
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/452dd5-d0e4-4d4b-8ae6-1951345cea33/1/qajkTlc8U8cZIxL8xyFQ0t43fW0.mft
File: qajkTlc8U8cZIxL8xyFQ0t43fW0.mft (raw, json)
Hash identifier: Wyh2wh09tY4T5E5DG1aFiD3wDPDBIsYcAgxqnd7RdEQ=
Subject key identifier: FE:38:0B:74:31:B7:C8:94:D2:C7:BF:8F:DF:C6:72:02:DA:B2:18:BD
Authority key identifier: A9:A8:E4:4E:57:3C:53:C7:19:23:12:FC:C7:21:50:D2:DE:37:7D:6D
Certificate issuer: /CN=a9a8e44e573c53c7192312fcc72150d2de377d6d
Certificate serial: 019F3CAB75B2F86B9D7DA360889AB9D4ADAB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qajkTlc8U8cZIxL8xyFQ0t43fW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/452dd5-d0e4-4d4b-8ae6-1951345cea33/1/qajkTlc8U8cZIxL8xyFQ0t43fW0.mft
Manifest number: 19A1
Signing time: Tue 07 Jul 2026 13:01:37 +0000
Manifest this update: Tue 07 Jul 2026 13:01:37 +0000
Manifest next update: Wed 08 Jul 2026 13:01:37 +0000
Files and hashes: 1: hLY2--5SKTnZ1QC36Cf-E8Iq5ho.roa (hash: lfg0kzyvgHw2ZfZ5eS4nTJ7bYAVmeebrxL6dhvaG0Ms=)
2: qajkTlc8U8cZIxL8xyFQ0t43fW0.crl (hash: R6ZakYgzo5OeX15X0MPg6edj5WMN0mXSQFDRf1iX/n8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/452dd5-d0e4-4d4b-8ae6-1951345cea33/1/qajkTlc8U8cZIxL8xyFQ0t43fW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/452dd5-d0e4-4d4b-8ae6-1951345cea33/1/qajkTlc8U8cZIxL8xyFQ0t43fW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/qajkTlc8U8cZIxL8xyFQ0t43fW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 Jul 2026 13:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:3c:ab:75:b2:f8:6b:9d:7d:a3:60:88:9a:b9:d4:ad:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9a8e44e573c53c7192312fcc72150d2de377d6d
Validity
Not Before: Jul 7 13:01:37 2026 GMT
Not After : Jul 8 13:01:37 2026 GMT
Subject: CN=fe380b7431b7c894d2c7bf8fdfc67202dab218bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:5c:49:9f:50:0c:fd:d7:b0:52:79:1c:b8:c2:
6f:d5:83:29:c6:2a:65:0c:92:5b:cb:17:22:9f:d8:
87:06:bc:02:98:2f:88:97:e0:0f:34:8b:6d:fd:38:
95:61:57:63:bc:50:5e:8f:a3:cc:e6:f1:d8:98:e7:
57:6f:fa:27:dd:f0:4a:41:b1:86:80:12:70:75:a0:
d8:e8:e0:79:45:db:d7:f1:c5:c2:ab:7a:f6:28:55:
d0:40:2f:b2:2e:ff:95:2b:25:45:a3:3f:6c:d7:0e:
91:1f:16:05:01:28:cc:b3:90:88:6b:11:a8:4c:47:
e9:fc:a7:c6:b8:bf:70:67:1f:7b:61:7a:a5:5d:9b:
21:5c:9a:55:76:ff:b3:1a:2d:11:6f:5b:3d:33:33:
2d:92:f4:1a:10:32:6d:3a:5a:29:d0:16:ab:5f:35:
88:2c:d0:35:b1:2c:07:d7:67:e5:52:1c:c8:6b:7a:
dc:07:b6:ba:76:2e:01:69:c6:4c:00:a2:e3:dd:85:
22:9c:a5:ed:11:5e:1b:c1:82:61:21:e3:97:c1:09:
78:50:d6:21:54:2a:a5:0b:e5:00:c8:e0:b8:02:11:
2b:d7:2b:c1:65:df:e4:cc:d7:ba:91:de:ae:66:73:
f9:f6:59:26:8d:90:5c:85:4f:a3:54:ca:31:83:c9:
7d:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:38:0B:74:31:B7:C8:94:D2:C7:BF:8F:DF:C6:72:02:DA:B2:18:BD
X509v3 Authority Key Identifier:
keyid:A9:A8:E4:4E:57:3C:53:C7:19:23:12:FC:C7:21:50:D2:DE:37:7D:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qajkTlc8U8cZIxL8xyFQ0t43fW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/452dd5-d0e4-4d4b-8ae6-1951345cea33/1/qajkTlc8U8cZIxL8xyFQ0t43fW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/452dd5-d0e4-4d4b-8ae6-1951345cea33/1/qajkTlc8U8cZIxL8xyFQ0t43fW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:8e:7b:ef:2d:fe:5b:0b:ae:47:9c:cd:c7:ec:f7:b5:33:d0:
ac:7f:a2:e3:e6:ca:0b:20:5d:00:88:a0:d0:34:e7:e0:b2:7d:
8c:35:8e:84:56:4e:d3:f3:3a:ca:4d:c9:26:43:4e:f1:fc:bc:
0c:47:d0:13:d4:4e:78:63:c5:92:6d:3a:76:9b:6e:79:d0:eb:
cd:1e:2b:0e:20:af:e4:77:38:9c:72:f6:48:e3:ac:5d:99:40:
94:82:f0:1e:40:9a:6e:fd:9b:3f:39:6a:7c:98:6a:30:57:45:
63:14:d2:bb:b4:8f:82:30:8c:38:40:a1:7d:1c:8e:5f:75:9d:
28:bc:47:f5:eb:8e:1a:c1:13:20:95:c6:c2:c0:54:c1:7d:ea:
ed:4f:2f:fe:22:21:36:80:fc:87:ac:83:6d:d8:b9:3d:55:48:
99:a7:80:76:9a:28:69:b2:cc:87:1f:6f:c6:84:de:91:8d:ef:
83:40:d6:93:24:18:a6:19:3e:84:c9:fc:33:92:ae:a8:e1:7d:
44:f4:97:bc:f5:2c:57:95:fd:fa:67:fa:d9:ad:c1:b3:c0:ef:
58:f7:a7:c4:ce:44:32:09:d9:f3:27:fe:44:8e:04:e3:40:a4:
1a:8e:fd:76:cd:b2:d4:5c:09:83:22:7b:25:03:f0:8d:1a:73:
df:7e:16:52
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ88q3Wy+GudfaNgiJq51K2rMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE5YThlNDRlNTczYzUzYzcxOTIzMTJmY2M3MjE1MGQyZGUz
NzdkNmQwHhcNMjYwNzA3MTMwMTM3WhcNMjYwNzA4MTMwMTM3WjAzMTEwLwYDVQQD
EyhmZTM4MGI3NDMxYjdjODk0ZDJjN2JmOGZkZmM2NzIwMmRhYjIxOGJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy1xJn1AM/dewUnkcuMJv1YMpxipl
DJJbyxcin9iHBrwCmC+Il+APNItt/TiVYVdjvFBej6PM5vHYmOdXb/on3fBKQbGG
gBJwdaDY6OB5RdvX8cXCq3r2KFXQQC+yLv+VKyVFoz9s1w6RHxYFASjMs5CIaxGo
TEfp/KfGuL9wZx97YXqlXZshXJpVdv+zGi0Rb1s9MzMtkvQaEDJtOlop0BarXzWI
LNA1sSwH12flUhzIa3rcB7a6di4BacZMAKLj3YUinKXtEV4bwYJhIeOXwQl4UNYh
VCqlC+UAyOC4AhEr1yvBZd/kzNe6kd6uZnP59lkmjZBchU+jVMoxg8l9AQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP44C3Qxt8iU0se/j9/GcgLashi9MB8GA1UdIwQY
MBaAFKmo5E5XPFPHGSMS/MchUNLeN31tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcWFqa1RsYzhVOGNaSXhMOHh5RlEwdDQzZlcwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy80NTJkZDUtZDBlNC00ZDRiLThhZTYt
MTk1MTM0NWNlYTMzLzEvcWFqa1RsYzhVOGNaSXhMOHh5RlEwdDQzZlcwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy80NTJkZDUtZDBlNC00ZDRiLThhZTYtMTk1MTM0NWNlYTMz
LzEvcWFqa1RsYzhVOGNaSXhMOHh5RlEwdDQzZlcwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAI577y3+
WwuuR5zNx+z3tTPQrH+i4+bKCyBdAIig0DTn4LJ9jDWOhFZO0/M6yk3JJkNO8fy8
DEfQE9ROeGPFkm06dptuedDrzR4rDiCv5Hc4nHL2SOOsXZlAlILwHkCabv2bPzlq
fJhqMFdFYxTSu7SPgjCMOEChfRyOX3WdKLxH9euOGsETIJXGwsBUwX3q7U8v/iIh
NoD8h6yDbdi5PVVImaeAdpooabLMhx9vxoTekY3vg0DWkyQYphk+hMn8M5KuqOF9
RPSXvPUsV5X9+mf62a3Bs8DvWPenxM5EMgnZ8yf+RI4E40CkGo79ds2y1FwJgyJ7
JQPwjRpz334WUg==
-----END CERTIFICATE-----
Generated at Tue Jul 7 22:59:43 2026 by rpki-client