Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/dee744-0854-4cf1-af6a-f56c84943a7d/1/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.mft
File: QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.mft (raw, json)
Hash identifier: ssAknl0N5V/pZfP4Y5vt5GefoWS8y6SlbP0VNIIPBSM=
Subject key identifier: 20:9E:8D:A4:4D:AD:52:AE:02:94:3D:72:F0:D0:D0:3F:BF:2A:BB:0D
Authority key identifier: 41:D6:45:1B:92:3A:07:E3:65:B2:F1:90:FA:A5:5A:57:2D:D0:FA:FC
Certificate issuer: /CN=41d6451b923a07e365b2f190faa55a572dd0fafc
Certificate serial: 019F129CA59EE933A1CFC7C263C4B4D235AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/dee744-0854-4cf1-af6a-f56c84943a7d/1/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.mft
Manifest number: 0C4E
Signing time: Mon 29 Jun 2026 09:01:23 +0000
Manifest this update: Mon 29 Jun 2026 09:01:23 +0000
Manifest next update: Tue 30 Jun 2026 09:01:23 +0000
Files and hashes: 1: M2qWTH73NkMquwfzQJVxK2FVK8I.roa (hash: 5PswSRa1E9ITddc7NsFeNUg4nkAmj5HsnCX0ziwfNao=)
2: QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.crl (hash: u+G4fonnuQUjdVKtM0DAQy03qqwtpi0WxwF3UAdM7LA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/dee744-0854-4cf1-af6a-f56c84943a7d/1/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/dee744-0854-4cf1-af6a-f56c84943a7d/1/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.mft
rsync://rpki.ripe.net/repository/DEFAULT/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:12:9c:a5:9e:e9:33:a1:cf:c7:c2:63:c4:b4:d2:35:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41d6451b923a07e365b2f190faa55a572dd0fafc
Validity
Not Before: Jun 29 09:01:23 2026 GMT
Not After : Jun 30 09:01:23 2026 GMT
Subject: CN=209e8da44dad52ae02943d72f0d0d03fbf2abb0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:0c:3b:4e:1f:b9:9a:34:c6:14:46:02:1f:c4:
c4:36:6d:2a:a0:16:8d:a1:4b:ba:1c:0f:05:7e:31:
b6:5f:67:01:b5:c0:69:76:95:f4:e6:4b:28:f9:6f:
9d:21:21:10:17:94:c0:39:cd:c4:b7:da:b2:60:30:
95:48:bb:67:01:3f:29:d6:dd:a4:b1:f0:c4:15:f8:
f6:8c:4e:88:ca:22:33:d9:b2:7c:72:46:88:e3:f6:
56:0e:ba:7f:94:3d:6f:04:b1:da:42:f2:dc:63:19:
72:d8:0f:1f:6b:61:e7:81:53:d2:13:e9:ef:98:b4:
1e:69:cd:23:8f:a6:f2:b2:cf:34:05:86:7b:82:5f:
30:1f:20:e1:56:8d:cb:59:c9:f1:7f:5b:b1:06:99:
0b:4d:bb:20:fe:dc:e2:e1:c0:8d:3d:7b:65:a2:e2:
5f:6c:2d:e9:e2:b8:a2:5c:9b:0d:71:e9:2d:15:a4:
df:27:9c:9b:07:7e:2b:e5:3d:ff:79:d8:f7:6f:13:
64:6f:a4:46:dd:d4:39:6d:77:06:d1:0e:9b:19:b2:
2a:fd:b6:be:64:b5:a7:c7:26:03:af:31:78:e2:47:
fe:60:3a:c5:4e:9f:e7:d5:61:d9:a6:b1:ad:04:2b:
09:40:73:5a:52:61:b8:8b:50:28:f7:5c:bb:e6:bd:
2b:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:9E:8D:A4:4D:AD:52:AE:02:94:3D:72:F0:D0:D0:3F:BF:2A:BB:0D
X509v3 Authority Key Identifier:
keyid:41:D6:45:1B:92:3A:07:E3:65:B2:F1:90:FA:A5:5A:57:2D:D0:FA:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/dee744-0854-4cf1-af6a-f56c84943a7d/1/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/dee744-0854-4cf1-af6a-f56c84943a7d/1/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:b8:d5:7c:e8:4e:89:52:d1:66:06:de:fe:c4:61:4d:11:14:
93:34:4f:75:73:f8:7f:4d:e0:0e:54:e2:4b:a1:38:3c:ce:4a:
bb:af:cc:2d:c1:89:14:43:36:4f:92:6e:e4:27:39:a3:e7:86:
78:64:17:9f:3f:b6:f3:5a:dc:b5:55:20:44:4c:22:89:af:df:
e4:5c:96:39:af:7e:58:c3:3f:4c:43:64:66:f4:de:7b:51:5c:
b3:d0:10:5c:40:c3:8f:e0:68:62:25:63:47:36:a3:4c:4d:8e:
18:af:a2:90:b1:a3:10:d4:40:fe:fe:97:ef:51:60:b0:41:ee:
eb:69:d0:fa:5f:b4:04:a0:a2:a2:16:97:d0:d8:63:08:3e:c3:
30:12:7b:43:78:d1:0e:d6:2c:72:e4:04:e9:f1:fa:0b:2f:e4:
4b:1c:46:1f:11:94:85:ad:e8:01:f6:bf:0e:4a:63:3a:be:2d:
20:f9:ca:e3:77:4b:7c:3f:0f:23:ec:2b:8d:a2:a6:01:02:42:
84:9a:da:b0:5d:4b:7d:5a:a8:31:a7:61:a5:47:1d:ce:ef:7f:
68:7b:73:2b:89:82:be:6c:25:99:87:2f:49:b6:dd:64:cc:f2:
78:f3:19:a3:4d:ae:8d:df:65:4d:bd:53:a1:56:9d:3d:cd:8c:
e6:e7:14:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 12:41:04 2026 by rpki-client