Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.mft
File: QsCVkBFifd0NBX1zHo-lpRApZZI.mft (raw, json)
Hash identifier: 8OGzv+3kqRCUzF7KJa0K2ZlMDyBVibNXlCz4lskqRRA=
Subject key identifier: A3:4E:10:5C:42:70:17:31:14:FD:DE:73:6A:0C:A7:04:20:2C:19:60
Authority key identifier: 42:C0:95:90:11:62:7D:DD:0D:05:7D:73:1E:8F:A5:A5:10:29:65:92
Certificate issuer: /CN=42c0959011627ddd0d057d731e8fa5a510296592
Certificate serial: 019E31856CD16C8A625E3E82E1763E66EC46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QsCVkBFifd0NBX1zHo-lpRApZZI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.mft
Manifest number: 1911
Signing time: Sat 16 May 2026 16:01:28 +0000
Manifest this update: Sat 16 May 2026 16:01:28 +0000
Manifest next update: Sun 17 May 2026 16:01:28 +0000
Files and hashes: 1: QsCVkBFifd0NBX1zHo-lpRApZZI.crl (hash: 7nLPmTRXbfzwBuoGnOcupHLFUWoOoHWfv172NjR6zow=)
2: RMmBnfd1TCGUmEC2O6JokpnQVQ8.roa (hash: wPMgtMcsG/KMNrN9/altEtQua2Hm0vaKQpeGiiY5B3Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QsCVkBFifd0NBX1zHo-lpRApZZI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:85:6c:d1:6c:8a:62:5e:3e:82:e1:76:3e:66:ec:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42c0959011627ddd0d057d731e8fa5a510296592
Validity
Not Before: May 16 16:01:28 2026 GMT
Not After : May 17 16:01:28 2026 GMT
Subject: CN=a34e105c4270173114fdde736a0ca704202c1960
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:4a:18:23:e3:28:cc:81:31:14:92:cb:10:a3:
e2:f8:b7:99:be:38:fc:da:1a:0e:fc:1d:1e:20:f2:
67:e9:71:c8:8f:4c:74:e3:a3:66:41:13:a3:4d:6d:
59:72:88:25:17:f3:ea:e3:e1:47:65:5d:87:af:74:
c7:94:bc:df:4f:07:a5:8b:2a:e3:88:ec:a1:fc:16:
56:2d:e4:a3:e9:89:57:b5:af:a2:fe:5c:5e:65:40:
b5:52:f0:b3:7a:53:c0:5b:de:7d:ff:34:44:3a:b1:
36:25:e1:26:39:dd:d1:34:0c:d6:33:3b:ad:b4:a9:
43:c8:c8:a4:2a:c7:92:98:77:8a:bc:43:03:5b:8a:
1c:20:76:5e:62:0e:ea:28:23:ab:eb:61:73:9f:95:
cd:4c:eb:0a:41:48:38:d1:98:46:01:b3:63:cd:50:
64:34:21:88:dd:ad:67:28:0e:f1:51:bf:e2:ae:43:
26:2e:eb:60:60:2d:ae:db:8d:c4:ed:81:cd:f0:f6:
11:66:8e:50:bc:d1:c5:41:50:e5:9a:2c:ee:75:10:
6a:0f:c6:c1:00:b0:be:8c:2b:a8:f4:dc:3a:0c:a1:
35:bf:20:35:80:de:5e:9a:26:aa:fe:26:2e:2c:bb:
70:3f:b9:f6:1a:c4:43:47:a8:04:ca:4e:38:03:d1:
c9:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:4E:10:5C:42:70:17:31:14:FD:DE:73:6A:0C:A7:04:20:2C:19:60
X509v3 Authority Key Identifier:
keyid:42:C0:95:90:11:62:7D:DD:0D:05:7D:73:1E:8F:A5:A5:10:29:65:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QsCVkBFifd0NBX1zHo-lpRApZZI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:3a:c6:1f:3c:88:c1:1a:fb:bf:68:b1:b2:9a:75:d6:bc:aa:
07:ab:86:a1:07:53:6e:7b:d8:6c:40:da:44:8e:06:47:67:bb:
92:d8:f1:26:dc:ae:3d:96:dd:e4:5d:87:c8:a8:94:cf:0e:1a:
26:35:ae:52:8d:ef:cb:61:24:63:53:27:e2:02:c3:44:c4:56:
45:f4:c7:4d:42:68:a9:f0:f0:cf:b6:0c:38:c4:8f:75:a0:b2:
8d:d4:bb:90:25:bd:10:d4:13:a6:4c:09:88:24:61:57:ed:06:
6f:da:9c:cc:16:aa:9a:82:7c:86:bd:7c:1c:70:1b:03:dd:07:
06:86:65:c7:cc:1d:ae:ba:f1:21:26:9e:5c:4c:2a:af:b1:b5:
93:06:d1:4b:10:9f:5e:a4:9a:a7:b2:b3:cb:10:df:eb:9b:92:
3a:11:90:8a:50:83:36:46:ee:4b:d6:12:22:61:6e:31:fb:6e:
f6:5e:79:e1:e5:d7:ee:83:ba:79:3b:28:e9:a9:49:c4:9e:7d:
c4:a8:62:cd:c7:d6:b6:67:88:f4:20:f4:76:69:e0:0b:bc:75:
6a:e9:54:83:dc:4d:c8:ee:8a:bd:e1:3b:2a:ae:48:47:fa:e6:
d7:92:ed:e1:39:f5:ca:1d:b7:30:6f:fa:e5:47:e9:22:55:1a:
36:c7:31:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 22:01:47 2026 by rpki-client