Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.mft
File: qvHI3UCIS0nwiAZNPBANKhiahHQ.mft (raw, json)
Hash identifier: 4iQTAY6S0GAlFzLxG48fDvAClJx2PWms9MGDeoVrKPU=
Subject key identifier: 95:89:90:D5:D6:77:EE:48:74:E1:3D:18:8C:4C:E6:72:3C:54:EC:B8
Authority key identifier: AA:F1:C8:DD:40:88:4B:49:F0:88:06:4D:3C:10:0D:2A:18:9A:84:74
Certificate issuer: /CN=aaf1c8dd40884b49f088064d3c100d2a189a8474
Certificate serial: 019DD0BEA1D2CE5B1EEF74CBAE68B376B78F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qvHI3UCIS0nwiAZNPBANKhiahHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.mft
Manifest number: 053B
Signing time: Mon 27 Apr 2026 21:00:47 +0000
Manifest this update: Mon 27 Apr 2026 21:00:47 +0000
Manifest next update: Tue 28 Apr 2026 21:00:47 +0000
Files and hashes: 1: TPinzjQGStjo9WplkE5Cz7wKV1E.roa (hash: PHy3g+7P0F5Q3MN1sN50m0Ft2cJh+htWlf3pquiUF5Y=)
2: qvHI3UCIS0nwiAZNPBANKhiahHQ.crl (hash: A/RhbXxnuDgCfn9IsivVGrkqFJaqnd3kDsVNKj4GmPI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/qvHI3UCIS0nwiAZNPBANKhiahHQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 17:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:d0:be:a1:d2:ce:5b:1e:ef:74:cb:ae:68:b3:76:b7:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aaf1c8dd40884b49f088064d3c100d2a189a8474
Validity
Not Before: Apr 27 21:00:47 2026 GMT
Not After : Apr 28 21:00:47 2026 GMT
Subject: CN=958990d5d677ee4874e13d188c4ce6723c54ecb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:1d:f9:a3:f1:fa:08:6f:af:0b:bb:c1:de:f2:
1b:13:e0:4a:54:38:93:ce:6c:1d:06:e1:a7:d5:bd:
50:20:34:00:5d:85:c9:82:60:c1:75:cd:5f:5d:6a:
8a:d7:70:71:cb:9b:1b:0c:cc:9b:7a:df:fb:07:ac:
6b:fd:a5:3d:4c:96:d6:6d:5d:f4:86:d6:bc:f6:91:
a1:c6:c6:33:48:12:07:c1:2a:c3:84:c8:46:af:0b:
71:4a:81:35:d6:53:2a:2f:db:d8:d6:11:c2:c6:1e:
16:e1:fa:39:5a:8d:b4:c2:b0:62:17:3e:2f:4e:4a:
0c:bb:e9:e6:38:50:fe:df:c1:b1:5c:b3:1a:07:36:
40:ac:80:ad:de:4d:22:8d:71:1a:a5:2f:2f:ce:1e:
d1:1f:03:b9:a3:c1:0e:dc:e4:f8:49:cc:76:8e:be:
fa:64:9c:ec:e3:a6:47:5e:ff:55:67:61:45:50:7c:
7f:4c:30:fe:ed:10:cd:c1:98:a8:74:da:e7:f0:bb:
97:3c:fb:e7:82:0b:1a:6a:6f:ff:ff:4b:cd:05:0e:
41:b0:7c:ca:49:9a:34:93:ea:b8:e7:0d:ed:35:3e:
96:bd:8c:81:df:b7:68:e4:0e:45:f8:71:60:c4:ce:
93:0b:fd:e4:ea:ab:b4:0f:73:ae:27:8b:31:42:12:
b0:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:89:90:D5:D6:77:EE:48:74:E1:3D:18:8C:4C:E6:72:3C:54:EC:B8
X509v3 Authority Key Identifier:
keyid:AA:F1:C8:DD:40:88:4B:49:F0:88:06:4D:3C:10:0D:2A:18:9A:84:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qvHI3UCIS0nwiAZNPBANKhiahHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:17:f1:e4:7d:1b:ef:4a:51:b0:e0:8c:7c:10:ec:90:e3:2d:
73:22:99:93:ac:85:35:36:bc:07:86:b0:bf:80:7b:38:f5:bd:
6f:74:85:0b:62:35:2c:b3:7c:a8:75:3e:66:14:d8:b3:0e:10:
9e:94:a2:dd:83:73:24:07:ef:fc:66:69:dc:da:d5:90:29:18:
ce:ef:c8:cb:7e:8c:1d:af:4f:a1:c2:74:8a:44:8c:ed:3f:d7:
e1:ac:31:46:ef:d8:dd:1c:5b:3b:a3:c2:51:86:8b:04:12:e4:
a1:4e:4a:3e:37:f3:5e:30:6f:9e:96:0c:11:9b:2e:76:8e:b6:
af:23:c8:e3:e1:8a:f1:7b:d0:79:c0:36:94:6a:9f:f1:df:d2:
7b:54:5e:a5:2c:85:cd:06:b8:da:43:36:07:3e:5e:c6:2b:32:
5b:74:9a:cf:07:bf:68:7a:5c:ea:f5:89:f5:69:d9:74:32:ed:
41:53:b1:ca:36:65:d0:6f:a8:0d:b6:62:b5:b9:af:eb:3e:7b:
a2:35:14:ce:fb:5b:f2:4d:fb:40:22:1b:8a:ed:68:48:58:bb:
1a:3a:f8:4e:ff:04:87:b0:cc:9b:4a:8d:7d:eb:36:58:3d:6b:
96:43:31:d3:75:84:35:86:33:f4:6d:6c:5a:fa:e1:c9:40:c1:
ba:f7:8e:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 28 00:16:13 2026 by rpki-client