Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft
File: Q1QWsigrRTPDUJwY6VfODINryDc.mft (raw, json)
Hash identifier: XxMKR+RfdMRaHMOyirRNiRTj7Ul7r35zYIN1fUM5pms=
Subject key identifier: C1:2E:88:49:EB:F6:8C:18:E0:5C:A5:3C:9C:94:E7:8C:CF:19:82:4B
Authority key identifier: 43:54:16:B2:28:2B:45:33:C3:50:9C:18:E9:57:CE:0C:83:6B:C8:37
Certificate issuer: /CN=435416b2282b4533c3509c18e957ce0c836bc837
Certificate serial: 019EB5E9D4E13068D0ABD2F0CF2AD5056CC2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q1QWsigrRTPDUJwY6VfODINryDc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft
Manifest number: 1144
Signing time: Thu 11 Jun 2026 09:01:00 +0000
Manifest this update: Thu 11 Jun 2026 09:01:00 +0000
Manifest next update: Fri 12 Jun 2026 09:01:00 +0000
Files and hashes: 1: MnDYEmNyAQzBpzR98qjs2sOtO_c.roa (hash: 34lKjvmsvDbzxduruRJbqT8KL81GGIwldVfmoVn9Yyw=)
2: Q1QWsigrRTPDUJwY6VfODINryDc.crl (hash: v3Wt/NKOVFkEzvamqlqAnXKdO1tGz5X8Av4ZOOdImw4=)
3: UG9G_dnWRpZkM8dNOUmzQ9ddYpM.roa (hash: VJHtgY+XTe16MdK4R4BNwcTnWb1T/NjN98Z9wb0GkTk=)
4: vUHrTNIykiSnEmNGusQYaFxAqdw.roa (hash: 1iGnZuZAbpNIqbdvK2c36DPr9j4iU15E9+caM/CdPU8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q1QWsigrRTPDUJwY6VfODINryDc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 09:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b5:e9:d4:e1:30:68:d0:ab:d2:f0:cf:2a:d5:05:6c:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=435416b2282b4533c3509c18e957ce0c836bc837
Validity
Not Before: Jun 11 09:01:00 2026 GMT
Not After : Jun 12 09:01:00 2026 GMT
Subject: CN=c12e8849ebf68c18e05ca53c9c94e78ccf19824b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:3f:e5:15:a9:c2:39:27:b5:4c:11:53:fa:77:
cd:b3:bd:d1:64:fd:e8:68:f7:47:6b:f1:0d:26:8b:
9b:e6:47:40:d9:87:bc:16:1a:a2:81:fb:57:40:ca:
62:fc:68:5f:79:f9:c3:45:4a:fb:c9:b7:5f:25:1c:
cb:a5:35:dd:f7:fd:8f:64:17:19:c9:66:7e:31:e4:
23:50:ee:22:65:05:df:0b:3e:35:ea:ba:a5:34:1a:
3c:96:56:6a:19:68:53:fd:33:d7:61:73:f5:18:cb:
9d:ee:14:33:c2:80:ef:8d:fe:5a:81:b0:f9:1f:25:
29:65:42:64:e2:2a:42:88:87:1c:58:ec:d2:32:cf:
4a:44:40:37:ce:dc:4d:70:92:e3:67:f3:f4:bb:5c:
56:b2:2e:88:30:9a:e5:81:23:32:83:b1:ee:39:f4:
2a:b8:ae:29:a0:1b:f1:28:48:4a:05:5f:1b:de:13:
2f:09:d2:e8:96:1f:2f:1c:4f:f9:94:dc:69:0c:da:
b6:ff:d1:03:91:24:dd:80:02:ba:f9:3a:09:8f:7a:
36:2f:a8:88:a2:06:45:19:84:e7:ca:f3:0f:73:d6:
9b:65:b0:ff:36:38:8c:25:b2:04:6d:d3:3e:b5:68:
5c:4d:ce:56:3b:63:80:fd:73:f8:9e:33:2c:d8:bf:
66:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:2E:88:49:EB:F6:8C:18:E0:5C:A5:3C:9C:94:E7:8C:CF:19:82:4B
X509v3 Authority Key Identifier:
keyid:43:54:16:B2:28:2B:45:33:C3:50:9C:18:E9:57:CE:0C:83:6B:C8:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q1QWsigrRTPDUJwY6VfODINryDc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:7e:50:26:92:06:69:f7:f9:de:42:00:d7:7d:0c:e1:59:7e:
cb:b5:be:c0:fc:ec:44:95:f3:c2:79:8f:36:00:e0:c2:7b:a2:
e3:4d:85:a4:01:24:1f:5b:dc:bc:2c:09:a5:28:98:56:4c:34:
cf:e4:88:e1:56:a9:76:7a:6f:41:a1:75:60:e0:89:f8:f7:bb:
4a:09:50:7c:08:da:34:20:e0:d3:2c:f5:8b:d8:4c:ac:88:4a:
ee:96:3e:e0:22:0d:5c:37:f8:e1:06:f5:09:85:2a:24:8d:cb:
7a:a6:34:57:af:ad:8e:6e:3e:50:b6:5d:b4:0d:f0:24:b5:19:
bf:cc:29:4d:bc:ad:aa:9d:53:3b:9a:f1:75:f0:c6:f1:a2:79:
93:bb:a5:f9:90:49:45:5e:1d:04:c9:8e:12:22:26:3a:d0:ba:
43:75:e3:17:24:93:28:15:12:a5:b2:af:20:f3:5f:11:6d:f6:
a0:23:62:bc:5c:9c:d5:78:a7:b5:c9:72:45:a1:75:3f:3b:69:
d0:74:c6:c9:b6:18:09:4b:14:81:9e:08:86:71:35:88:bc:3a:
d5:97:b0:09:a6:68:e8:0f:1b:14:49:fa:6b:a6:47:d3:82:b8:
5c:8d:f8:48:fe:ae:ea:be:6f:cb:3a:38:71:d8:f6:90:2b:eb:
0a:fc:74:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 16:47:29 2026 by rpki-client