Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.mft
File: Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.mft (raw, json)
Hash identifier: M2LqnNkLtxrsMypxuPYXR9u2HNaUob6n+fGOLksVBKQ=
Subject key identifier: 37:A0:6C:5F:FE:B6:92:17:FB:A0:88:35:1A:1D:78:AD:52:BB:09:9F
Authority key identifier: 41:F7:36:70:AC:16:1F:4B:56:67:9C:49:DA:8B:48:9B:60:BF:0B:16
Certificate issuer: /CN=41f73670ac161f4b56679c49da8b489b60bf0b16
Certificate serial: 019E491FDAFCA00E583AD5BA514BAEBE9E97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.mft
Manifest number: 17A5
Signing time: Thu 21 May 2026 06:01:24 +0000
Manifest this update: Thu 21 May 2026 06:01:24 +0000
Manifest next update: Fri 22 May 2026 06:01:24 +0000
Files and hashes: 1: 6E7-9daevK2MkkP9J_irNaIbJPM.roa (hash: nqBQWE4qRj5lWqiwp2QfZYIRYl9NsKmCq2MDZGildvE=)
2: Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.crl (hash: i47V8sD6GDFbvK2e1viKZJlSmFp7Lnvx64JfzMImtMQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 May 2026 06:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:49:1f:da:fc:a0:0e:58:3a:d5:ba:51:4b:ae:be:9e:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41f73670ac161f4b56679c49da8b489b60bf0b16
Validity
Not Before: May 21 06:01:24 2026 GMT
Not After : May 22 06:01:24 2026 GMT
Subject: CN=37a06c5ffeb69217fba088351a1d78ad52bb099f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:c2:73:6d:89:f3:07:cb:d0:19:33:22:0a:55:
be:36:97:ae:d8:9d:6c:95:f9:68:80:78:b5:56:f6:
c6:52:c5:8a:c5:b8:60:ab:59:14:58:d3:bc:03:c2:
8f:40:35:ee:e1:dc:b1:fb:18:4d:18:b8:34:56:58:
43:62:74:3f:0c:bf:99:83:c3:87:c7:51:cc:c3:a3:
7f:f3:2a:ac:10:ed:04:50:ac:4f:3a:70:2e:dd:22:
0e:80:4d:42:06:11:ab:05:bd:28:7e:90:58:06:84:
31:90:4f:c4:4b:9f:16:b2:71:c6:a1:0c:c5:28:2b:
81:28:59:17:7f:8a:32:c9:c6:8d:ae:75:ad:6c:bb:
fb:06:4d:40:40:48:11:bc:e1:10:95:36:3a:5f:1f:
2a:a2:3f:e5:b4:c8:9e:c7:df:ed:fd:36:ed:38:be:
59:36:7a:41:fc:ef:7e:02:3f:78:2a:c2:2a:ab:85:
a5:68:05:bf:b0:04:3a:07:b4:8d:cb:4b:1e:45:8e:
20:68:78:80:19:3e:5d:9f:c8:df:0f:9c:4d:71:02:
5e:45:e3:c4:f9:3b:3a:8b:55:cd:1d:dd:bc:c1:e3:
be:50:4c:0f:25:7b:d4:2e:1b:6b:a4:4a:d9:74:47:
eb:9c:fe:c5:99:89:ca:56:c0:ab:c3:31:3b:76:ac:
9c:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:A0:6C:5F:FE:B6:92:17:FB:A0:88:35:1A:1D:78:AD:52:BB:09:9F
X509v3 Authority Key Identifier:
keyid:41:F7:36:70:AC:16:1F:4B:56:67:9C:49:DA:8B:48:9B:60:BF:0B:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:bd:24:b3:ea:b5:21:eb:78:b2:25:31:37:1c:d9:f0:a3:22:
99:a0:28:ab:3a:3b:53:52:3e:92:43:d3:b6:59:45:42:af:ef:
89:62:64:8b:f4:e1:65:ab:0d:a0:13:f2:57:90:67:70:2d:22:
c8:00:50:64:3d:a1:d8:e8:5c:a6:ab:7d:dd:a3:52:1b:6b:a8:
06:a0:8c:f4:d1:91:3a:15:c3:69:d2:4e:b6:98:9f:54:8e:44:
1c:9f:c3:f9:f4:98:10:2a:f8:be:70:25:d8:4e:4c:5b:93:24:
11:e4:4b:18:0f:80:f8:a2:8e:08:cd:0f:f5:8c:8d:ee:97:9e:
4f:50:b1:29:05:25:04:e6:d4:de:43:7e:52:cc:1a:83:8f:8b:
63:bf:e1:e4:4f:9c:46:57:09:37:f8:5b:b2:0a:f0:40:9c:50:
75:e3:4f:3e:0f:69:be:5a:6c:e6:4f:d2:63:1d:b0:7f:9b:7b:
06:7d:17:cc:ce:93:be:9f:f1:5b:32:c1:45:af:8d:1e:63:0f:
10:04:fe:be:89:0f:25:38:3e:09:41:c7:97:f8:04:67:fb:75:
c6:e5:f4:cf:37:c3:b0:03:e0:27:65:fe:55:25:75:78:d2:65:
c4:40:0f:63:10:13:70:49:af:b2:16:11:a9:fe:1e:33:80:af:
e6:47:33:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 21 12:36:42 2026 by rpki-client