Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/7ab79c-9dff-4a5d-ae83-131dc2ba2ec8/1/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.mft
File: QkMqMZ9UsFg3L9MlKOrlH8kMFbI.mft (raw, json)
Hash identifier: LIaznTntM/DUutu+lD4Aze0WBDeq1EKNGAxKaDUaZPM=
Subject key identifier: A9:A9:6E:E1:D3:26:ED:2A:26:75:13:A6:99:A8:DD:06:ED:9A:38:5F
Authority key identifier: 42:43:2A:31:9F:54:B0:58:37:2F:D3:25:28:EA:E5:1F:C9:0C:15:B2
Certificate issuer: /CN=42432a319f54b058372fd32528eae51fc90c15b2
Certificate serial: 019EB6C5CD4FF84005CB74775000091F84FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/7ab79c-9dff-4a5d-ae83-131dc2ba2ec8/1/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.mft
Manifest number: 0605
Signing time: Thu 11 Jun 2026 13:01:16 +0000
Manifest this update: Thu 11 Jun 2026 13:01:16 +0000
Manifest next update: Fri 12 Jun 2026 13:01:16 +0000
Files and hashes: 1: 1V2N8PP3W6pg2dn86MMXMCFavbg.roa (hash: 6GyZmIlJdg5hYdJcaopJTcDcXE9f3YbiakWtgZ82HCg=)
2: QkMqMZ9UsFg3L9MlKOrlH8kMFbI.crl (hash: jNs5LI9jFibQ4T35zP6yBNLv5IQBkPX7OGtwfEkXmJE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/7ab79c-9dff-4a5d-ae83-131dc2ba2ec8/1/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/7ab79c-9dff-4a5d-ae83-131dc2ba2ec8/1/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b6:c5:cd:4f:f8:40:05:cb:74:77:50:00:09:1f:84:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42432a319f54b058372fd32528eae51fc90c15b2
Validity
Not Before: Jun 11 13:01:16 2026 GMT
Not After : Jun 12 13:01:16 2026 GMT
Subject: CN=a9a96ee1d326ed2a267513a699a8dd06ed9a385f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c0:0f:af:7e:9e:68:1e:a4:7e:9f:c7:ca:a3:
80:92:4b:41:10:31:9c:3e:ec:d6:e9:e5:95:b7:f5:
b7:5a:ab:e1:70:f4:4e:bd:4d:bf:a0:ff:3e:b6:31:
16:ab:6a:36:71:64:fe:14:a2:2a:b4:19:8a:22:6b:
cd:a1:34:23:97:f5:f8:5b:ec:3e:14:85:f6:7e:35:
5c:ec:b0:3c:a3:cb:20:78:54:ed:d3:99:5c:7e:65:
5a:e6:46:de:e2:6a:1b:77:50:e7:c0:b8:6f:3b:81:
a5:6c:71:bf:da:8d:48:61:fa:8b:35:77:67:aa:57:
90:89:38:d8:7b:7f:99:90:8c:62:58:d5:be:e3:8e:
63:03:26:59:03:13:c9:b4:2e:27:4c:11:9a:78:88:
37:c5:8a:fe:d7:34:2f:1f:b1:7e:8d:d1:bc:1a:7f:
02:b0:b6:e0:4c:9f:65:3d:d9:77:03:d6:79:e0:d4:
ac:0b:77:c9:5e:21:59:cd:d0:4c:a3:2c:8d:1c:09:
dd:f2:c6:55:28:95:cc:07:45:57:b8:a6:9d:9b:59:
ec:84:ee:52:42:1d:38:94:a5:d9:73:88:34:46:d9:
50:5f:33:6c:a6:72:c7:f2:48:93:d7:53:88:73:f6:
2d:55:2a:60:f8:9c:8c:12:7b:61:b4:e5:64:86:fb:
47:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:A9:6E:E1:D3:26:ED:2A:26:75:13:A6:99:A8:DD:06:ED:9A:38:5F
X509v3 Authority Key Identifier:
keyid:42:43:2A:31:9F:54:B0:58:37:2F:D3:25:28:EA:E5:1F:C9:0C:15:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/7ab79c-9dff-4a5d-ae83-131dc2ba2ec8/1/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/7ab79c-9dff-4a5d-ae83-131dc2ba2ec8/1/QkMqMZ9UsFg3L9MlKOrlH8kMFbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:55:1d:7a:34:d0:6a:eb:82:58:a0:7b:0d:7c:04:12:75:89:
19:7d:d2:0e:c8:22:d6:9b:94:e1:6b:24:b5:cc:59:c3:44:9a:
fb:69:09:a9:2c:ef:d8:e3:e7:ab:d6:d3:90:67:ed:67:c7:69:
68:a3:b5:18:80:45:e2:fc:19:55:7c:ef:5a:5b:6c:79:75:56:
84:58:1a:91:a2:eb:c4:f4:0f:e5:de:f5:a8:de:09:d9:56:7c:
be:1b:e3:93:51:1e:b8:bf:b4:41:2e:39:c9:45:f2:d3:65:7b:
7b:01:ce:82:b2:b0:13:98:32:a5:0a:20:40:df:29:28:02:1c:
fd:0e:7e:66:de:75:8f:ab:63:dd:f9:42:0e:39:7b:44:a1:67:
3c:fd:6e:3e:ff:d9:af:45:3f:d4:02:28:89:f8:65:f3:9e:ba:
ee:d1:13:09:af:e7:6f:c8:56:2b:96:9e:d5:2f:7a:06:f0:f8:
69:84:e2:91:14:ff:4d:62:6e:27:70:14:3b:7a:4e:b6:ad:f9:
5f:90:d2:42:c6:30:c6:1d:5b:8d:f5:5b:be:9f:a5:1d:d8:0c:
cd:bc:ca:ed:58:d0:7a:e1:25:cf:dd:ff:23:37:1c:6d:7e:f6:
83:f0:df:ab:c4:95:a6:f0:05:b9:71:90:8f:4e:d1:c4:8b:ba:
3e:a2:e8:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 17:43:07 2026 by rpki-client