Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/bb9947-172c-48b1-be8e-4c905adbf076/1/Q0XQdzx63gjUSBnjthG9KXo5idM.mft
File: Q0XQdzx63gjUSBnjthG9KXo5idM.mft (raw, json)
Hash identifier: WPlzj9i3rkPv3DB9yoDhube/jhXxmnmoP2JVJUun5Ck=
Subject key identifier: 57:89:D5:EE:86:B2:35:23:C5:89:CA:C1:EA:17:A0:76:7C:DC:38:E1
Authority key identifier: 43:45:D0:77:3C:7A:DE:08:D4:48:19:E3:B6:11:BD:29:7A:39:89:D3
Certificate issuer: /CN=4345d0773c7ade08d44819e3b611bd297a3989d3
Certificate serial: 019EB7A08EAE49BDCB7F2DE4B87B50A0A577
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q0XQdzx63gjUSBnjthG9KXo5idM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/bb9947-172c-48b1-be8e-4c905adbf076/1/Q0XQdzx63gjUSBnjthG9KXo5idM.mft
Manifest number: 166F
Signing time: Thu 11 Jun 2026 17:00:13 +0000
Manifest this update: Thu 11 Jun 2026 17:00:13 +0000
Manifest next update: Fri 12 Jun 2026 17:00:13 +0000
Files and hashes: 1: Q0XQdzx63gjUSBnjthG9KXo5idM.crl (hash: lb+kZDypwb6C9DVOcGuwVcHdSwrwRPR5vlEhMVlo+jA=)
2: T42ISOzOZCjRJULwv95Ki_1s9aQ.roa (hash: Mey912qaR+jcZwTBP3JL+1sjx7k32kwZ3D6pir+lHUc=)
3: hK81XxwexeAS1Vg0WZOVuuxaXZ0.roa (hash: 1mtzz3B7T8LCh8jy6BmMpwy7jaCIEVijH1m2+CPXt+Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/bb9947-172c-48b1-be8e-4c905adbf076/1/Q0XQdzx63gjUSBnjthG9KXo5idM.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/bb9947-172c-48b1-be8e-4c905adbf076/1/Q0XQdzx63gjUSBnjthG9KXo5idM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q0XQdzx63gjUSBnjthG9KXo5idM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 17:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b7:a0:8e:ae:49:bd:cb:7f:2d:e4:b8:7b:50:a0:a5:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4345d0773c7ade08d44819e3b611bd297a3989d3
Validity
Not Before: Jun 11 17:00:13 2026 GMT
Not After : Jun 12 17:00:13 2026 GMT
Subject: CN=5789d5ee86b23523c589cac1ea17a0767cdc38e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:27:55:86:11:95:95:c6:8d:45:8f:cd:b9:49:
f3:05:8d:c2:5b:f9:a4:e7:87:7d:33:30:dd:88:b4:
3f:e2:24:4d:88:d0:cf:72:02:a3:8f:3a:7a:c8:96:
fa:1c:ce:da:ab:24:02:fe:b0:af:b9:14:30:7d:ba:
94:54:4c:e5:4f:4a:68:2b:ea:d5:7a:07:85:ad:d9:
74:f7:b1:bf:11:85:f7:19:65:f0:df:1a:59:68:1f:
6c:ac:6e:be:7c:a9:5a:d0:f3:95:03:d2:6f:0a:75:
f0:d4:97:91:8c:60:12:66:cc:d6:1a:50:a6:f7:ba:
68:18:06:de:e2:10:2d:10:35:5d:ea:94:96:85:01:
ed:26:ba:48:b2:8d:e4:37:fc:71:e6:f7:49:71:57:
13:f4:5f:c1:07:c2:42:42:dd:8d:fd:55:7a:f1:a8:
aa:6d:d8:d1:46:54:3b:20:5f:e7:6a:87:d8:bd:c6:
ec:43:45:a8:91:8c:ac:33:47:34:c1:fc:9d:0a:ad:
d5:4d:6e:28:df:c5:31:ee:14:b2:1c:8c:58:66:07:
3d:2e:33:16:8d:56:38:44:ab:39:13:b5:a7:a5:c2:
77:23:a2:c4:0d:9a:23:6f:c9:89:e9:dd:35:2e:c3:
0a:05:83:8f:06:1d:7b:a1:18:96:26:db:ef:42:a5:
41:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:89:D5:EE:86:B2:35:23:C5:89:CA:C1:EA:17:A0:76:7C:DC:38:E1
X509v3 Authority Key Identifier:
keyid:43:45:D0:77:3C:7A:DE:08:D4:48:19:E3:B6:11:BD:29:7A:39:89:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q0XQdzx63gjUSBnjthG9KXo5idM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/bb9947-172c-48b1-be8e-4c905adbf076/1/Q0XQdzx63gjUSBnjthG9KXo5idM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/bb9947-172c-48b1-be8e-4c905adbf076/1/Q0XQdzx63gjUSBnjthG9KXo5idM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:73:d6:20:8d:c5:8c:9b:1b:47:f6:28:58:7e:8c:3a:b9:70:
59:5a:ce:36:72:9a:49:5f:69:53:53:0c:b4:87:42:8a:11:82:
f2:8d:d3:39:f0:82:9d:9e:f2:6f:37:4d:09:4d:ee:f5:1a:82:
dd:89:24:8d:79:46:84:1f:c6:b8:fe:ce:7a:ce:03:d7:01:d3:
64:a7:e1:8e:31:4f:f1:dd:0d:9f:3d:eb:93:08:ee:4e:24:57:
cc:ea:e0:74:dd:0b:96:b2:5e:ef:e1:14:b2:9f:d3:2e:84:78:
84:11:04:1a:97:93:cb:4c:05:3d:68:f6:0e:96:b2:55:37:7d:
18:dd:c6:81:f5:c0:fb:21:af:42:cd:7f:0e:6d:32:35:e4:61:
d5:00:05:d3:5f:de:95:c7:ff:23:16:ab:ea:f3:2a:5d:c3:68:
4b:3a:4b:01:e5:2c:f3:a8:58:ec:87:61:d3:e7:2d:55:24:1c:
dc:7b:42:b4:58:12:3b:59:c0:9f:27:f1:7c:05:89:61:b8:7f:
0e:b5:a6:97:c0:85:40:d5:fd:23:3d:17:dd:5a:6f:ec:cd:71:
f8:b7:38:e5:c0:23:8b:98:23:ab:a7:8c:f2:4e:90:59:0b:9e:
e9:98:e5:52:d3:83:09:67:cc:2e:ce:72:37:d5:44:6b:50:4b:
40:ad:d7:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 00:58:11 2026 by rpki-client