Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft
File: QY1UtVsZKiSLhHI026US-XYMq_o.mft (raw, json)
Hash identifier: UUHMtuz0mitvVymxcLTkAndOW6JEGgOsqr5kfV+QnTA=
Subject key identifier: F1:97:5A:A9:AC:B1:20:75:EE:17:5C:C7:0F:1E:0C:CE:3D:FE:9C:97
Authority key identifier: 41:8D:54:B5:5B:19:2A:24:8B:84:72:34:DB:A5:12:F9:76:0C:AB:FA
Certificate issuer: /CN=418d54b55b192a248b847234dba512f9760cabfa
Certificate serial: 019E53A2DEB21CDC0C6426EB870DFBB717B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QY1UtVsZKiSLhHI026US-XYMq_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft
Manifest number: 0CA6
Signing time: Sat 23 May 2026 07:00:43 +0000
Manifest this update: Sat 23 May 2026 07:00:43 +0000
Manifest next update: Sun 24 May 2026 07:00:43 +0000
Files and hashes: 1: QY1UtVsZKiSLhHI026US-XYMq_o.crl (hash: pkDdITg7MZBjKQyDTE9AK7qAHJMoqgEIdFq67K8YU/o=)
2: SD4DOOe1Q-YfVl5PpC2wzjneINo.roa (hash: rAueVU0HnCRC0myAX4koUuZ65An0z5mJknuS+tLrJrQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft
rsync://rpki.ripe.net/repository/DEFAULT/QY1UtVsZKiSLhHI026US-XYMq_o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 May 2026 07:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:53:a2:de:b2:1c:dc:0c:64:26:eb:87:0d:fb:b7:17:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=418d54b55b192a248b847234dba512f9760cabfa
Validity
Not Before: May 23 07:00:43 2026 GMT
Not After : May 24 07:00:43 2026 GMT
Subject: CN=f1975aa9acb12075ee175cc70f1e0cce3dfe9c97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:a1:6b:2d:15:cd:41:f6:12:6c:2c:83:55:9a:
29:b3:ec:13:6f:fa:b3:cd:f6:55:fe:a8:db:b2:df:
97:af:f6:f4:66:0d:4f:d9:23:7f:db:f7:0d:96:6f:
8e:3b:3a:46:e1:d3:c9:78:de:b6:bc:ad:7e:4f:99:
d4:d8:21:5f:42:13:36:c8:17:a2:bc:d1:3e:49:68:
93:fd:93:20:df:a7:a0:89:20:6a:7c:ee:57:09:d2:
73:05:a8:46:7f:c0:fc:ae:34:44:6e:ea:97:f1:72:
87:3e:80:e9:95:80:ba:28:57:78:6e:a9:e2:d0:e8:
f3:2d:49:c5:e7:74:32:55:a6:3c:2f:ae:ad:cd:a0:
1f:d7:76:81:e0:f7:83:45:af:50:07:8f:14:d8:5f:
e6:9f:30:c4:3a:bf:fb:c7:27:ef:d8:54:75:8f:a5:
5a:8d:c3:61:72:ad:ea:ae:18:f5:62:ea:d5:7b:89:
1a:e2:d4:8d:c1:d8:07:9b:9b:d9:5f:d5:d2:c8:89:
6e:f2:8e:f4:56:75:06:72:2b:26:bc:9f:e8:45:b3:
5e:8e:de:82:61:98:8d:fb:4c:0b:14:e8:bd:fa:ef:
16:f6:ec:d2:8b:e6:06:47:1e:06:a0:20:5b:96:ad:
6f:a1:1d:01:70:30:23:e2:13:c5:0e:fe:6a:ba:31:
cf:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:97:5A:A9:AC:B1:20:75:EE:17:5C:C7:0F:1E:0C:CE:3D:FE:9C:97
X509v3 Authority Key Identifier:
keyid:41:8D:54:B5:5B:19:2A:24:8B:84:72:34:DB:A5:12:F9:76:0C:AB:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QY1UtVsZKiSLhHI026US-XYMq_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b43857-021c-4262-b183-1d77cf2a7100/1/QY1UtVsZKiSLhHI026US-XYMq_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:40:97:34:d1:fe:09:03:2c:42:60:d6:93:32:e3:6c:5c:eb:
6a:ff:9b:a9:2c:e8:12:ff:5f:d0:46:67:e9:ad:a7:be:5c:ff:
24:03:4d:9a:c2:79:ee:96:1f:cf:96:43:48:20:ee:89:89:2d:
49:86:ec:99:49:12:85:9e:68:82:33:01:ec:0c:f4:53:33:4a:
45:43:34:f9:b2:9c:76:38:4f:99:46:71:a9:ec:69:8b:7a:e9:
57:0d:10:12:19:df:02:92:a4:44:8d:a2:09:6c:63:f4:13:e9:
14:e9:99:03:f8:36:30:97:8d:42:18:bc:91:a9:8c:81:1c:2c:
81:26:b5:12:0f:98:5c:ff:f5:d9:4f:2c:43:85:51:4a:ca:c7:
3f:cd:87:1c:47:3d:d4:b7:3e:fe:33:a4:3a:83:a8:7c:da:05:
59:4b:bf:47:22:e6:7f:ff:63:b5:00:1e:a3:6d:d2:a0:c4:6f:
bc:46:65:f3:08:11:b5:ab:48:a3:f4:44:7f:1e:21:61:c2:ea:
17:6d:db:57:9b:85:00:9b:37:eb:29:d7:fa:fa:bb:2f:c8:8a:
95:fb:9d:fc:d5:f8:67:9d:fc:6f:a5:6e:c0:25:e9:13:b8:4f:
00:53:a4:c5:99:98:9c:70:ab:0e:59:85:5c:6c:c2:77:73:a6:
65:35:36:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 23 18:10:02 2026 by rpki-client