Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/452dd5-d0e4-4d4b-8ae6-1951345cea33/1/qajkTlc8U8cZIxL8xyFQ0t43fW0.mft
File: qajkTlc8U8cZIxL8xyFQ0t43fW0.mft (raw, json)
Hash identifier: 6FiJqbkSr+53otEFO14sIY+iKwb4IokyvivqsDHJZC4=
Subject key identifier: A6:CC:6A:22:6E:28:B1:E7:A2:F3:21:62:A6:8E:84:8E:91:1F:EE:28
Authority key identifier: A9:A8:E4:4E:57:3C:53:C7:19:23:12:FC:C7:21:50:D2:DE:37:7D:6D
Certificate issuer: /CN=a9a8e44e573c53c7192312fcc72150d2de377d6d
Certificate serial: 019E54ED007E12C08E0ED474C346D4F2AA6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qajkTlc8U8cZIxL8xyFQ0t43fW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/452dd5-d0e4-4d4b-8ae6-1951345cea33/1/qajkTlc8U8cZIxL8xyFQ0t43fW0.mft
Manifest number: 1929
Signing time: Sat 23 May 2026 13:01:18 +0000
Manifest this update: Sat 23 May 2026 13:01:18 +0000
Manifest next update: Sun 24 May 2026 13:01:18 +0000
Files and hashes: 1: hLY2--5SKTnZ1QC36Cf-E8Iq5ho.roa (hash: lfg0kzyvgHw2ZfZ5eS4nTJ7bYAVmeebrxL6dhvaG0Ms=)
2: qajkTlc8U8cZIxL8xyFQ0t43fW0.crl (hash: /OBN6wibPC+ZFwqQCot+Y3oik+Ttg7Igau819Fm5vS4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/452dd5-d0e4-4d4b-8ae6-1951345cea33/1/qajkTlc8U8cZIxL8xyFQ0t43fW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/452dd5-d0e4-4d4b-8ae6-1951345cea33/1/qajkTlc8U8cZIxL8xyFQ0t43fW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/qajkTlc8U8cZIxL8xyFQ0t43fW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 May 2026 11:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:54:ed:00:7e:12:c0:8e:0e:d4:74:c3:46:d4:f2:aa:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9a8e44e573c53c7192312fcc72150d2de377d6d
Validity
Not Before: May 23 13:01:18 2026 GMT
Not After : May 24 13:01:18 2026 GMT
Subject: CN=a6cc6a226e28b1e7a2f32162a68e848e911fee28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:17:81:02:3b:55:8e:db:86:61:92:cf:67:3e:
2c:8b:18:26:44:0e:69:1a:d3:d7:70:e1:08:46:68:
d8:79:3b:74:d7:dd:44:84:0e:0d:8d:9a:b6:57:e2:
b6:2b:49:25:fa:c7:29:dc:37:bf:e9:3d:23:21:1f:
bb:19:65:82:0a:88:5c:ac:63:48:af:a5:61:5b:ce:
06:46:77:d9:d1:dc:42:d8:dd:4a:5d:c0:a4:12:54:
25:09:d4:96:6d:27:c0:a1:03:cd:e0:56:b7:92:1f:
73:12:c5:d4:85:bc:26:5c:b4:74:54:ae:ef:1e:24:
29:10:69:83:be:58:bb:c1:39:e8:14:1d:5c:05:9e:
08:b7:dd:e7:38:0e:88:85:4e:d4:8d:06:1f:29:81:
05:86:4d:f9:ea:57:e6:26:e6:d0:57:c8:8d:fa:07:
90:a3:d1:cc:81:5a:57:ca:80:b4:c0:5f:33:e4:9f:
cd:74:51:77:f4:3d:64:32:e8:a2:cf:b9:13:78:f4:
d0:89:fc:1e:0a:87:c7:94:15:0d:8e:b7:27:24:13:
2c:34:ec:52:9f:26:5f:fd:10:28:e3:8e:e5:37:29:
1f:ad:9e:6a:fa:b9:0d:49:f6:5a:74:2c:a8:0a:d7:
07:84:05:2d:75:da:ac:58:95:4a:8b:0f:ba:da:e5:
47:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:CC:6A:22:6E:28:B1:E7:A2:F3:21:62:A6:8E:84:8E:91:1F:EE:28
X509v3 Authority Key Identifier:
keyid:A9:A8:E4:4E:57:3C:53:C7:19:23:12:FC:C7:21:50:D2:DE:37:7D:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qajkTlc8U8cZIxL8xyFQ0t43fW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/452dd5-d0e4-4d4b-8ae6-1951345cea33/1/qajkTlc8U8cZIxL8xyFQ0t43fW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/452dd5-d0e4-4d4b-8ae6-1951345cea33/1/qajkTlc8U8cZIxL8xyFQ0t43fW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:e8:6b:e5:1f:16:4e:a6:c9:39:3e:d3:74:0b:0c:a1:42:9a:
89:37:92:07:36:75:a6:8a:f6:68:28:6c:c2:47:4e:f0:ac:7c:
a8:03:15:66:6e:27:4b:a9:96:2a:75:d7:fc:b0:c7:a2:4b:62:
3a:75:27:ff:e2:79:99:9b:05:48:f5:36:9e:45:7d:31:f5:80:
83:84:18:d3:e0:9a:cb:ca:e1:35:fb:d5:c5:47:48:fe:7a:73:
62:0b:d4:3a:1b:8e:90:8a:79:e4:9c:3a:39:4f:df:ef:5f:cd:
df:05:76:c0:0e:b8:67:a9:b7:eb:06:9d:75:96:fe:3b:aa:b0:
f4:97:9b:8c:df:ff:84:83:a3:a8:5d:2e:75:2a:54:eb:3a:09:
03:ec:d9:9c:56:69:23:41:e3:a9:07:68:45:5a:52:20:e8:e7:
bf:53:63:13:6a:49:4a:ad:99:e1:fc:bb:b4:98:2e:eb:f0:bf:
b3:fb:a1:4f:2c:ae:89:b2:6a:d2:7d:97:d5:d8:a5:b7:ef:68:
7b:e0:9f:14:a7:b0:67:70:45:11:6a:63:9b:c8:11:ad:ec:62:
1f:20:8b:ba:d0:03:d0:29:4b:e7:d4:98:da:5a:8a:6e:d6:95:
75:73:e1:78:5e:9e:93:82:10:8a:0c:27:89:00:4a:95:ce:e8:
e0:fe:1f:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 23 18:11:21 2026 by rpki-client