Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.mft
File: Q8FllZZq-wus8deTfyRdagUiIaM.mft (raw, json)
Hash identifier: ONXULYk3NotZ252hei+0zfzb8LsEVGmbpggnUI5KDwM=
Subject key identifier: D6:13:76:B9:FC:C7:56:BB:A8:64:9E:07:D3:2D:47:3B:CC:2D:77:0E
Authority key identifier: 43:C1:65:95:96:6A:FB:0B:AC:F1:D7:93:7F:24:5D:6A:05:22:21:A3
Certificate issuer: /CN=43c16595966afb0bacf1d7937f245d6a052221a3
Certificate serial: 019EB8B4627E8EDE8898660C1CB91A288387
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q8FllZZq-wus8deTfyRdagUiIaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.mft
Manifest number: 1959
Signing time: Thu 11 Jun 2026 22:01:29 +0000
Manifest this update: Thu 11 Jun 2026 22:01:29 +0000
Manifest next update: Fri 12 Jun 2026 22:01:29 +0000
Files and hashes: 1: 4txRYI484TEAkKZQuGXE7v7kNFE.roa (hash: 0LHuR+m3x801pvrNDlfkYNVRhvh7QTNXeF2avzGdu+o=)
2: 7j99n4d6ANqzBKZIb7AtbN16HNM.roa (hash: rlAo1p9sV9yO7tsi280DXkwJRnsLW38pb6gpoEvvu7w=)
3: Oo3ap3FWMfZFuKT_5X4cPgbvWBY.roa (hash: SClF6a/p5GxrqHhEbYnu5sljGKEXM6UG1fAy0VW6itY=)
4: Q8FllZZq-wus8deTfyRdagUiIaM.crl (hash: Lx2U8665pIPgBofkUpIQkf5blHFyaCQsezZ/EjGkzXo=)
5: ZoLYEk24uuNv33EjJ4m1okSNS6w.roa (hash: aOyue5Aqc/KW4Mnoyy7ahJjLtcQmVKEsi36/Y3I9yHA=)
6: aj9euBKzI3NIH66jZPh8bbmGI6A.roa (hash: 8jTNJ61hr37vcKXTL8TlYqDMnFRq1ith6TwEVeBelwE=)
7: nH1OKpXJbAvAHxN6XWdXMd6gZuY.roa (hash: j3S1I730IB3QQneXnDNotR19hJRoRUA2SbUVmp/YndQ=)
8: ottEKlKze703Xucot2ljZZmoong.roa (hash: 1DtEnDgUDcQi4vqWCrTRW5+Lsqb1kTbcbswrOF8wGaI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q8FllZZq-wus8deTfyRdagUiIaM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:b4:62:7e:8e:de:88:98:66:0c:1c:b9:1a:28:83:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43c16595966afb0bacf1d7937f245d6a052221a3
Validity
Not Before: Jun 11 22:01:29 2026 GMT
Not After : Jun 12 22:01:29 2026 GMT
Subject: CN=d61376b9fcc756bba8649e07d32d473bcc2d770e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:71:df:e1:a4:02:ba:03:05:fa:b4:eb:c4:02:
bd:7b:29:db:50:26:22:5a:c3:d7:20:22:16:e4:94:
fd:f7:6a:dc:61:c9:f1:be:8b:bf:69:69:8d:40:41:
bf:06:88:e4:2f:c3:06:4a:69:3e:32:c0:0a:0f:a7:
f4:9b:d7:e3:58:60:ad:34:8c:57:63:a5:c4:96:20:
78:d3:94:9f:b9:ea:db:1c:a1:85:09:bf:99:4f:38:
d8:24:7e:e5:94:61:b7:5d:39:de:db:1d:31:eb:d4:
92:a0:82:d7:c2:f8:5e:bc:79:5a:c1:6d:1c:fb:1d:
da:c9:5d:78:98:18:4d:8b:4f:fa:83:05:d0:d2:4a:
e9:92:c8:3d:c5:99:09:4d:7a:d7:63:e1:c0:7d:85:
86:b9:66:8e:f1:46:7e:8f:40:b9:6e:5c:48:27:b4:
c1:a0:f9:0a:12:61:f9:28:37:13:9c:9d:d2:07:d5:
fb:ce:b1:94:bf:83:00:5b:6b:26:9a:d9:14:e6:b8:
76:c1:f7:d7:7e:a3:09:40:49:fb:c1:a5:8c:4d:e5:
07:f1:76:9b:47:ca:91:48:b3:65:22:fa:44:a9:76:
23:85:11:d8:94:3a:fc:f5:0c:62:6c:61:7e:aa:23:
c4:27:41:cd:ca:9b:b8:38:f2:c4:65:76:02:8f:37:
20:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:13:76:B9:FC:C7:56:BB:A8:64:9E:07:D3:2D:47:3B:CC:2D:77:0E
X509v3 Authority Key Identifier:
keyid:43:C1:65:95:96:6A:FB:0B:AC:F1:D7:93:7F:24:5D:6A:05:22:21:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q8FllZZq-wus8deTfyRdagUiIaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:cc:c5:2f:ee:51:ee:22:3a:80:f1:ec:68:3b:11:5b:0d:6d:
5b:6e:9d:ff:04:ea:fb:e7:cd:bf:e7:90:68:a8:8c:e7:17:3d:
00:79:f8:2d:1a:2e:d7:a0:4d:a4:df:da:6e:7d:38:e2:94:90:
31:4f:b1:e2:14:60:c4:3d:cb:3b:07:8f:c8:47:b6:8e:a1:fe:
9c:30:63:0b:e9:af:14:6b:bb:99:34:b3:d7:a6:f9:d8:80:b6:
67:25:49:fc:d7:9c:cb:0e:4d:c2:88:c4:5e:c6:61:d6:59:45:
9a:cd:27:ae:5d:9e:30:c7:5d:d6:7d:99:d1:00:fe:d4:81:fa:
03:67:c3:aa:60:73:b3:e8:ad:54:2a:00:dc:c4:a1:2b:ae:0d:
00:62:17:06:5d:83:9f:ff:e6:e9:5f:69:eb:6f:83:b5:d7:a7:
95:ce:82:58:49:f2:71:cd:bd:9b:35:7b:af:73:2d:e4:a7:05:
d2:f5:d7:a7:14:64:9e:e7:ca:b9:42:eb:c3:00:2c:cd:c0:d1:
97:74:5c:40:a4:ea:57:32:e5:2a:1b:56:0b:4b:b2:03:34:78:
1f:ef:4b:70:3c:7a:6b:15:41:7b:87:18:37:25:09:35:48:35:
94:9b:45:e1:5c:12:2f:f3:07:ef:66:cf:c0:a5:38:a3:05:7d:
a2:18:ff:3f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ64tGJ+jt6ImGYMHLkaKIOHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQzYzE2NTk1OTY2YWZiMGJhY2YxZDc5MzdmMjQ1ZDZhMDUy
MjIxYTMwHhcNMjYwNjExMjIwMTI5WhcNMjYwNjEyMjIwMTI5WjAzMTEwLwYDVQQD
EyhkNjEzNzZiOWZjYzc1NmJiYTg2NDllMDdkMzJkNDczYmNjMmQ3NzBlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsHHf4aQCugMF+rTrxAK9eynbUCYi
WsPXICIW5JT992rcYcnxvou/aWmNQEG/BojkL8MGSmk+MsAKD6f0m9fjWGCtNIxX
Y6XEliB405SfuerbHKGFCb+ZTzjYJH7llGG3XTne2x0x69SSoILXwvhevHlawW0c
+x3ayV14mBhNi0/6gwXQ0krpksg9xZkJTXrXY+HAfYWGuWaO8UZ+j0C5blxIJ7TB
oPkKEmH5KDcTnJ3SB9X7zrGUv4MAW2smmtkU5rh2wffXfqMJQEn7waWMTeUH8Xab
R8qRSLNlIvpEqXYjhRHYlDr89QxibGF+qiPEJ0HNypu4OPLEZXYCjzcgUwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNYTdrn8x1a7qGSeB9MtRzvMLXcOMB8GA1UdIwQY
MBaAFEPBZZWWavsLrPHXk38kXWoFIiGjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUThGbGxaWnEtd3VzOGRlVGZ5UmRhZ1VpSWFNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS9kOTI5MTktOTYyYi00NDhkLTk4ZGIt
NTk5MGVhNThlMDMwLzEvUThGbGxaWnEtd3VzOGRlVGZ5UmRhZ1VpSWFNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMS9kOTI5MTktOTYyYi00NDhkLTk4ZGItNTk5MGVhNThlMDMw
LzEvUThGbGxaWnEtd3VzOGRlVGZ5UmRhZ1VpSWFNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU8zFL+5R
7iI6gPHsaDsRWw1tW26d/wTq++fNv+eQaKiM5xc9AHn4LRou16BNpN/abn044pSQ
MU+x4hRgxD3LOwePyEe2jqH+nDBjC+mvFGu7mTSz16b52IC2ZyVJ/Necyw5NwojE
XsZh1llFms0nrl2eMMdd1n2Z0QD+1IH6A2fDqmBzs+itVCoA3MShK64NAGIXBl2D
n//m6V9p62+Dtdenlc6CWEnycc29mzV7r3Mt5KcF0vXXpxRknufKuULrwwAszcDR
l3RcQKTqVzLlKhtWC0uyAzR4H+9LcDx6axVBe4cYNyUJNUg1lJtF4VwSL/MH72bP
wKU4owV9ohj/Pw==
-----END CERTIFICATE-----
Generated at Fri Jun 12 01:33:10 2026 by rpki-client