ee:49:fc:
a3:96:96:4d:31:a1:3b:46:65:ac:43:0b:2d:98:55:6d:91:f0:
32:bd:3e:c5:42:52:14:de:47:7a:83:9d:48:59:9a:8d:72:8b:
f4:b0:27:2b:8b:2a:33:8e:27:b6:3c:41:55:24:80:0a:42:76:
9d:2e:87:7b:a4:ce:44:cf:f4:51:8b:e7:94:2d:29:71:4b:85:
8e:80:7d:86
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ78Sy3l/NkWWtRnjua1NpIpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwOGZhMDE3NTMyZmY2ZDlmYjM4YjQwMDM3ODk2YWZhZjBh
YWNmOGIwHhcNMjYwNjI1MDEwMDQ1WhcNMjYwNjI2MDEwMDQ1WjAzMTEwLwYDVQQD
EygzYzE5ODNjYmU5NWU5ODQ3M2MyYTYzMTAyNzdmOTFhZGU2NGNlYjVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAilK4PpYu7TSpziFLYR8xRTZR08cO
ZqJKtwBbgQHbqskVTeA9mOOPXISMUE79xUTnrEzb5s+TxB04p5cGwxO9sFmtN7ak
hjK+2ZoStZK1FGDGvR2YbKCb9GVqpoKl6gcd1ZsPH/NV2/ykfeLYlLJ6MgFpP8mk
fYrLtgLI+AO2RNQgLn4wQ4VMDg0rB6jM12GsT7+XxaifXkOSga3n6Wdlik67F+5p
syOj/bxa3cZwGjnT8zLkJXnYO6tugGXCo4w74GGs/MpnmkHhzYkAukAcKbhl4KQt
8yZgNaKWxfD6BfCZtD7bk1D12WROcBOQVBqD4WQIBUyq5NenklQs9InlkQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDwZg8vpXphHPCpjECd/ka3mTOtdMB8GA1UdIwQY
MBaAFECPoBdTL/bZ+zi0ADeJavrwqs+LMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUktZ0YxTXY5dG43T0xRQU40bHEtdkNxejRzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9hZGI4NzEtNjk3Mi00ZGQ2LTgzNjAt
ZjE5ODJhNjkxZDQ1LzEvUUktZ0YxTXY5dG43T0xRQU40bHEtdkNxejRzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy9hZGI4NzEtNjk3Mi00ZGQ2LTgzNjAtZjE5ODJhNjkxZDQ1
LzEvUUktZ0YxTXY5dG43T0xRQU40bHEtdkNxejRzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdXmw711V
fhVUu18eLbW+50553I9AwcFHi5lddhjrcbCvCpmO9sg90ojLJMqFtNUE7/pxywzm
3fcX2c6EDHLke0Q+4TJJnQUzn2t0purXuFhTr6V5g0pR3fYhElMLFtjRnjgjnyvL
UBSOdPyuntJN4W0ukxL46pqD/TlbSl/TltrnD5lby623IzvQE9D0toiNu3G+H0vX
hvDRHWJjh0WDIa0ht2rBrCjtYtq5/nxaIWnF7kn8o5aWTTGhO0ZlrEMLLZhVbZHw
Mr0+xUJSFN5HeoOdSFmajXKL9LAnK4sqM44ntjxBVSSACkJ2nS6He6TORM/0UYvn
lC0pcUuFjoB9hg==
-----END CERTIFICATE-----
Generated at Thu Jun 25 10:35:52 2026 by rpki-client