Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/0f1aaf-b173-4ce1-bcba-cc353ebacba6/1/QxxX4ZIdMaNK69EuUHoTb-BFmMY.mft
File: QxxX4ZIdMaNK69EuUHoTb-BFmMY.mft (raw, json)
Hash identifier: 801RMlD48nHGKkEHccyerqUHI//Gk31bMgMbfD9dKjY=
Subject key identifier: 68:49:5B:9F:49:B2:D0:45:48:49:EE:23:D4:BB:78:16:DE:14:88:23
Authority key identifier: 43:1C:57:E1:92:1D:31:A3:4A:EB:D1:2E:50:7A:13:6F:E0:45:98:C6
Certificate issuer: /CN=431c57e1921d31a34aebd12e507a136fe04598c6
Certificate serial: 019EB8EABB8ECCF3A37688BFE42AB5AF584A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QxxX4ZIdMaNK69EuUHoTb-BFmMY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/0f1aaf-b173-4ce1-bcba-cc353ebacba6/1/QxxX4ZIdMaNK69EuUHoTb-BFmMY.mft
Manifest number: 0713
Signing time: Thu 11 Jun 2026 23:00:51 +0000
Manifest this update: Thu 11 Jun 2026 23:00:51 +0000
Manifest next update: Fri 12 Jun 2026 23:00:51 +0000
Files and hashes: 1: QxxX4ZIdMaNK69EuUHoTb-BFmMY.crl (hash: BmCS68ooHMboJ0aK7tczw07BDX7tyhzlPIRBzvBWJjk=)
2: mIEKfqcwzKGnUqM9s4OdPs7YrbA.roa (hash: buVxIPz10EIVfwpYwh+P1ZYqWF3K+n7bUAR0sR0jGqU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/0f1aaf-b173-4ce1-bcba-cc353ebacba6/1/QxxX4ZIdMaNK69EuUHoTb-BFmMY.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/0f1aaf-b173-4ce1-bcba-cc353ebacba6/1/QxxX4ZIdMaNK69EuUHoTb-BFmMY.mft
rsync://rpki.ripe.net/repository/DEFAULT/QxxX4ZIdMaNK69EuUHoTb-BFmMY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:ea:bb:8e:cc:f3:a3:76:88:bf:e4:2a:b5:af:58:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=431c57e1921d31a34aebd12e507a136fe04598c6
Validity
Not Before: Jun 11 23:00:51 2026 GMT
Not After : Jun 12 23:00:51 2026 GMT
Subject: CN=68495b9f49b2d0454849ee23d4bb7816de148823
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:bf:ac:84:a7:3c:62:f8:1f:51:97:74:9f:b8:
c1:e5:40:e8:ff:d0:8b:36:9b:22:c4:c8:0b:95:60:
e7:f9:22:be:70:d1:11:42:2a:fd:f2:22:ce:a0:5b:
65:58:4b:09:be:f0:da:1f:c0:00:eb:a2:1a:e9:70:
72:89:eb:6d:6d:34:dc:6f:67:d9:06:53:c2:eb:b8:
00:a9:16:e8:fe:4a:c1:df:90:95:b5:9b:16:06:ca:
85:2e:b4:99:c5:9f:12:37:89:b6:7f:ea:40:d0:e9:
10:46:e2:68:33:72:1b:05:69:aa:41:e2:e4:1d:80:
a1:a5:e5:fb:3a:2a:a1:93:86:da:93:05:04:c4:0e:
8f:3c:e4:9b:99:da:59:17:ff:42:ea:96:c5:c2:90:
2d:57:04:b8:a7:12:91:7c:02:75:91:9e:2d:6d:d0:
34:c1:c1:10:f5:f6:f6:01:73:6b:11:53:13:7a:2d:
72:cb:9f:ad:4c:0b:8e:bc:52:a3:df:ab:02:1d:7d:
d5:74:64:0d:4d:cc:e4:ce:ab:d7:6b:94:3c:73:61:
0e:44:bb:57:59:79:c4:47:da:9f:e1:30:91:c5:23:
2b:84:4c:7d:d9:76:9a:c3:56:71:4b:9c:64:95:d8:
d1:6b:31:f8:7a:bb:4c:89:1e:7b:15:cf:8f:15:3f:
d8:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:49:5B:9F:49:B2:D0:45:48:49:EE:23:D4:BB:78:16:DE:14:88:23
X509v3 Authority Key Identifier:
keyid:43:1C:57:E1:92:1D:31:A3:4A:EB:D1:2E:50:7A:13:6F:E0:45:98:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QxxX4ZIdMaNK69EuUHoTb-BFmMY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/0f1aaf-b173-4ce1-bcba-cc353ebacba6/1/QxxX4ZIdMaNK69EuUHoTb-BFmMY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/0f1aaf-b173-4ce1-bcba-cc353ebacba6/1/QxxX4ZIdMaNK69EuUHoTb-BFmMY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:d4:36:b3:d8:4c:c9:3a:c6:72:36:98:a8:3f:50:b3:30:ed:
36:d5:90:13:89:26:5e:da:c9:a9:60:2c:1c:2b:f1:c3:e7:8f:
da:ad:35:66:9c:05:95:79:3e:5e:00:42:67:d1:7f:08:84:a0:
b7:99:34:80:d0:8f:e8:0b:9e:a0:55:9f:4b:2a:83:36:82:aa:
4b:02:cd:3f:b3:be:85:c6:e3:aa:64:65:6a:80:2b:25:f5:77:
2c:df:49:32:fe:da:7d:9a:66:52:c3:58:4f:fc:2e:32:b9:8c:
f8:23:04:c6:4c:fa:fd:07:6b:f5:33:3e:15:20:b1:60:5e:8f:
c3:61:27:49:53:38:e1:ef:bf:b4:6c:48:9a:d6:e0:41:34:4d:
a1:b8:55:65:53:d8:dc:4b:49:60:66:7c:ab:b3:ac:1c:07:b8:
d6:b6:1a:3a:39:e4:95:76:59:d2:90:a9:03:9e:95:bb:ec:d6:
ec:49:28:bb:04:8b:33:e1:98:62:84:9f:97:e8:51:4b:69:87:
9e:a9:99:25:3d:cb:ab:9a:7e:d9:af:f0:66:0a:66:73:00:96:
5b:07:ce:94:f0:f4:bb:f6:d5:75:61:4e:20:57:0c:9e:be:6f:
82:4e:ac:84:7f:f2:8f:b6:c1:93:0e:d4:d4:a0:5e:63:aa:d4:
2d:38:00:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 04:13:41 2026 by rpki-client