Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.mft
File: QhQIjHe9Emh_1Lqf4xWeqAWIjtI.mft (raw, json)
Hash identifier: ANC6NtS/DEbdUtsPHc8Bg568bzZ66Kr3nKBdT32JnEk=
Subject key identifier: 7A:48:5A:46:18:3D:97:38:6F:BC:21:D5:07:BB:0F:56:F2:BA:44:78
Authority key identifier: 42:14:08:8C:77:BD:12:68:7F:D4:BA:9F:E3:15:9E:A8:05:88:8E:D2
Certificate issuer: /CN=4214088c77bd12687fd4ba9fe3159ea805888ed2
Certificate serial: 019E329824A0F6CED227AC94FEB4D4107695
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.mft
Manifest number: 1912
Signing time: Sat 16 May 2026 21:01:32 +0000
Manifest this update: Sat 16 May 2026 21:01:32 +0000
Manifest next update: Sun 17 May 2026 21:01:32 +0000
Files and hashes: 1: QhQIjHe9Emh_1Lqf4xWeqAWIjtI.crl (hash: X5Iy3MWwiGi6oo4uk7qSWBwO9uwaoLIvPaj7FLdgTOs=)
2: Qx55ZZjEUo3STaLz-yeXRfFXd6U.roa (hash: H6SY2nIdu7L2TEJH4MdS8DA2eloYCGNuqXlJqZac4sw=)
3: vuIHlCo4UFDYBSAD5tytHEhhhAY.roa (hash: hMc0m1Zi/iK2n4XsoGvD9oSD37NqfaVTNmYIxARhpew=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 21:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:32:98:24:a0:f6:ce:d2:27:ac:94:fe:b4:d4:10:76:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4214088c77bd12687fd4ba9fe3159ea805888ed2
Validity
Not Before: May 16 21:01:32 2026 GMT
Not After : May 17 21:01:32 2026 GMT
Subject: CN=7a485a46183d97386fbc21d507bb0f56f2ba4478
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f0:cb:00:d3:9d:c2:0c:a3:0f:21:b1:19:cb:
83:f3:65:46:1b:81:de:94:e1:24:4a:4c:e1:b4:8c:
83:19:c9:82:de:89:5a:f9:90:86:5a:7c:85:4f:60:
09:cd:7f:ee:85:b2:22:70:11:b6:ef:6b:0f:9e:a5:
3b:0a:23:26:94:54:f7:4e:56:18:fd:a9:58:87:e8:
06:7d:ed:30:c9:3a:5c:df:c3:f4:23:b1:d1:cc:6d:
0b:10:e7:aa:b2:b7:fd:ef:a5:44:c9:7b:cd:d9:fc:
8d:f9:89:4f:e4:e6:df:07:c4:5f:a4:30:e8:28:6b:
ef:aa:69:36:87:41:3d:b2:42:07:af:1c:88:8c:d5:
86:8b:e2:66:95:bd:d5:85:11:7e:be:c8:62:7d:bd:
78:b4:e5:02:f9:05:83:e0:0b:d6:92:51:b0:6c:8e:
cf:61:9d:ca:3c:a0:18:fa:7f:73:dd:a2:c5:62:94:
04:db:f7:c9:54:1a:f8:1f:45:d6:49:49:16:3e:a1:
67:aa:bc:df:37:b6:0f:b4:8b:42:63:53:6e:24:2e:
20:97:5c:76:bc:cc:7a:59:2b:13:2a:d5:ec:15:19:
45:ed:aa:87:39:31:11:06:b1:c6:07:f8:18:b3:1a:
9b:54:be:38:c4:f8:30:ef:cb:b7:41:ba:bd:44:35:
cf:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:48:5A:46:18:3D:97:38:6F:BC:21:D5:07:BB:0F:56:F2:BA:44:78
X509v3 Authority Key Identifier:
keyid:42:14:08:8C:77:BD:12:68:7F:D4:BA:9F:E3:15:9E:A8:05:88:8E:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:bb:ad:41:6b:ea:49:0b:4f:99:fc:9b:65:ed:ad:f7:12:b6:
8d:6c:d9:3c:b4:2c:30:87:4d:e6:2b:fd:06:47:3d:16:6f:73:
26:bd:5d:0d:1e:bb:35:87:29:34:e2:6d:06:8f:2f:da:ce:1f:
b8:40:fe:2e:22:71:a0:88:bd:d8:43:a1:d9:8e:17:cd:2d:49:
49:8d:95:54:72:14:7f:07:27:22:55:3f:ec:49:c1:69:3e:bc:
ef:47:1a:ce:65:9c:94:35:30:1e:ed:fb:5a:f2:04:88:28:bd:
c9:3c:c7:d3:55:f8:ae:d8:18:b7:2f:5b:c9:fc:97:ca:86:13:
32:5b:e3:d6:75:cb:6a:14:01:7b:bc:82:c3:4c:56:51:8b:07:
cb:ec:b4:8a:72:dc:b9:a8:83:43:76:30:55:0b:d9:9d:0e:55:
fe:1b:2d:56:77:3e:5a:fb:5c:07:82:ac:b1:c7:db:6c:7e:63:
5f:e9:39:f6:64:76:20:86:c0:88:3e:59:2a:76:7b:23:24:b0:
bd:eb:10:56:7d:fe:20:3a:ba:ff:6e:14:7a:eb:ed:0d:6f:97:
33:53:9d:32:e5:f5:df:05:07:df:1c:4a:01:99:c3:c4:0f:a4:
3a:b6:8b:08:71:c4:5b:37:3f:37:dd:31:53:00:57:7b:92:4a:
b9:a1:fc:67
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4ymCSg9s7SJ6yU/rTUEHaVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyMTQwODhjNzdiZDEyNjg3ZmQ0YmE5ZmUzMTU5ZWE4MDU4
ODhlZDIwHhcNMjYwNTE2MjEwMTMyWhcNMjYwNTE3MjEwMTMyWjAzMTEwLwYDVQQD
Eyg3YTQ4NWE0NjE4M2Q5NzM4NmZiYzIxZDUwN2JiMGY1NmYyYmE0NDc4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn/DLANOdwgyjDyGxGcuD82VGG4He
lOEkSkzhtIyDGcmC3ola+ZCGWnyFT2AJzX/uhbIicBG272sPnqU7CiMmlFT3TlYY
/alYh+gGfe0wyTpc38P0I7HRzG0LEOeqsrf976VEyXvN2fyN+YlP5ObfB8RfpDDo
KGvvqmk2h0E9skIHrxyIjNWGi+Jmlb3VhRF+vshifb14tOUC+QWD4AvWklGwbI7P
YZ3KPKAY+n9z3aLFYpQE2/fJVBr4H0XWSUkWPqFnqrzfN7YPtItCY1NuJC4gl1x2
vMx6WSsTKtXsFRlF7aqHOTERBrHGB/gYsxqbVL44xPgw78u3Qbq9RDXPFwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHpIWkYYPZc4b7wh1Qe7D1byukR4MB8GA1UdIwQY
MBaAFEIUCIx3vRJof9S6n+MVnqgFiI7SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUWhRSWpIZTlFbWhfMUxxZjR4V2VxQVdJanRJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9iYjVlY2UtMDEyZS00MTk0LTk5ODAt
N2UyMWRiNWEyZWY5LzEvUWhRSWpIZTlFbWhfMUxxZjR4V2VxQVdJanRJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS9iYjVlY2UtMDEyZS00MTk0LTk5ODAtN2UyMWRiNWEyZWY5
LzEvUWhRSWpIZTlFbWhfMUxxZjR4V2VxQVdJanRJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAd7utQWvq
SQtPmfybZe2t9xK2jWzZPLQsMIdN5iv9Bkc9Fm9zJr1dDR67NYcpNOJtBo8v2s4f
uED+LiJxoIi92EOh2Y4XzS1JSY2VVHIUfwcnIlU/7EnBaT6870cazmWclDUwHu37
WvIEiCi9yTzH01X4rtgYty9byfyXyoYTMlvj1nXLahQBe7yCw0xWUYsHy+y0inLc
uaiDQ3YwVQvZnQ5V/hstVnc+WvtcB4KsscfbbH5jX+k59mR2IIbAiD5ZKnZ7IySw
vesQVn3+IDq6/24UeuvtDW+XM1OdMuX13wUH3xxKAZnDxA+kOraLCHHEWzc/N90x
UwBXe5JKuaH8Zw==
-----END CERTIFICATE-----
Generated at Sun May 17 01:05:03 2026 by rpki-client