Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.mft
File: QtzU0b098prdQHW2jymvkHBHRDw.mft (raw, json)
Hash identifier: G5ZQ3hqIV2kT30kMgfwwX6Zjetu686ss+eGp9981IGQ=
Subject key identifier: 7D:BD:9F:D6:55:F3:FC:0D:69:DF:BE:DE:4A:09:3B:56:9C:BA:15:D1
Authority key identifier: 42:DC:D4:D1:BD:3D:F2:9A:DD:40:75:B6:8F:29:AF:90:70:47:44:3C
Certificate issuer: /CN=42dcd4d1bd3df29add4075b68f29af907047443c
Certificate serial: 019F1189B8254F009A47D6ED52BEFC01A9CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QtzU0b098prdQHW2jymvkHBHRDw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.mft
Manifest number: 06B2
Signing time: Mon 29 Jun 2026 04:01:05 +0000
Manifest this update: Mon 29 Jun 2026 04:01:05 +0000
Manifest next update: Tue 30 Jun 2026 04:01:05 +0000
Files and hashes: 1: QtzU0b098prdQHW2jymvkHBHRDw.crl (hash: IGIjL/1ceA5FV/54QzvnZnEPuGUGglbZI+Ic2+Q25e0=)
2: lqPB-_tpvjZaRMURMIYlaL-x7v4.roa (hash: PwPNHJ6WdN+tYHjQQVUmAufUKj9CcNQAjnCYOsVYIJQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.mft
rsync://rpki.ripe.net/repository/DEFAULT/QtzU0b098prdQHW2jymvkHBHRDw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:11:89:b8:25:4f:00:9a:47:d6:ed:52:be:fc:01:a9:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42dcd4d1bd3df29add4075b68f29af907047443c
Validity
Not Before: Jun 29 04:01:05 2026 GMT
Not After : Jun 30 04:01:05 2026 GMT
Subject: CN=7dbd9fd655f3fc0d69dfbede4a093b569cba15d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:46:55:04:ca:1e:b3:cd:8b:1b:fa:6b:0c:be:
4b:79:a8:15:56:27:2f:b0:90:b4:ac:d3:f3:13:9a:
81:18:a3:1f:11:ca:4b:5f:60:c4:dc:cf:1c:68:e5:
53:87:33:8d:7b:18:83:49:4e:d3:55:c7:5f:d7:df:
b0:45:8e:c7:78:27:4d:55:01:31:f6:1d:de:2b:92:
88:a9:88:9a:1c:4a:1c:e5:4d:28:b7:09:41:83:26:
ba:61:dd:d2:04:d0:f6:e5:be:c5:25:e1:34:c4:5f:
e6:af:cf:ae:a3:b4:0c:e0:83:e5:aa:ee:ad:3e:5d:
9c:99:75:eb:50:46:cd:62:18:c2:b1:f8:96:57:60:
f3:7f:f0:71:f9:cc:1f:41:56:01:90:1d:37:03:74:
ee:7d:46:06:7b:10:a1:e4:46:31:a7:31:6a:77:a0:
18:4b:e9:5b:d5:10:dc:a0:96:53:38:33:39:e9:6d:
fb:71:61:40:77:ad:e6:50:92:89:7f:14:d1:4b:3b:
5d:2a:0b:a2:b5:3e:dd:7f:10:16:49:b2:63:d3:39:
90:09:5e:65:9b:41:4f:4b:a6:3c:d0:27:1c:54:27:
55:fa:58:04:ac:01:71:ab:78:68:79:f2:bb:36:dd:
c6:71:85:38:27:af:4e:0a:b3:d0:31:5d:f3:4a:67:
74:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:BD:9F:D6:55:F3:FC:0D:69:DF:BE:DE:4A:09:3B:56:9C:BA:15:D1
X509v3 Authority Key Identifier:
keyid:42:DC:D4:D1:BD:3D:F2:9A:DD:40:75:B6:8F:29:AF:90:70:47:44:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QtzU0b098prdQHW2jymvkHBHRDw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:0b:f2:cf:b9:54:1b:f9:33:ee:ba:33:aa:fd:67:52:38:e5:
8f:d1:14:96:3b:35:c9:98:22:fe:85:49:96:95:ec:9f:42:9a:
52:eb:82:e5:ef:fb:c2:37:66:2c:f0:d4:1c:82:44:45:71:c0:
01:f3:48:81:c2:40:13:36:17:53:ef:71:64:1c:31:d5:95:fb:
b7:ba:b3:3b:8c:b0:75:24:c9:23:0a:40:77:a1:25:12:f8:d3:
e0:f1:55:1e:5c:f8:fe:38:2f:aa:e0:70:ee:2c:7b:18:42:20:
bb:35:ed:b3:92:79:b3:24:ae:ec:bd:d7:42:20:1b:34:90:16:
dd:3b:6c:1f:30:c4:8c:89:00:a0:ff:1e:9a:55:46:d9:f8:a0:
61:b2:12:d6:19:d8:74:d6:55:c9:ab:ab:76:ae:6e:d7:77:64:
4b:21:56:be:5a:e8:31:c2:87:eb:c7:f3:af:0d:7f:ec:53:65:
34:44:ce:d1:f7:a4:19:f1:03:56:e2:0f:51:50:4e:32:3e:d1:
d4:9c:a2:62:df:11:45:04:ef:e6:be:c2:c3:37:8d:8f:30:71:
dc:2a:93:c1:c0:21:79:4a:c4:dc:0d:76:9f:ff:e1:df:40:91:
10:b7:d6:c3:f5:cd:2c:34:7c:d7:00:50:c2:1a:2e:fc:92:1c:
e9:d7:65:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 12:44:01 2026 by rpki-client