Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.mft
File: qltHHQugidnp9GwpExlnT6yBKNA.mft (raw, json)
Hash identifier: w3bhGL2yMtmlHZt2CAwEd9fNm/SECMr83UAAzzxw4IY=
Subject key identifier: 1F:1F:E4:C8:D9:27:FF:7A:D5:FD:50:E6:9B:86:4A:3E:31:8F:C2:D5
Authority key identifier: AA:5B:47:1D:0B:A0:89:D9:E9:F4:6C:29:13:19:67:4F:AC:81:28:D0
Certificate issuer: /CN=aa5b471d0ba089d9e9f46c291319674fac8128d0
Certificate serial: 019E51B4CF0DBB947E4814C02DF31C2F6D71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qltHHQugidnp9GwpExlnT6yBKNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.mft
Manifest number: 0F73
Signing time: Fri 22 May 2026 22:01:04 +0000
Manifest this update: Fri 22 May 2026 22:01:04 +0000
Manifest next update: Sat 23 May 2026 22:01:04 +0000
Files and hashes: 1: RGHMhabHZkPW5wXprVh6WUeUNEU.roa (hash: aWxpktwD4HwK4DqUq/i3jSDZlGsjYGbb6rrk+6zxpz0=)
2: hW9pmZmoOAPv4EQxUHQXTXDJr6s.roa (hash: mjwhxdNEgH8aH/IfZWkqyz4fW356i+YVNu/YE2e6m8A=)
3: qltHHQugidnp9GwpExlnT6yBKNA.crl (hash: ILJYxFG7mIthcn0qacxysdKPBBjwGGdOuDYpXOZnAkE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.mft
rsync://rpki.ripe.net/repository/DEFAULT/qltHHQugidnp9GwpExlnT6yBKNA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 May 2026 17:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:51:b4:cf:0d:bb:94:7e:48:14:c0:2d:f3:1c:2f:6d:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa5b471d0ba089d9e9f46c291319674fac8128d0
Validity
Not Before: May 22 22:01:04 2026 GMT
Not After : May 23 22:01:04 2026 GMT
Subject: CN=1f1fe4c8d927ff7ad5fd50e69b864a3e318fc2d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:83:3e:40:c7:37:00:e5:b2:80:8c:52:0f:0b:
9b:e3:0e:e7:4a:b1:47:4e:dc:c9:ac:4a:e4:53:05:
73:e6:48:82:de:52:d2:ee:5f:f2:35:6c:0b:7f:90:
66:59:43:16:b4:b6:7e:17:dc:47:50:42:b1:46:e9:
1a:47:ad:d4:22:14:70:c5:88:b9:32:4c:71:87:28:
d1:4c:a3:52:65:05:db:57:02:ad:c5:25:14:79:2b:
6d:9d:ce:81:c5:25:ed:c5:36:b0:90:3e:f4:52:13:
41:16:cd:1b:0a:70:ba:fa:c9:c9:04:3d:18:6d:18:
32:ff:58:78:db:49:96:4e:60:09:b0:ce:0c:32:0f:
92:77:cf:c5:82:3e:fa:b5:db:7b:1c:41:aa:ca:46:
0e:f0:98:d6:c4:2f:9a:83:91:7c:55:5d:03:13:03:
f5:11:4b:66:29:91:ac:f8:ba:bc:02:73:b5:c5:6b:
bb:4b:8c:0e:8e:36:3f:80:a4:36:87:19:76:a3:11:
55:c2:07:10:4c:0c:49:5f:cc:fa:b9:7c:21:16:c6:
5c:75:6b:62:7d:25:1b:78:6e:a1:69:95:94:83:f2:
54:fc:92:97:35:e7:da:21:38:ba:2e:c7:69:b3:bc:
00:7c:13:f9:b7:bd:bb:4f:e0:af:47:c4:31:60:4d:
77:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:1F:E4:C8:D9:27:FF:7A:D5:FD:50:E6:9B:86:4A:3E:31:8F:C2:D5
X509v3 Authority Key Identifier:
keyid:AA:5B:47:1D:0B:A0:89:D9:E9:F4:6C:29:13:19:67:4F:AC:81:28:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qltHHQugidnp9GwpExlnT6yBKNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/4be027-88e9-47e3-bb88-6f2e2529be82/1/qltHHQugidnp9GwpExlnT6yBKNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:71:e8:2c:35:cf:e6:b9:1e:bf:e4:e7:ec:27:01:bd:f3:97:
a4:c3:d1:8a:a1:7b:46:90:12:be:f9:7e:90:0e:f6:a5:30:38:
5c:f5:ff:e4:12:f4:d3:4c:e7:25:1a:23:b6:14:9f:aa:73:a7:
0e:65:fd:df:8f:3a:cf:68:c1:f3:68:4b:3d:8c:d4:b6:24:ff:
a9:a8:8e:73:39:e9:22:5b:ad:f5:6d:85:2a:f4:00:67:41:74:
b8:13:fa:69:08:d7:15:d5:59:4d:39:86:a3:62:c0:5e:9d:9c:
ec:86:07:2e:d8:8f:63:44:19:21:d4:63:fd:6e:e8:27:b9:fe:
13:dc:10:0a:8f:9a:97:f9:03:38:d5:28:26:84:d3:c8:74:34:
33:60:e0:5e:a0:45:cb:72:8e:07:eb:67:ca:dd:3c:86:3a:e8:
d0:38:b4:f6:39:8c:b6:be:96:ed:01:4f:10:c0:cc:d1:6c:66:
47:99:11:ab:ad:7c:70:72:a8:ee:44:99:9a:96:93:80:99:26:
c7:2a:21:30:fa:e5:b1:c0:a8:7f:6d:47:ff:16:c8:99:98:fe:
b4:b3:80:09:f0:4e:a1:a8:43:91:fe:cf:1a:9e:12:1a:27:e8:
c9:ff:57:c2:4a:db:d5:e4:ca:8d:54:8f:4d:ff:0a:fa:2d:51:
be:ca:1e:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 23 03:47:35 2026 by rpki-client