Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/287870-0e1b-4cd2-8f24-6710e96a1b6f/1/q33wfyEEN2kvd-7DRpuaSCuW0ao.mft
File: q33wfyEEN2kvd-7DRpuaSCuW0ao.mft (raw, json)
Hash identifier: P60PmsKR7Dx5XgQQHTaL0L3pESKU7BnFkBOfEkxhM2Q=
Subject key identifier: 69:81:A0:ED:84:C8:3A:71:7A:78:3E:FE:39:66:F4:F7:16:B8:5D:E1
Authority key identifier: AB:7D:F0:7F:21:04:37:69:2F:77:EE:C3:46:9B:9A:48:2B:96:D1:AA
Certificate issuer: /CN=ab7df07f210437692f77eec3469b9a482b96d1aa
Certificate serial: 019EB9C63BA77EC096F1C77D70D925FD6DF3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q33wfyEEN2kvd-7DRpuaSCuW0ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/287870-0e1b-4cd2-8f24-6710e96a1b6f/1/q33wfyEEN2kvd-7DRpuaSCuW0ao.mft
Manifest number: 08EB
Signing time: Fri 12 Jun 2026 03:00:36 +0000
Manifest this update: Fri 12 Jun 2026 03:00:36 +0000
Manifest next update: Sat 13 Jun 2026 03:00:36 +0000
Files and hashes: 1: q33wfyEEN2kvd-7DRpuaSCuW0ao.crl (hash: LMoez8V7dVpzKskA6iWtNMFxZexGH5C7xXKW7AZc6Pw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/287870-0e1b-4cd2-8f24-6710e96a1b6f/1/q33wfyEEN2kvd-7DRpuaSCuW0ao.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/287870-0e1b-4cd2-8f24-6710e96a1b6f/1/q33wfyEEN2kvd-7DRpuaSCuW0ao.mft
rsync://rpki.ripe.net/repository/DEFAULT/q33wfyEEN2kvd-7DRpuaSCuW0ao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b9:c6:3b:a7:7e:c0:96:f1:c7:7d:70:d9:25:fd:6d:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab7df07f210437692f77eec3469b9a482b96d1aa
Validity
Not Before: Jun 12 03:00:36 2026 GMT
Not After : Jun 13 03:00:36 2026 GMT
Subject: CN=6981a0ed84c83a717a783efe3966f4f716b85de1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:70:e7:e8:65:f8:55:26:06:c9:6e:fb:ed:e9:
ad:3e:90:de:a7:49:de:b9:97:9d:b6:6d:a9:8b:f7:
f3:b7:30:22:51:cc:64:93:6d:2d:6b:d7:7b:32:0d:
18:69:d2:91:1c:09:61:70:fc:bf:a6:45:81:5d:00:
91:60:97:6d:53:10:64:35:f4:ea:a0:d4:6e:d5:85:
e0:34:3d:62:cc:c1:9a:8b:68:a5:d2:73:59:e7:2d:
4e:3f:b1:4b:88:a4:da:68:c4:e6:0c:7e:a5:23:67:
25:4c:16:46:9e:60:b6:bb:64:af:b7:dd:c4:85:87:
a4:4e:a5:4a:ab:17:b7:c4:aa:ef:2b:0b:7d:23:1b:
a1:84:5a:97:5c:bd:ef:5f:71:d2:80:ee:b6:ca:c9:
56:35:a1:6e:05:42:6d:20:59:b6:76:34:54:d2:bb:
f6:f7:53:43:b4:c2:e1:e7:f9:8a:76:8b:2c:c3:bd:
57:c2:82:40:35:48:7b:7a:05:01:4e:d4:ed:f7:0c:
a2:58:9e:99:4d:23:4c:29:0b:8a:21:2b:25:98:d8:
df:5c:f4:26:1f:a5:98:d4:69:49:94:d8:5d:8f:74:
b7:9a:6c:37:61:86:c6:be:7f:74:d4:f9:1a:b9:88:
e3:49:6d:62:46:cf:f4:76:9b:0a:19:e9:ef:9c:18:
b2:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:81:A0:ED:84:C8:3A:71:7A:78:3E:FE:39:66:F4:F7:16:B8:5D:E1
X509v3 Authority Key Identifier:
keyid:AB:7D:F0:7F:21:04:37:69:2F:77:EE:C3:46:9B:9A:48:2B:96:D1:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q33wfyEEN2kvd-7DRpuaSCuW0ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/287870-0e1b-4cd2-8f24-6710e96a1b6f/1/q33wfyEEN2kvd-7DRpuaSCuW0ao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/287870-0e1b-4cd2-8f24-6710e96a1b6f/1/q33wfyEEN2kvd-7DRpuaSCuW0ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:f3:02:77:22:31:29:26:69:0c:1e:ba:b4:58:07:ef:9f:0c:
54:54:bc:9c:18:f3:2f:5c:c1:96:71:60:89:04:72:9a:88:d1:
ad:0e:1a:38:94:6e:c5:be:5c:57:08:54:6d:7f:52:af:25:b3:
1e:67:09:ac:9f:e5:41:06:a1:84:f7:72:41:85:21:88:ae:84:
aa:ae:49:d1:8a:32:31:34:88:c8:5b:82:77:27:53:10:07:f8:
49:70:c3:5b:27:f7:88:26:10:89:93:c8:f8:2e:46:3b:2b:fa:
d0:1f:10:bb:53:53:60:35:8d:de:b3:1e:2e:76:ca:c9:65:bd:
4e:a9:ff:5f:16:ea:d0:6f:a8:a5:2a:69:03:4c:93:4d:ca:f6:
fa:ed:36:13:49:c5:0d:35:fd:fd:55:8a:93:a0:03:88:ab:e4:
df:68:5b:35:b1:98:72:c3:1d:da:3b:8d:46:ca:78:23:7e:39:
c3:e1:db:e3:3c:b5:7a:d8:d4:71:63:42:a2:6e:79:6f:7f:f7:
b9:69:18:50:bd:61:26:62:95:3b:fe:27:2c:c9:43:bf:4c:a0:
6b:eb:a8:ca:b4:de:b1:4c:35:28:5a:dc:00:39:5c:5d:80:c8:
a0:47:90:78:54:53:db:d3:cf:f9:d1:25:aa:40:ed:8c:e8:93:
a6:a9:9c:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 05:20:16 2026 by rpki-client