
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft
File: QY1UtVsZKiSLhHI026US-XYMq_o.mft (raw, json)
Hash identifier: OZKycqrJmEUCv6HEd9GxszomLb4+fLv6gytVdztfP0c=
Subject key identifier: 92:41:FD:03:F2:5B:E1:DD:ED:F4:BE:D1:40:4C:20:12:30:61:B3:48
Authority key identifier: 41:8D:54:B5:5B:19:2A:24:8B:84:72:34:DB:A5:12:F9:76:0C:AB:FA
Certificate issuer: /CN=418d54b55b192a248b847234dba512f9760cabfa
Certificate serial: 019F3D4F8B23ADC5934101A566E9CE20F2E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QY1UtVsZKiSLhHI026US-XYMq_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft
Manifest number: 0D1F
Signing time: Tue 07 Jul 2026 16:00:50 +0000
Manifest this update: Tue 07 Jul 2026 16:00:50 +0000
Manifest next update: Wed 08 Jul 2026 16:00:50 +0000
Files and hashes: 1: QY1UtVsZKiSLhHI026US-XYMq_o.crl (hash: 6+eDSPck+8TvCZ4R2PA/x/k0VUyMXL9g/jJTJK3G/38=)
2: SD4DOOe1Q-YfVl5PpC2wzjneINo.roa (hash: rAueVU0HnCRC0myAX4koUuZ65An0z5mJknuS+tLrJrQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft
rsync://rpki.ripe.net/repository/DEFAULT/QY1UtVsZKiSLhHI026US-XYMq_o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 Jul 2026 14:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:3d:4f:8b:23:ad:c5:93:41:01:a5:66:e9:ce:20:f2:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=418d54b55b192a248b847234dba512f9760cabfa
Validity
Not Before: Jul 7 16:00:50 2026 GMT
Not After : Jul 8 16:00:50 2026 GMT
Subject: CN=9241fd03f25be1ddedf4bed1404c20123061b348
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:c9:e5:60:37:a8:5a:15:1f:6b:55:66:06:82:
06:9b:7a:e4:54:21:d9:b7:59:f5:b7:33:62:7c:7d:
7f:9e:9e:74:a3:aa:5e:7d:99:14:0c:53:af:6e:96:
3a:26:0f:0a:d3:48:b6:ab:d4:3d:c0:cd:9e:39:1e:
25:62:81:80:76:10:9d:19:89:b5:14:02:82:1a:ce:
65:e5:3e:a2:34:4b:11:f1:a3:b7:62:f0:f3:f2:f2:
c0:38:93:fa:96:19:7a:06:d0:80:37:a1:e5:ea:31:
c0:52:f0:b5:38:16:51:67:e6:c7:20:90:b9:2b:a1:
de:11:6c:49:85:e5:ca:18:1e:64:9b:5b:92:f4:08:
6d:37:58:81:8f:c1:42:e6:45:83:5f:61:9b:59:0f:
c6:45:42:33:61:f7:c3:1a:3d:a2:ca:d5:34:7b:94:
6a:8a:4c:d4:d1:69:b6:d1:05:1a:2e:d0:34:30:f0:
b7:4e:2a:40:98:03:73:b2:46:b5:1b:77:19:82:b3:
37:1f:2f:68:7c:32:af:a6:a1:5c:52:73:ac:d8:43:
0e:7c:d9:73:ae:a0:99:2f:cd:a7:ef:e0:92:f8:0e:
8a:50:ee:c4:3c:1f:52:4a:09:df:c7:fc:99:32:cf:
05:c7:68:eb:63:b9:c5:d7:ff:c3:b6:9a:1b:b6:2e:
f2:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:41:FD:03:F2:5B:E1:DD:ED:F4:BE:D1:40:4C:20:12:30:61:B3:48
X509v3 Authority Key Identifier:
keyid:41:8D:54:B5:5B:19:2A:24:8B:84:72:34:DB:A5:12:F9:76:0C:AB:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QY1UtVsZKiSLhHI026US-XYMq_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:97:c5:4f:d6:f4:22:2a:4e:25:67:b6:41:b7:87:7e:64:b2:
91:47:72:f7:07:7b:02:f4:03:b8:37:ba:b6:15:46:44:5c:26:
ab:c0:0a:c6:9e:65:1c:b9:f8:dd:c6:15:bb:b9:48:be:0e:12:
2a:29:22:a3:65:58:6d:9e:0c:85:03:da:88:e2:56:e1:ed:55:
66:88:e1:ec:46:d9:49:b8:19:e1:63:d0:8c:40:9e:0a:9a:11:
a2:b9:66:78:24:fa:bc:db:a3:b9:95:6d:48:3b:f5:74:c5:15:
01:f0:31:2b:86:32:8b:61:be:f8:fb:9b:10:c8:e2:07:9b:d8:
22:c4:52:61:3e:8e:0b:ba:aa:b0:16:0c:88:d7:4a:39:fc:9b:
ca:c8:a6:0b:cb:d6:cf:87:dc:49:e1:6e:0c:e6:a3:02:a6:d4:
16:b0:0f:11:7e:fb:34:5a:13:d1:dd:eb:16:5c:a3:f2:33:35:
d2:33:59:76:ed:a3:86:c7:e3:c2:17:27:cf:57:b3:ff:53:8c:
31:28:f6:d9:56:30:8f:f8:99:55:c0:5c:02:c7:f6:ea:37:44:
61:d0:e3:83:57:df:db:25:ec:9a:14:6b:b2:ba:92:9e:d8:6b:
e6:7c:6e:22:37:3b:e6:0e:f0:28:5f:f0:c4:b2:2c:eb:ac:c4:
66:38:32:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 7 23:13:05 2026 by rpki-client