Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.mft
File: QJLEfbiiGTEVRgXVdsO3NB0GtLQ.mft (raw, json)
Hash identifier: 5IcfN2/+nHZOKb2vt2CqeEYrCzleGntHI9VAKplKPi0=
Subject key identifier: 51:81:6D:9F:5A:63:1D:57:E0:03:55:90:C2:9D:00:38:8F:07:95:09
Authority key identifier: 40:92:C4:7D:B8:A2:19:31:15:46:05:D5:76:C3:B7:34:1D:06:B4:B4
Certificate issuer: /CN=4092c47db8a21931154605d576c3b7341d06b4b4
Certificate serial: 019EFC167373301604CA7DCE8058851791D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.mft
Manifest number: 1703
Signing time: Thu 25 Jun 2026 00:03:10 +0000
Manifest this update: Thu 25 Jun 2026 00:03:10 +0000
Manifest next update: Fri 26 Jun 2026 00:03:10 +0000
Files and hashes: 1: 4lRlhSc9Jzpgo2qyOZgRPmeBS8E.roa (hash: fe25PIHE4R92mruy7bWhmhbyquYQv4J/2uT5rEcGMtI=)
2: QJLEfbiiGTEVRgXVdsO3NB0GtLQ.crl (hash: xqikahDXQnw5/hgQbD1OK1HuOGNBXr7B2x15A48VtKk=)
3: d4L-Ywam3q9FKYpyHF6Nixngago.asa (hash: zY2cIfwxMRiOqaAZBQMaP/RsPvaaJfXbxud7F/yA2YA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Jun 2026 23:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:fc:16:73:73:30:16:04:ca:7d:ce:80:58:85:17:91:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4092c47db8a21931154605d576c3b7341d06b4b4
Validity
Not Before: Jun 25 00:03:10 2026 GMT
Not After : Jun 26 00:03:10 2026 GMT
Subject: CN=51816d9f5a631d57e0035590c29d00388f079509
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:44:61:c1:b4:6b:8b:23:7e:9c:9e:d3:31:7a:
8d:92:b0:80:90:c0:12:e7:94:e1:3f:b9:7e:de:6a:
10:91:22:e1:c7:8c:6c:3a:10:3c:87:3f:ba:d4:ce:
e9:bf:06:d2:47:c7:30:cd:52:49:42:97:27:79:d1:
ed:ac:7f:03:bb:29:b5:ec:2f:8a:cf:ba:27:72:d5:
31:c2:c1:88:e3:6b:37:f7:c1:92:1f:1d:d2:53:ed:
bc:59:16:8f:9d:3b:fe:22:70:0d:b2:8f:b6:cb:1b:
7e:50:84:f1:95:a0:74:6a:17:cb:41:1a:ba:55:51:
29:19:8e:52:69:ef:87:50:07:d7:39:85:e3:01:e6:
53:90:a7:ea:ce:9b:f7:55:8d:b5:07:32:7a:9b:a1:
1f:1d:57:38:5b:6e:26:df:2e:fb:e3:ad:fc:d5:6d:
ea:13:21:fc:af:bf:a1:4d:c9:60:c1:d4:7f:44:cb:
f9:0c:7a:83:a5:40:d3:a5:70:69:5e:61:e8:f3:a1:
75:8e:00:54:81:8d:75:c0:47:0f:73:63:6d:6c:70:
5d:e6:16:26:64:b0:21:31:80:bf:ef:91:8c:58:c9:
68:34:2c:2b:94:cd:ac:10:48:74:f5:d8:b6:f7:ef:
36:91:2d:c2:b0:3a:8e:72:c9:95:86:c7:aa:e0:dd:
cc:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:81:6D:9F:5A:63:1D:57:E0:03:55:90:C2:9D:00:38:8F:07:95:09
X509v3 Authority Key Identifier:
keyid:40:92:C4:7D:B8:A2:19:31:15:46:05:D5:76:C3:B7:34:1D:06:B4:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:f0:30:4f:11:e6:a8:11:ed:6a:34:a5:21:12:1a:90:74:41:
54:83:d1:bd:f7:2a:62:48:60:d6:f7:a9:22:dc:f4:2d:9c:4a:
ea:7b:4e:ed:7f:3e:a8:aa:11:81:bf:5a:e6:f3:3f:f5:f8:9d:
70:fb:db:0c:ed:18:07:8a:80:83:25:53:3c:32:31:ae:7b:bd:
3f:eb:46:24:10:2f:ed:9b:17:e0:c4:e7:66:70:e5:a1:70:53:
94:93:68:a1:92:96:cd:94:28:e7:79:a5:5a:6a:78:43:62:6f:
62:03:51:a5:9f:3d:3d:a7:7f:e6:c6:25:25:f6:b5:99:f7:ef:
9a:55:38:e9:d5:d1:e4:c1:c6:cc:5e:6f:45:00:d8:1a:b7:49:
05:30:0c:72:ad:8f:7e:81:8a:10:10:28:9f:3a:99:ce:cd:d5:
ad:2c:af:62:0c:d5:56:a0:41:64:ad:af:7a:ac:f8:48:5b:f2:
e0:92:32:df:b7:02:69:6b:0e:fd:e1:19:01:c6:80:92:1d:85:
67:dc:e4:17:62:78:5a:98:d8:d5:dd:d1:1f:65:32:55:8a:85:
1a:fa:82:74:1b:0e:32:48:7d:6e:d6:49:35:ee:4a:b9:d9:3a:
57:70:68:4f:52:48:c7:0d:12:c1:52:77:53:f5:3c:20:48:10:
60:b4:99:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 25 09:37:18 2026 by rpki-client