Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/dee744-0854-4cf1-af6a-f56c84943a7d/1/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.mft
File: QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.mft (raw, json)
Hash identifier: MC5usLDbk9bVK21rutFe8LhgVDK1a44wRE4Afgb3bAI=
Subject key identifier: B5:9A:86:F3:4A:83:4D:09:03:0A:3B:51:B5:8A:DA:03:55:2D:A5:3A
Authority key identifier: 41:D6:45:1B:92:3A:07:E3:65:B2:F1:90:FA:A5:5A:57:2D:D0:FA:FC
Certificate issuer: /CN=41d6451b923a07e365b2f190faa55a572dd0fafc
Certificate serial: 019E28EFB48BA4EEB18903911C0968324355
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/dee744-0854-4cf1-af6a-f56c84943a7d/1/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.mft
Manifest number: 0BD5
Signing time: Fri 15 May 2026 00:00:58 +0000
Manifest this update: Fri 15 May 2026 00:00:58 +0000
Manifest next update: Sat 16 May 2026 00:00:58 +0000
Files and hashes: 1: M2qWTH73NkMquwfzQJVxK2FVK8I.roa (hash: 5PswSRa1E9ITddc7NsFeNUg4nkAmj5HsnCX0ziwfNao=)
2: QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.crl (hash: vKoFa0k1Pe4dbACcuw+RZMo798OPHjOs0VXrz2LZ0xs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/dee744-0854-4cf1-af6a-f56c84943a7d/1/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/dee744-0854-4cf1-af6a-f56c84943a7d/1/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.mft
rsync://rpki.ripe.net/repository/DEFAULT/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:28:ef:b4:8b:a4:ee:b1:89:03:91:1c:09:68:32:43:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41d6451b923a07e365b2f190faa55a572dd0fafc
Validity
Not Before: May 15 00:00:58 2026 GMT
Not After : May 16 00:00:58 2026 GMT
Subject: CN=b59a86f34a834d09030a3b51b58ada03552da53a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:f3:ae:d8:a0:e2:77:9a:dc:ce:5d:78:5f:76:
ba:ff:6c:2e:ac:fd:25:d7:4d:28:25:e3:9b:52:0b:
d3:99:c1:9a:fd:16:40:41:f9:e2:b9:f2:42:02:41:
f4:01:9b:26:db:10:50:65:23:18:2e:9f:3f:f5:50:
30:38:ea:43:0f:a3:3e:9b:93:c0:69:0b:ef:1a:a0:
19:69:7c:cd:d5:d8:83:22:d9:c9:d9:fb:e0:9b:7e:
95:af:f8:47:a0:14:2c:82:5b:39:7d:c5:f5:9d:7b:
8a:61:93:5c:dc:78:3e:b5:96:08:44:47:53:67:a3:
ca:3a:d5:6a:a0:3a:76:a7:b3:07:97:b6:4c:e8:59:
af:dd:6c:be:7b:79:61:f3:d8:93:79:55:82:df:c4:
f9:27:b9:a4:7c:a0:e5:29:f9:12:7a:a5:40:01:15:
f2:76:21:cc:25:61:0e:0e:41:6b:03:0a:97:a2:88:
47:1c:a5:c7:d2:8a:eb:9c:09:d6:58:9e:06:bb:f8:
bd:24:1c:d9:d6:29:a7:86:c2:7a:4e:84:4d:e5:85:
7b:45:45:d1:cc:f9:bf:c8:98:fb:a2:fd:43:ec:24:
81:76:f6:b2:a1:08:eb:38:c8:34:12:6d:e5:97:dc:
90:f4:7b:71:b6:72:7e:62:5b:81:3e:36:6c:40:d1:
58:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:9A:86:F3:4A:83:4D:09:03:0A:3B:51:B5:8A:DA:03:55:2D:A5:3A
X509v3 Authority Key Identifier:
keyid:41:D6:45:1B:92:3A:07:E3:65:B2:F1:90:FA:A5:5A:57:2D:D0:FA:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/dee744-0854-4cf1-af6a-f56c84943a7d/1/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/dee744-0854-4cf1-af6a-f56c84943a7d/1/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:0d:a1:cd:57:8b:7d:67:02:90:62:d5:fb:02:eb:70:e7:e5:
c7:8c:2f:cf:e4:8e:51:f9:be:e2:9f:38:ef:ac:d9:10:5c:5a:
d1:88:1d:ea:3d:72:9c:79:44:ac:87:9f:8a:25:51:9a:85:74:
e7:7e:f5:90:d0:00:5e:72:b8:57:6e:2a:bf:c4:52:f1:82:d9:
ec:00:09:4a:86:cd:d8:47:62:10:5b:e9:a3:3b:43:e0:74:bb:
90:72:20:81:32:51:e1:0b:af:1d:b9:e2:8e:62:01:46:31:ab:
25:19:40:69:7a:be:81:5f:f7:f0:a1:29:e8:c9:0a:9d:c9:d6:
3a:59:7a:cc:12:79:9b:94:62:bf:de:08:27:d7:1f:92:dc:9d:
45:29:c4:4d:0c:5f:5b:76:28:ad:32:97:05:bd:80:1a:5d:43:
12:53:1e:1d:c4:90:8a:85:24:ad:51:61:4e:e0:73:77:1f:2a:
62:82:fb:4e:e2:70:55:07:7e:0e:b0:64:71:b4:a6:be:b2:4a:
c7:69:03:92:fe:16:73:09:60:98:db:e8:97:87:70:67:ca:c0:
db:f2:00:4f:91:6c:14:dd:20:26:da:38:93:f3:a4:4e:e8:0b:
a6:ec:be:25:cf:c7:d4:21:8f:19:89:72:fc:9d:6c:9a:93:d8:
60:69:09:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 06:59:03 2026 by rpki-client