Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
File: QH0twQwC9ewk9pD59mBVVIZWLlk.mft (raw, json)
Hash identifier: s9NZk4G6YlY73CrmlONs3ZPeI2GZrjyFRKwoZ4YEOpI=
Subject key identifier: DE:93:41:95:27:71:21:EB:A0:1B:B9:45:89:40:59:AB:5D:BD:60:09
Authority key identifier: 40:7D:2D:C1:0C:02:F5:EC:24:F6:90:F9:F6:60:55:54:86:56:2E:59
Certificate issuer: /CN=407d2dc10c02f5ec24f690f9f660555486562e59
Certificate serial: 019E31F388530C10A1655EC8B1C2E05F34DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QH0twQwC9ewk9pD59mBVVIZWLlk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
Manifest number: 160F
Signing time: Sat 16 May 2026 18:01:44 +0000
Manifest this update: Sat 16 May 2026 18:01:44 +0000
Manifest next update: Sun 17 May 2026 18:01:44 +0000
Files and hashes: 1: FtvcAFkah5MC2Z1_PcfWmzKSll8.roa (hash: lAzH9ctEUVZ0nWk96qJfvTNhA1rNNyQ5u0vfPKjJ5TI=)
2: QH0twQwC9ewk9pD59mBVVIZWLlk.crl (hash: /yrYFiz4UbTV97s0DkbXdZDwGYOaFsEmoD+B3kwgGWI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QH0twQwC9ewk9pD59mBVVIZWLlk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 14:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:f3:88:53:0c:10:a1:65:5e:c8:b1:c2:e0:5f:34:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=407d2dc10c02f5ec24f690f9f660555486562e59
Validity
Not Before: May 16 18:01:44 2026 GMT
Not After : May 17 18:01:44 2026 GMT
Subject: CN=de934195277121eba01bb945894059ab5dbd6009
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:a4:38:1d:74:94:f9:17:a5:41:2f:3d:66:f8:
db:7e:51:87:fd:4c:7a:9c:b2:a4:6e:b5:ca:81:8c:
b7:52:9b:e8:26:f4:5f:b2:15:5e:17:c3:8c:7f:f2:
cc:15:98:9e:fa:aa:66:c0:93:17:1d:1e:dd:e9:b5:
b4:a0:e8:4e:55:55:2b:0d:84:50:29:08:62:7a:e6:
8e:63:d4:e1:4b:a5:fb:a0:04:60:cb:02:23:ef:3c:
c7:c9:27:f5:0e:c1:18:e0:74:3d:b1:a3:76:e1:57:
53:87:86:1b:78:ec:2a:dc:fd:69:e7:12:6b:9c:03:
a3:7a:71:91:97:49:bd:2d:fc:c3:82:ea:fc:ea:9a:
68:5e:26:98:ed:ec:6e:5f:88:39:b1:61:da:ea:54:
eb:e7:4b:55:f6:c4:49:ea:e7:86:30:61:14:c2:e7:
76:8d:89:3d:d0:4a:4d:37:ae:cc:b9:05:36:30:42:
16:7f:b1:90:91:47:fb:68:d3:ac:a4:4d:d1:c6:5d:
9f:2d:f8:36:18:ee:5a:86:b8:f4:3a:ca:81:96:8d:
60:2b:b1:da:b2:8e:7e:e6:2c:38:ad:8d:d1:41:47:
d3:bc:e8:e0:57:45:8f:d4:bb:de:2a:43:4b:24:4c:
4a:d5:23:e5:71:13:5d:2a:c1:0d:64:50:8a:23:44:
8d:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:93:41:95:27:71:21:EB:A0:1B:B9:45:89:40:59:AB:5D:BD:60:09
X509v3 Authority Key Identifier:
keyid:40:7D:2D:C1:0C:02:F5:EC:24:F6:90:F9:F6:60:55:54:86:56:2E:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QH0twQwC9ewk9pD59mBVVIZWLlk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a6fcc9-d251-42dc-ad02-967c2285ea62/1/QH0twQwC9ewk9pD59mBVVIZWLlk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:43:05:fb:f4:31:58:44:0e:cc:38:c7:3f:8f:4d:28:71:bc:
c9:4f:4c:de:1e:5a:f4:ef:e6:0f:fd:f7:6c:cd:00:19:2e:a6:
a7:54:33:38:a6:7b:ed:34:f1:3f:13:2a:46:04:a6:82:12:c0:
da:8c:d7:4a:f5:06:b7:29:c1:f8:25:0e:f9:07:9e:0c:75:f2:
29:51:6b:35:56:5c:95:8d:c6:9f:f1:5f:11:da:01:ff:1b:30:
05:be:3c:22:50:13:e8:67:78:be:6b:2d:46:25:10:09:7b:7c:
93:15:7c:bb:8a:76:91:72:3c:0c:6a:00:84:6d:38:5b:7c:b2:
58:d5:95:38:f7:dd:df:5d:ef:f9:62:d2:f9:59:19:bc:0f:ae:
6a:d6:51:d2:c3:dc:25:11:2a:54:71:82:2b:e0:2b:55:ff:43:
11:0c:e2:35:09:2f:8d:1b:4e:7a:97:e4:ef:66:a0:f6:35:92:
e4:16:6b:d1:ed:26:29:03:c4:25:85:b2:69:e6:5f:15:9f:17:
ee:de:04:f1:02:eb:84:10:63:55:8e:82:4f:cb:f8:4d:7b:35:
fe:cc:5f:5e:7b:86:2c:9c:1f:e2:8b:6c:45:d7:99:82:28:9f:
6a:08:ec:aa:9c:2f:ca:cb:b2:a7:fa:fc:5b:37:0d:71:93:47:
91:29:4b:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 17 00:29:00 2026 by rpki-client