Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/304aaa-4ce5-4065-b073-26c3365153af/1/QHShwDg61esPBYjkwzlLo0AQpiE.mft
File: QHShwDg61esPBYjkwzlLo0AQpiE.mft (raw, json)
Hash identifier: jVOdmgdpvWXQsOO0Xdvpz6LUdOalvQ+5OvE5H4vnMqQ=
Subject key identifier: 6C:80:E2:AE:68:70:E2:B8:F4:2E:9D:D3:4A:E4:D0:0C:C3:46:90:47
Authority key identifier: 40:74:A1:C0:38:3A:D5:EB:0F:05:88:E4:C3:39:4B:A3:40:10:A6:21
Certificate issuer: /CN=4074a1c0383ad5eb0f0588e4c3394ba34010a621
Certificate serial: 019E9B18008B68080A9D621F43CE43C1521F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QHShwDg61esPBYjkwzlLo0AQpiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/304aaa-4ce5-4065-b073-26c3365153af/1/QHShwDg61esPBYjkwzlLo0AQpiE.mft
Manifest number: 1949
Signing time: Sat 06 Jun 2026 04:01:41 +0000
Manifest this update: Sat 06 Jun 2026 04:01:41 +0000
Manifest next update: Sun 07 Jun 2026 04:01:41 +0000
Files and hashes: 1: QHShwDg61esPBYjkwzlLo0AQpiE.crl (hash: o61pbMtO0tqRYQ78VvzwWGGkCrgH6itVxSAfZERf2Nc=)
2: UuOnxKKINXGrGno4BgqG1wRiVJE.roa (hash: qOk1balDAYueDzPokwNkuPz8mml9IxTXWfQ4Usp7bxE=)
3: lWaDtpARbUJ2WwQgVuDOZ2ytV1Q.roa (hash: jLR4Kee9nPopi72xWjqK7/G5TtGJxgI8fqStb9xXKYY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/304aaa-4ce5-4065-b073-26c3365153af/1/QHShwDg61esPBYjkwzlLo0AQpiE.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/304aaa-4ce5-4065-b073-26c3365153af/1/QHShwDg61esPBYjkwzlLo0AQpiE.mft
rsync://rpki.ripe.net/repository/DEFAULT/QHShwDg61esPBYjkwzlLo0AQpiE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 02:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:9b:18:00:8b:68:08:0a:9d:62:1f:43:ce:43:c1:52:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4074a1c0383ad5eb0f0588e4c3394ba34010a621
Validity
Not Before: Jun 6 04:01:41 2026 GMT
Not After : Jun 7 04:01:41 2026 GMT
Subject: CN=6c80e2ae6870e2b8f42e9dd34ae4d00cc3469047
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d3:90:83:91:ca:f2:95:a2:30:48:d1:68:20:
09:59:38:f9:ff:7f:56:c7:13:da:5f:0e:57:6d:e4:
6d:f3:2c:ed:56:06:e8:82:d6:0c:7e:0e:94:45:85:
f6:c6:f3:5f:8e:1b:5e:d3:e8:e6:ad:c3:c6:45:4b:
81:bc:15:37:31:93:b2:93:14:df:d3:4f:6c:94:da:
6d:fb:f2:61:d5:07:23:86:0b:01:18:e6:7a:2c:8c:
f2:15:ef:29:71:af:12:41:79:4b:a6:b2:95:a6:48:
91:44:07:36:23:11:0a:d3:49:6a:70:31:ef:98:4f:
1c:88:49:0b:b3:76:30:eb:35:b7:a6:3c:f3:74:53:
1f:05:7b:99:8c:f9:79:dd:51:f3:03:84:fb:9a:4a:
d4:e1:60:7c:d7:f9:f5:d3:80:9c:1d:4a:a7:42:a9:
2d:6b:d1:13:f3:a9:fb:7c:d2:16:1e:91:4d:e9:48:
26:e5:c4:7d:e6:a3:44:10:cb:7d:81:3a:89:51:9c:
ac:11:d9:3b:e9:54:f2:f6:b8:6a:0c:51:31:bf:d9:
63:b9:46:68:2e:52:9c:50:57:32:cf:22:0a:11:a4:
9c:0a:d1:da:70:6b:07:a6:4b:b4:14:d4:58:15:e6:
94:1e:1d:f5:27:d4:98:61:a5:71:18:6f:d2:e9:0a:
67:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:80:E2:AE:68:70:E2:B8:F4:2E:9D:D3:4A:E4:D0:0C:C3:46:90:47
X509v3 Authority Key Identifier:
keyid:40:74:A1:C0:38:3A:D5:EB:0F:05:88:E4:C3:39:4B:A3:40:10:A6:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QHShwDg61esPBYjkwzlLo0AQpiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/304aaa-4ce5-4065-b073-26c3365153af/1/QHShwDg61esPBYjkwzlLo0AQpiE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/304aaa-4ce5-4065-b073-26c3365153af/1/QHShwDg61esPBYjkwzlLo0AQpiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:85:b9:7e:e0:22:22:b4:b7:c2:80:f1:47:7f:a1:cb:c4:d5:
73:42:e5:a5:6b:32:f7:98:bb:d4:b0:4a:3a:b6:06:f2:c5:d1:
b3:89:66:6e:dc:b1:92:dc:7a:1b:20:31:57:f6:24:17:fb:18:
75:0a:e9:07:ed:75:d3:a1:0f:99:93:80:ed:6e:e3:a2:e6:b6:
20:7d:1d:e2:f5:47:b9:b9:5e:72:e5:4c:0b:41:39:eb:4c:0d:
9a:04:e0:5e:cb:57:8c:02:3a:58:16:1b:9b:a6:92:2e:9a:dd:
97:69:56:3a:a2:21:03:ea:a6:06:b5:87:a6:e5:1a:5e:d3:c6:
8a:41:85:df:fc:e6:fc:63:71:7b:5e:16:bb:72:cc:66:59:b9:
e0:38:0c:15:7b:38:21:c3:9e:87:aa:46:6f:b2:e5:c6:f9:27:
63:8e:ba:f0:b2:9d:52:1f:90:1f:33:48:1b:a4:00:d2:6d:5d:
05:12:c7:4e:e5:41:10:be:2d:eb:64:e5:36:48:5b:1e:c0:40:
17:a5:e2:64:da:ce:00:58:20:ca:1e:ed:87:fc:d4:11:a8:95:
7f:75:4f:ee:72:2f:c7:30:27:15:18:22:a6:79:68:f1:8f:b7:
e6:a5:77:7e:d8:c3:82:4f:23:bb:b4:d9:9f:3f:02:5e:18:a6:
e4:8f:c0:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 06:59:29 2026 by rpki-client