Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/d27826-3838-4c2b-af93-e86811120c19/1/Q16al_74NTuEg1I3YEaVLdoPq9g.mft
File: Q16al_74NTuEg1I3YEaVLdoPq9g.mft (raw, json)
Hash identifier: 1QtLt+gk+8reDubJUo4pu1ZuP4yl871YCiY3116v1EI=
Subject key identifier: 8A:B6:7A:EA:15:E3:71:19:48:66:25:D1:B8:35:F3:C1:01:89:E3:E0
Authority key identifier: 43:5E:9A:97:FE:F8:35:3B:84:83:52:37:60:46:95:2D:DA:0F:AB:D8
Certificate issuer: /CN=435e9a97fef8353b848352376046952dda0fabd8
Certificate serial: 019EFBDD943DB57D445E83B48C43DF02D9E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q16al_74NTuEg1I3YEaVLdoPq9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/d27826-3838-4c2b-af93-e86811120c19/1/Q16al_74NTuEg1I3YEaVLdoPq9g.mft
Manifest number: 0128
Signing time: Wed 24 Jun 2026 23:01:03 +0000
Manifest this update: Wed 24 Jun 2026 23:01:03 +0000
Manifest next update: Thu 25 Jun 2026 23:01:03 +0000
Files and hashes: 1: Q16al_74NTuEg1I3YEaVLdoPq9g.crl (hash: D1wb6uheBqoN50TXHhcaA2hLHZJzd9qClzoplJW0eCo=)
2: l3PqaLSxh6k9vrvUCKmbE6gQmkY.asa (hash: x39hNYyR5CBqNRDFZRAkQxFcTurTxnv+dKIdTKAhhhc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/d27826-3838-4c2b-af93-e86811120c19/1/Q16al_74NTuEg1I3YEaVLdoPq9g.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/d27826-3838-4c2b-af93-e86811120c19/1/Q16al_74NTuEg1I3YEaVLdoPq9g.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q16al_74NTuEg1I3YEaVLdoPq9g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Jun 2026 23:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:fb:dd:94:3d:b5:7d:44:5e:83:b4:8c:43:df:02:d9:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=435e9a97fef8353b848352376046952dda0fabd8
Validity
Not Before: Jun 24 23:01:03 2026 GMT
Not After : Jun 25 23:01:03 2026 GMT
Subject: CN=8ab67aea15e37119486625d1b835f3c10189e3e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ef:6b:71:02:75:7a:4e:12:f7:1c:07:c0:03:
cd:08:b2:e9:3b:27:a4:c9:cc:d1:af:63:76:c4:35:
b9:0d:36:94:c2:10:57:ac:5f:85:c4:d2:bb:39:d7:
f9:f4:ed:88:0a:12:c7:8f:5b:7a:35:7f:c6:1a:f0:
68:1b:43:35:74:3b:5f:6d:3d:ed:b2:29:46:45:99:
7e:3f:27:f8:53:5a:ab:3b:7f:c8:2d:92:26:a4:f4:
e2:07:18:96:3e:ee:63:7c:22:74:e4:5e:f0:43:8f:
74:1f:6b:24:dd:7e:24:fe:74:af:a4:86:a4:5a:f0:
e6:c2:cc:82:ed:e7:1a:6a:9a:eb:eb:32:25:80:cb:
99:f0:de:09:37:1a:95:9d:27:40:2d:9c:4d:7a:ae:
39:4a:4a:78:4a:f9:d3:88:34:6a:0b:d7:73:0a:43:
23:32:3b:e2:99:43:83:25:94:58:e6:a0:db:81:29:
b7:20:51:82:2e:cc:4a:fe:18:75:14:9a:d4:21:44:
87:00:fb:ea:5e:bc:d0:fc:3a:09:96:bd:85:b2:b2:
1d:01:6c:33:c6:5a:fc:b2:17:0e:ab:da:cb:a1:81:
f8:c3:0e:4a:f6:7a:cf:78:fc:53:3c:46:5b:07:e6:
ca:e5:7a:6d:2d:6f:90:24:1a:40:55:d8:ce:2f:f2:
2a:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:B6:7A:EA:15:E3:71:19:48:66:25:D1:B8:35:F3:C1:01:89:E3:E0
X509v3 Authority Key Identifier:
keyid:43:5E:9A:97:FE:F8:35:3B:84:83:52:37:60:46:95:2D:DA:0F:AB:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q16al_74NTuEg1I3YEaVLdoPq9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/d27826-3838-4c2b-af93-e86811120c19/1/Q16al_74NTuEg1I3YEaVLdoPq9g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/d27826-3838-4c2b-af93-e86811120c19/1/Q16al_74NTuEg1I3YEaVLdoPq9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:00:8d:b5:a1:6b:04:ee:12:92:40:dd:72:03:9e:0e:50:6d:
21:a1:7c:9a:89:6f:36:a6:c0:4e:7b:cf:31:1a:fc:b3:1b:a1:
01:a6:42:1e:49:a4:b3:a2:ac:78:1f:7f:21:7a:28:bc:00:33:
92:d4:05:ad:d3:00:55:fa:83:6a:24:b0:d2:62:97:5a:fd:ea:
f0:43:ed:11:5c:f0:f6:5f:ff:82:13:f9:42:78:31:33:c7:a4:
cb:e8:d7:b7:36:ba:a6:aa:e1:b9:22:26:c8:04:e9:32:d4:2c:
31:1a:3b:10:9e:76:3d:41:ae:ac:54:f3:de:6b:cc:01:e7:fc:
3f:08:4d:21:da:f9:07:14:03:b8:d3:96:64:55:f5:47:f7:fa:
9c:49:7f:f4:3b:8e:14:ea:28:5a:94:c1:75:a6:b1:26:15:71:
c2:32:0a:27:20:6d:8e:2f:f8:a1:d9:9e:d4:11:9d:fa:2f:48:
6e:26:18:66:ed:e9:44:c4:cd:d0:1f:a3:25:80:af:fc:5f:f0:
9e:26:d5:da:28:78:ad:12:75:c7:cc:55:c3:fc:12:16:19:58:
3b:9c:c5:29:a5:e0:fb:ee:6e:db:32:77:9b:43:24:26:71:e4:
d2:7e:b5:ab:ca:4b:39:59:38:5c:f4:95:05:b0:12:47:17:3e:
14:97:3c:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 25 09:38:27 2026 by rpki-client