Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/4be259-be96-40fa-880e-bbd2106f3370/1/Q34DDURmGkwgHroD3kUrBLjn2eU.mft
File: Q34DDURmGkwgHroD3kUrBLjn2eU.mft (raw, json)
Hash identifier: TkGi4s12cia4I7cU6rmz7An1+ppY3NAWtu+2MaA2Ztw=
Subject key identifier: 63:6C:E7:6A:3D:DF:6C:66:89:16:B4:90:60:D0:B3:0A:98:E5:8B:F4
Authority key identifier: 43:7E:03:0D:44:66:1A:4C:20:1E:BA:03:DE:45:2B:04:B8:E7:D9:E5
Certificate issuer: /CN=437e030d44661a4c201eba03de452b04b8e7d9e5
Certificate serial: 019EB50D62DD7C401EC73A7AAC6D245F6508
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q34DDURmGkwgHroD3kUrBLjn2eU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/4be259-be96-40fa-880e-bbd2106f3370/1/Q34DDURmGkwgHroD3kUrBLjn2eU.mft
Manifest number: 189A
Signing time: Thu 11 Jun 2026 05:00:13 +0000
Manifest this update: Thu 11 Jun 2026 05:00:13 +0000
Manifest next update: Fri 12 Jun 2026 05:00:13 +0000
Files and hashes: 1: DsEiDbdONX-wlDkZ_X-1g9jpCQg.roa (hash: OA/21KHBKcEIJSTWxQCJ0tkhioZ536fK4ENW6PbwjpI=)
2: Q34DDURmGkwgHroD3kUrBLjn2eU.crl (hash: 9uUdEwOUCiE81gkkru1iE1AYJ8K2DEMZN7nPKklYCLk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/4be259-be96-40fa-880e-bbd2106f3370/1/Q34DDURmGkwgHroD3kUrBLjn2eU.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/4be259-be96-40fa-880e-bbd2106f3370/1/Q34DDURmGkwgHroD3kUrBLjn2eU.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q34DDURmGkwgHroD3kUrBLjn2eU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 05:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b5:0d:62:dd:7c:40:1e:c7:3a:7a:ac:6d:24:5f:65:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=437e030d44661a4c201eba03de452b04b8e7d9e5
Validity
Not Before: Jun 11 05:00:13 2026 GMT
Not After : Jun 12 05:00:13 2026 GMT
Subject: CN=636ce76a3ddf6c668916b49060d0b30a98e58bf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:69:c0:ba:18:b5:8a:3f:24:ae:e3:69:00:af:
49:6e:45:bb:d6:16:6f:28:a6:fe:9c:6c:2f:7d:a4:
c0:3a:39:c2:70:a9:54:44:0d:5a:a9:b5:86:17:78:
db:93:ac:90:c5:4c:2e:41:ac:8c:c3:46:b8:e1:3e:
53:7e:2c:57:e8:04:0a:27:7b:07:47:37:a7:92:ba:
56:e8:f0:a7:a0:64:ae:d4:3d:ab:cb:5c:19:0d:d9:
07:02:b1:62:73:f6:64:21:4f:c6:fa:ee:45:85:cf:
0d:a4:8b:8f:dc:22:80:12:fa:38:90:ea:05:1c:4d:
62:a2:f0:dd:6d:b2:27:49:19:44:a0:e5:b1:c7:d4:
08:87:53:0b:04:8c:d0:2e:8d:e8:9f:40:ba:3b:71:
ec:50:67:33:60:6c:01:8a:82:f9:83:a4:8f:09:1b:
9e:ba:6b:60:23:e7:2c:dd:43:9b:9b:e1:0d:0b:2b:
76:80:02:0c:47:c1:60:24:62:60:21:81:4a:5f:33:
d8:ea:6c:77:f2:f4:56:bd:02:e2:3a:40:45:e6:ba:
d0:0a:cb:25:91:94:b7:76:39:84:47:5c:f7:cb:73:
23:66:b2:e8:02:80:2d:17:32:17:18:91:c9:6d:af:
c3:04:24:65:1b:45:20:ad:a6:0c:10:58:28:49:90:
38:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:6C:E7:6A:3D:DF:6C:66:89:16:B4:90:60:D0:B3:0A:98:E5:8B:F4
X509v3 Authority Key Identifier:
keyid:43:7E:03:0D:44:66:1A:4C:20:1E:BA:03:DE:45:2B:04:B8:E7:D9:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q34DDURmGkwgHroD3kUrBLjn2eU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/4be259-be96-40fa-880e-bbd2106f3370/1/Q34DDURmGkwgHroD3kUrBLjn2eU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/4be259-be96-40fa-880e-bbd2106f3370/1/Q34DDURmGkwgHroD3kUrBLjn2eU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:87:23:30:64:85:6e:b6:d5:77:19:18:d8:05:27:11:27:c4:
05:9d:e5:74:b6:e8:cc:41:70:59:26:50:06:58:b9:73:ff:5e:
29:9a:20:3d:23:7a:88:02:56:92:99:43:37:49:d6:e3:60:de:
e3:d2:71:41:d0:4d:21:48:b8:15:89:8b:2d:b7:fe:b0:08:4f:
7b:51:b7:0c:2f:4f:c0:a7:d3:a8:09:65:d6:97:30:ce:8e:a4:
69:61:2d:52:4b:08:7f:1c:0d:5b:7a:cf:a4:b6:16:1b:42:92:
4a:b3:48:c3:c1:88:87:a4:ff:33:17:61:a0:09:1e:b3:ce:85:
90:80:55:14:75:7d:c5:28:3f:66:b0:47:f5:91:cb:eb:57:86:
d8:93:ad:ea:6e:70:44:0f:6f:2f:43:78:44:0b:af:18:ed:07:
2c:8f:8e:e2:c0:2b:19:12:d9:37:ee:a7:de:9d:06:a3:03:1b:
56:d8:b7:16:6b:0b:c7:e3:d2:2c:9a:ca:4a:ff:5d:26:11:ac:
a3:07:76:4a:6a:ff:4a:80:b2:3c:77:54:e1:33:1c:7f:f7:e4:
5c:d6:35:e8:01:6d:ea:df:06:aa:14:6c:8f:ca:37:8b:ea:47:
7c:54:e8:8d:09:44:53:bb:1d:9a:a7:ca:0d:21:b9:db:98:1a:
4c:44:9a:9c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ61DWLdfEAexzp6rG0kX2UIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQzN2UwMzBkNDQ2NjFhNGMyMDFlYmEwM2RlNDUyYjA0Yjhl
N2Q5ZTUwHhcNMjYwNjExMDUwMDEzWhcNMjYwNjEyMDUwMDEzWjAzMTEwLwYDVQQD
Eyg2MzZjZTc2YTNkZGY2YzY2ODkxNmI0OTA2MGQwYjMwYTk4ZTU4YmY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0mnAuhi1ij8kruNpAK9JbkW71hZv
KKb+nGwvfaTAOjnCcKlURA1aqbWGF3jbk6yQxUwuQayMw0a44T5TfixX6AQKJ3sH
RzenkrpW6PCnoGSu1D2ry1wZDdkHArFic/ZkIU/G+u5Fhc8NpIuP3CKAEvo4kOoF
HE1iovDdbbInSRlEoOWxx9QIh1MLBIzQLo3on0C6O3HsUGczYGwBioL5g6SPCRue
umtgI+cs3UObm+ENCyt2gAIMR8FgJGJgIYFKXzPY6mx38vRWvQLiOkBF5rrQCssl
kZS3djmER1z3y3MjZrLoAoAtFzIXGJHJba/DBCRlG0UgraYMEFgoSZA43QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGNs52o932xmiRa0kGDQswqY5Yv0MB8GA1UdIwQY
MBaAFEN+Aw1EZhpMIB66A95FKwS459nlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUTM0RERVUm1Ha3dnSHJvRDNrVXJCTGpuMmVVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS80YmUyNTktYmU5Ni00MGZhLTg4MGUt
YmJkMjEwNmYzMzcwLzEvUTM0RERVUm1Ha3dnSHJvRDNrVXJCTGpuMmVVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS80YmUyNTktYmU5Ni00MGZhLTg4MGUtYmJkMjEwNmYzMzcw
LzEvUTM0RERVUm1Ha3dnSHJvRDNrVXJCTGpuMmVVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIocjMGSF
brbVdxkY2AUnESfEBZ3ldLbozEFwWSZQBli5c/9eKZogPSN6iAJWkplDN0nW42De
49JxQdBNIUi4FYmLLbf+sAhPe1G3DC9PwKfTqAll1pcwzo6kaWEtUksIfxwNW3rP
pLYWG0KSSrNIw8GIh6T/MxdhoAkes86FkIBVFHV9xSg/ZrBH9ZHL61eG2JOt6m5w
RA9vL0N4RAuvGO0HLI+O4sArGRLZN+6n3p0GowMbVti3FmsLx+PSLJrKSv9dJhGs
owd2Smr/SoCyPHdU4TMcf/fkXNY16AFt6t8GqhRsj8o3i+pHfFTojQlEU7sdmqfK
DSG525gaTESanA==
-----END CERTIFICATE-----
Generated at Thu Jun 11 13:31:31 2026 by rpki-client