Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.mft
File: Q94YPxSj8k-bhtBE-HcphoC1Ers.mft (raw, json)
Hash identifier: a0pfZpxir7nTftVOPhXugvxjbIw7yiEqEdSA4toYCnA=
Subject key identifier: F8:48:4B:45:58:78:27:08:E5:00:DB:16:9E:05:7E:D1:0B:77:86:CD
Authority key identifier: 43:DE:18:3F:14:A3:F2:4F:9B:86:D0:44:F8:77:29:86:80:B5:12:BB
Certificate issuer: /CN=43de183f14a3f24f9b86d044f877298680b512bb
Certificate serial: 019EBA34B745AB25B1871AA7C9C77918AAA2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q94YPxSj8k-bhtBE-HcphoC1Ers.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.mft
Manifest number: 07C1
Signing time: Fri 12 Jun 2026 05:01:17 +0000
Manifest this update: Fri 12 Jun 2026 05:01:17 +0000
Manifest next update: Sat 13 Jun 2026 05:01:17 +0000
Files and hashes: 1: Q94YPxSj8k-bhtBE-HcphoC1Ers.crl (hash: F7am75MiAJ0jYts1kGOmtkppGeA6iEi+/SbiZoE3RrQ=)
2: eRzoAPCehzYUsTKWzumpWnRkGv4.asa (hash: XuGTrIZBYEhP0vD01NV66qn1i9p1ktzdlWy+jaqHixE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q94YPxSj8k-bhtBE-HcphoC1Ers.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 22:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:ba:34:b7:45:ab:25:b1:87:1a:a7:c9:c7:79:18:aa:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43de183f14a3f24f9b86d044f877298680b512bb
Validity
Not Before: Jun 12 05:01:17 2026 GMT
Not After : Jun 13 05:01:17 2026 GMT
Subject: CN=f8484b4558782708e500db169e057ed10b7786cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:5c:96:d8:9d:59:30:ae:47:c3:f7:0d:00:9d:
db:0c:59:5d:41:e1:54:40:fe:2a:45:7f:f7:56:e7:
2d:82:66:79:3d:0d:3a:0b:3a:e0:fe:ac:29:b4:57:
48:28:95:d3:61:94:fd:06:87:3d:7c:c8:b0:05:b8:
ac:a8:25:be:a3:a5:be:1f:31:6a:db:31:f9:33:4f:
f2:e1:39:63:ee:98:99:21:d9:95:58:9e:3c:67:23:
03:7f:4c:f3:ca:1f:cd:a8:10:4e:41:b7:26:01:89:
06:4b:19:00:1b:ec:56:9b:e5:4e:d4:15:63:22:12:
83:da:ba:09:f7:8c:c2:1e:2a:94:b5:4c:ba:62:e0:
64:19:a1:b3:23:55:71:49:27:69:6a:c4:cb:de:cf:
c9:9c:04:51:08:38:c5:d1:f9:04:38:b2:c1:95:3b:
0a:40:da:86:ef:02:3c:02:ac:b8:9b:5c:d0:1a:de:
1e:76:10:8f:d6:06:d1:77:83:88:6d:c9:c2:0b:d7:
e2:b4:4b:a4:6f:22:93:04:4a:e4:f0:18:f1:1c:2b:
2f:c8:f0:f1:62:5c:33:4f:59:ef:01:25:3f:a6:ce:
0f:c0:20:29:a5:b0:e3:b7:b9:3b:2a:64:ab:a6:c8:
45:c6:a2:7b:5b:9b:f0:10:2a:b4:b6:70:d3:24:91:
9d:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:48:4B:45:58:78:27:08:E5:00:DB:16:9E:05:7E:D1:0B:77:86:CD
X509v3 Authority Key Identifier:
keyid:43:DE:18:3F:14:A3:F2:4F:9B:86:D0:44:F8:77:29:86:80:B5:12:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q94YPxSj8k-bhtBE-HcphoC1Ers.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:2b:37:9c:95:9e:ac:ae:13:31:a7:7c:b9:47:5f:d8:c0:e1:
d4:7a:3a:9e:29:87:5e:b0:76:31:b0:17:a7:6f:ef:c0:f4:b6:
fc:ec:be:8d:38:ab:d0:e3:f5:49:9f:73:0b:fd:bd:45:45:7a:
ad:dc:63:e2:3f:d0:62:06:e5:9d:03:ec:37:0c:44:90:a3:71:
16:9c:e6:b4:16:37:8a:70:f4:e3:5b:3b:60:11:55:40:b4:f8:
a1:97:55:24:1e:82:97:02:ac:af:8f:55:d4:db:7f:9e:21:ce:
dc:4f:ba:98:84:fb:21:ef:5b:f6:99:0a:e2:82:4f:7e:1c:40:
96:53:8d:86:f9:78:a6:7b:68:df:2d:8d:2d:12:58:08:0c:b2:
7b:c7:6b:1c:90:5c:25:af:52:6a:b1:8a:62:06:5c:d4:12:28:
ad:0a:8f:66:b0:3c:1b:b0:ae:30:e4:10:15:20:65:6f:82:ba:
82:5b:51:83:d0:f7:95:e4:46:c9:d3:f7:03:4f:82:75:a8:fd:
5b:1f:db:fe:4e:25:c0:89:57:24:4f:71:1e:f7:16:f5:74:79:
2b:20:1d:8f:d3:54:d9:4b:fc:20:69:78:51:96:19:6e:d8:d2:
62:96:60:7f:7e:81:2d:66:82:5d:98:ed:4c:41:f5:de:87:95:
7d:86:37:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 08:39:52 2026 by rpki-client