Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/01809b-42dd-4136-96b1-1fd10d8e075f/1/Q8d7RzY2gTePrORmFB1UzIg5nPU.mft
File: Q8d7RzY2gTePrORmFB1UzIg5nPU.mft (raw, json)
Hash identifier: VTaRkfcdVGQ0mp0gr5jxTX+kXJDvYId7GMc4xMdS0dA=
Subject key identifier: 8C:13:3C:4B:9B:38:B7:F8:12:FB:62:B8:24:46:FF:93:E7:8F:2F:98
Authority key identifier: 43:C7:7B:47:36:36:81:37:8F:AC:E4:66:14:1D:54:CC:88:39:9C:F5
Certificate issuer: /CN=43c77b47363681378face466141d54cc88399cf5
Certificate serial: 019F1942FD8835FA43096646C6EEE50B881C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q8d7RzY2gTePrORmFB1UzIg5nPU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/01809b-42dd-4136-96b1-1fd10d8e075f/1/Q8d7RzY2gTePrORmFB1UzIg5nPU.mft
Manifest number: 191A
Signing time: Tue 30 Jun 2026 16:00:48 +0000
Manifest this update: Tue 30 Jun 2026 16:00:48 +0000
Manifest next update: Wed 01 Jul 2026 16:00:48 +0000
Files and hashes: 1: 1XdNFJlYALUGMKogiIBRKN_MGo4.roa (hash: E2oHH/KY2uFlsQZera9X/UCkx0/EdwNbRkr7QYI3dr0=)
2: Q8d7RzY2gTePrORmFB1UzIg5nPU.crl (hash: UYzBCmv01bTpJfNLSZNQWimL7j2u/1GxdvDkNaoSrGY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/01809b-42dd-4136-96b1-1fd10d8e075f/1/Q8d7RzY2gTePrORmFB1UzIg5nPU.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/01809b-42dd-4136-96b1-1fd10d8e075f/1/Q8d7RzY2gTePrORmFB1UzIg5nPU.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q8d7RzY2gTePrORmFB1UzIg5nPU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:42:fd:88:35:fa:43:09:66:46:c6:ee:e5:0b:88:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43c77b47363681378face466141d54cc88399cf5
Validity
Not Before: Jun 30 16:00:48 2026 GMT
Not After : Jul 1 16:00:48 2026 GMT
Subject: CN=8c133c4b9b38b7f812fb62b82446ff93e78f2f98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:a7:fb:b7:d9:00:f1:f5:76:42:89:83:fe:40:
60:8c:67:4f:f6:5e:1c:a5:3f:14:ec:b6:42:4c:ca:
c0:96:32:9c:19:99:64:8c:9e:d9:60:78:eb:3b:3c:
86:df:f2:1d:dd:1e:03:d4:9c:9d:68:29:c1:90:f2:
34:0e:21:3c:89:af:61:e5:29:49:cd:25:4f:b8:c9:
80:0d:c0:ec:49:05:77:9f:27:8e:71:1f:db:ba:9e:
af:a0:99:c5:83:a8:f3:49:ff:2d:18:9e:64:8f:e2:
7e:ed:a2:e2:61:df:5b:30:24:7c:bb:4a:bd:66:49:
57:7c:30:f3:2c:1f:b1:3e:b0:b5:04:0c:e4:4b:6c:
72:26:43:6e:8f:6a:c8:8a:de:e8:7b:fe:78:6b:d8:
ce:23:b5:84:27:a5:ac:4e:27:a3:9f:90:91:9a:08:
fa:eb:eb:8b:84:1d:35:2f:df:da:e7:05:c5:08:92:
aa:87:f9:f9:56:d3:9a:8a:11:e4:2f:18:c0:1d:80:
a0:ad:24:21:87:84:36:c6:78:16:3b:7a:df:8c:87:
47:07:1e:a1:05:33:0d:19:39:58:b2:a4:5a:e0:a2:
20:93:20:22:91:d3:d4:a6:8a:91:3a:30:32:85:48:
32:6d:f3:c4:10:0c:6e:ba:9b:87:62:91:44:fd:f6:
30:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:13:3C:4B:9B:38:B7:F8:12:FB:62:B8:24:46:FF:93:E7:8F:2F:98
X509v3 Authority Key Identifier:
keyid:43:C7:7B:47:36:36:81:37:8F:AC:E4:66:14:1D:54:CC:88:39:9C:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q8d7RzY2gTePrORmFB1UzIg5nPU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/01809b-42dd-4136-96b1-1fd10d8e075f/1/Q8d7RzY2gTePrORmFB1UzIg5nPU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/01809b-42dd-4136-96b1-1fd10d8e075f/1/Q8d7RzY2gTePrORmFB1UzIg5nPU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:c4:18:a9:78:36:1b:a9:db:13:83:c1:5d:e3:29:6c:2f:60:
b9:8e:7e:0e:c9:06:52:a6:d2:c2:2c:85:11:da:41:56:8d:63:
07:c8:e2:0b:f4:65:8c:4a:cd:a3:fc:e0:3a:34:60:9f:e9:43:
04:87:fc:fc:e3:03:32:b3:3e:80:84:e1:7b:a8:27:fb:43:45:
49:70:b2:83:07:b7:19:3f:0a:06:b9:4e:c5:c4:94:3f:d5:17:
8f:8f:23:21:a3:4e:a9:6f:a5:87:39:11:79:ce:f9:34:8b:71:
af:6c:21:ec:b2:47:4c:a8:cd:d1:1e:23:f2:f7:95:3b:30:7e:
87:90:18:4a:b2:eb:e5:59:92:03:ab:c8:87:30:e2:34:e5:8d:
13:94:cc:7b:dd:97:8a:46:a5:2d:72:14:84:5c:51:f5:a9:8f:
bd:87:12:a4:9f:e9:db:36:6e:9b:cb:bb:aa:61:4f:ec:dc:6c:
f5:e6:c3:91:1a:b2:0d:94:d2:c3:70:a2:eb:37:a8:9d:b5:6d:
98:d3:c7:5f:52:87:22:04:b7:67:c3:2c:1b:32:f7:02:7f:53:
82:80:04:dd:d2:67:a9:4c:e6:e6:ad:ef:cb:b6:b2:8e:5b:44:
48:6e:b2:b7:f5:fc:38:0f:d2:6e:4d:ad:67:50:3c:84:c5:9c:
0d:d8:94:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 22:41:30 2026 by rpki-client