Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/a26050-49ec-4955-9810-e5453707a58e/1/qyt5QmiS7R2nsuYYZ3DPsErmA80.mft
File: qyt5QmiS7R2nsuYYZ3DPsErmA80.mft (raw, json)
Hash identifier: JmrcugrcQvt9h+kw/l7JVDJLTvu+PLFb4nxmLoRPk1w=
Subject key identifier: 73:DA:74:C1:07:84:21:76:CF:45:51:AB:BB:0A:C1:14:65:3A:88:44
Authority key identifier: AB:2B:79:42:68:92:ED:1D:A7:B2:E6:18:67:70:CF:B0:4A:E6:03:CD
Certificate issuer: /CN=ab2b79426892ed1da7b2e6186770cfb04ae603cd
Certificate serial: 019EFC4BFADBFCE090F9289F03EA372AB7AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qyt5QmiS7R2nsuYYZ3DPsErmA80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/a26050-49ec-4955-9810-e5453707a58e/1/qyt5QmiS7R2nsuYYZ3DPsErmA80.mft
Manifest number: 0C20
Signing time: Thu 25 Jun 2026 01:01:37 +0000
Manifest this update: Thu 25 Jun 2026 01:01:37 +0000
Manifest next update: Fri 26 Jun 2026 01:01:37 +0000
Files and hashes: 1: Ep1UdBXzCWlqSTpFzem1RUVZTHA.asa (hash: f0L/PAFatn0IgaIhqoEyZoZ0cRFuKV57J/o6cZd4vJM=)
2: UVwGUstyqvelkq37jwrCyB34k94.asa (hash: E7qX0L3M0NDAHs6Gtk5Rp5Gs8S25rdSfJnVG4BtVL6w=)
3: qyt5QmiS7R2nsuYYZ3DPsErmA80.crl (hash: u99ijQGgNebf/aEm5m4xFhTMoP0PH9WBfufRpmOBHYg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/a26050-49ec-4955-9810-e5453707a58e/1/qyt5QmiS7R2nsuYYZ3DPsErmA80.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/a26050-49ec-4955-9810-e5453707a58e/1/qyt5QmiS7R2nsuYYZ3DPsErmA80.mft
rsync://rpki.ripe.net/repository/DEFAULT/qyt5QmiS7R2nsuYYZ3DPsErmA80.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Jun 2026 23:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:fc:4b:fa:db:fc:e0:90:f9:28:9f:03:ea:37:2a:b7:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2b79426892ed1da7b2e6186770cfb04ae603cd
Validity
Not Before: Jun 25 01:01:37 2026 GMT
Not After : Jun 26 01:01:37 2026 GMT
Subject: CN=73da74c107842176cf4551abbb0ac114653a8844
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f9:34:e3:7d:97:1c:d3:68:1f:1f:04:b9:31:
8f:4d:6f:0f:72:4e:de:72:6e:30:d7:35:55:d1:00:
bb:c2:70:04:37:0e:7b:cc:f2:79:88:b6:f7:d8:10:
79:27:2d:03:e9:0d:ae:c5:75:2d:15:90:11:5e:ee:
f4:7d:32:f9:dc:df:c1:1a:1c:bc:48:24:7c:54:cf:
f4:e5:56:9c:f1:47:79:bf:d5:4d:d4:1a:48:03:cd:
c7:50:fa:d1:c1:f4:b4:85:97:9f:36:24:b5:7d:13:
4d:8b:ae:47:74:20:ce:44:94:14:1a:68:b5:91:27:
65:84:0f:0a:7e:95:4a:4c:00:70:93:f6:59:84:4b:
e6:34:ad:7c:65:03:d4:74:c1:1c:93:c1:2d:e7:3d:
e1:54:45:76:8e:96:5d:c0:fe:5e:aa:31:5e:ea:19:
b0:55:26:95:bb:29:bd:ad:f7:48:79:dc:63:4a:15:
88:df:2d:d9:67:74:2f:29:bd:8a:74:ae:93:b7:7e:
5e:50:ce:12:a6:9f:5f:29:c5:37:f7:4b:d8:29:ef:
48:0c:52:e4:d0:a2:a9:ea:a4:c1:91:76:8b:0b:27:
eb:0e:29:1d:e7:47:49:aa:1e:be:ef:25:71:02:43:
df:b3:b0:ba:0d:36:25:52:48:7a:b4:79:d0:3c:4a:
4c:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:DA:74:C1:07:84:21:76:CF:45:51:AB:BB:0A:C1:14:65:3A:88:44
X509v3 Authority Key Identifier:
keyid:AB:2B:79:42:68:92:ED:1D:A7:B2:E6:18:67:70:CF:B0:4A:E6:03:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qyt5QmiS7R2nsuYYZ3DPsErmA80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/a26050-49ec-4955-9810-e5453707a58e/1/qyt5QmiS7R2nsuYYZ3DPsErmA80.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/a26050-49ec-4955-9810-e5453707a58e/1/qyt5QmiS7R2nsuYYZ3DPsErmA80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:64:e6:b3:2c:40:e0:74:99:f6:f3:87:21:e0:92:d4:94:bf:
04:43:a0:69:37:86:7b:98:56:e3:de:f5:78:d1:b1:2b:c5:4f:
69:0f:4a:21:02:26:e8:50:b8:b5:f0:6a:67:f0:ea:9f:30:29:
75:3d:24:13:47:13:15:7a:1d:88:46:39:53:ed:66:a8:0f:a1:
6c:54:80:85:e8:ca:ac:ea:ff:0f:a4:2b:c8:70:dc:48:c7:3a:
9a:eb:94:ae:e0:6c:c3:d1:c8:eb:45:20:82:e9:6b:84:ad:e5:
c9:d7:43:ec:23:d6:fd:94:7f:d9:f2:77:a6:42:50:9d:5c:a3:
38:27:08:b2:49:7e:2d:f9:a1:6a:be:d4:82:2f:78:d2:9a:bb:
fb:74:3e:86:4c:d6:59:1e:7a:22:8e:2b:68:a7:16:bd:c3:7f:
df:54:7b:39:b6:e5:2f:fb:c3:57:cb:58:72:b2:dd:58:cd:0e:
f9:68:df:09:8d:a2:92:37:9b:b1:50:cd:4a:e0:6b:d1:66:5b:
11:09:d3:d0:17:2c:28:ee:36:78:9f:aa:b3:b3:05:9d:3f:95:
30:a5:e7:a6:6d:55:25:45:86:6e:67:76:18:ab:24:28:c0:23:
83:1b:33:f0:0c:33:a2:57:ea:40:fc:e1:21:97:bb:82:bd:25:
6f:c6:91:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 25 09:37:19 2026 by rpki-client