Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.mft
File: QGYnM7yHPRPh-fZujf91yCDV0vc.mft (raw, json)
Hash identifier: zr3n4Wr/wUNqxmz54w8Mfu2fApu0lTkyZPZsNhMtmmQ=
Subject key identifier: D1:24:3B:71:09:72:B6:3E:32:F9:58:4F:05:90:E8:94:50:22:64:7A
Authority key identifier: 40:66:27:33:BC:87:3D:13:E1:F9:F6:6E:8D:FF:75:C8:20:D5:D2:F7
Certificate issuer: /CN=40662733bc873d13e1f9f66e8dff75c820d5d2f7
Certificate serial: 019E905C7A5D25482813EFDF6B074000DB17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QGYnM7yHPRPh-fZujf91yCDV0vc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.mft
Manifest number: 1147
Signing time: Thu 04 Jun 2026 02:00:40 +0000
Manifest this update: Thu 04 Jun 2026 02:00:40 +0000
Manifest next update: Fri 05 Jun 2026 02:00:40 +0000
Files and hashes: 1: 41UHcYawFZ6dwCf_FfKVxB6pAyA.roa (hash: mxz0vZfXkFbrjS45D2R+Mi2lF9MSSxAbkahXO8KfBYc=)
2: QGYnM7yHPRPh-fZujf91yCDV0vc.crl (hash: CbbF7vUWIcPmdZswhCehGEbPOeQ0mZoY0GH61jwCCR0=)
3: gDO3yGlii3vGStP0g8IXSinnODc.asa (hash: 4GKXfRU/6q53CGfLh+IE//Y0yEXtQGF8Ot458LYjOwE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.mft
rsync://rpki.ripe.net/repository/DEFAULT/QGYnM7yHPRPh-fZujf91yCDV0vc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Jun 2026 02:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:90:5c:7a:5d:25:48:28:13:ef:df:6b:07:40:00:db:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40662733bc873d13e1f9f66e8dff75c820d5d2f7
Validity
Not Before: Jun 4 02:00:40 2026 GMT
Not After : Jun 5 02:00:40 2026 GMT
Subject: CN=d1243b710972b63e32f9584f0590e8945022647a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:7b:90:1b:ab:bc:77:62:5c:9a:65:a5:d4:df:
0f:83:46:99:54:5a:c3:35:ec:95:18:2a:8f:ea:d5:
e4:b6:b1:c9:e0:c6:ea:c4:54:53:1e:a9:52:9a:68:
15:08:f7:a4:e7:ec:67:2b:c6:e6:70:1d:b9:c6:30:
1a:66:bf:f3:f5:71:f5:01:25:b0:e5:5e:00:d3:cf:
bc:f9:48:8b:bd:c6:2a:45:b3:31:5d:5b:f5:74:89:
28:e7:b4:38:83:80:9f:af:a1:e0:91:2e:9d:a2:07:
6c:23:4f:c7:2e:69:9d:ca:81:25:48:04:ac:96:04:
64:47:ef:2c:8a:98:de:9c:61:fa:d6:5a:df:60:7a:
14:df:ec:2b:11:25:95:71:89:c4:65:a9:27:34:52:
36:30:6d:49:99:87:ed:21:26:81:cf:34:3c:b2:72:
4f:d2:62:ff:5d:01:ae:8e:18:36:3a:88:fe:cd:57:
82:f4:89:dc:2e:a9:c0:0c:82:57:58:db:d3:01:78:
cc:6d:8a:aa:ee:00:44:20:71:04:e5:d5:56:07:52:
3d:52:53:44:08:90:09:80:8f:c0:93:75:d1:0e:16:
ec:9c:5f:86:6d:80:72:63:11:9c:1b:94:61:fe:cb:
5b:40:1e:57:c4:75:d9:6a:80:88:36:b1:91:1d:08:
a5:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:24:3B:71:09:72:B6:3E:32:F9:58:4F:05:90:E8:94:50:22:64:7A
X509v3 Authority Key Identifier:
keyid:40:66:27:33:BC:87:3D:13:E1:F9:F6:6E:8D:FF:75:C8:20:D5:D2:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QGYnM7yHPRPh-fZujf91yCDV0vc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:2d:04:57:3d:6a:e7:cc:5a:fc:42:bb:0c:61:95:0c:e9:07:
a0:10:74:5a:62:a1:ab:5c:6f:53:d7:d9:59:29:43:a8:bb:1e:
59:cb:77:47:cc:16:07:e3:32:73:20:82:6a:5c:93:ad:c2:52:
77:be:45:85:30:ff:43:5f:66:4d:92:20:55:9f:91:84:76:3f:
39:79:b0:17:03:cc:14:f1:2d:95:bd:86:d3:77:18:e4:e9:83:
dc:8d:87:68:71:fd:97:ce:6e:58:dc:91:34:aa:af:57:d9:a4:
7e:6d:14:71:8d:3a:da:b4:25:72:c1:59:75:ac:e6:0b:87:ff:
7d:4a:39:87:59:26:3e:7f:ae:20:4f:14:96:67:c8:54:11:a7:
7a:be:0d:88:e1:8b:ae:5f:8b:35:b7:62:15:47:e9:4a:0d:e8:
30:43:56:a3:01:c9:30:43:11:19:b3:3d:89:3b:d8:62:20:4f:
50:df:d1:3f:ec:0d:63:42:6a:62:86:82:f4:a2:e2:54:1e:98:
6f:40:3e:ed:5b:f4:be:c0:2a:e0:89:ad:dd:81:b9:d9:6c:6a:
ac:50:1a:b4:83:0d:1c:a2:74:d0:73:7c:b3:9d:62:66:d1:03:
bb:0d:0d:e0:d7:0c:ae:95:09:16:35:97:f3:8d:49:d3:e7:72:
4e:35:e8:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 12:21:07 2026 by rpki-client