Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
File: CQKHJW4l-jQNOvungOrGDVVq3sA.mft (raw, json)
Hash identifier: Br41G9v/C6nhOS6REYCfrox9JHLNwKNx4dns22MCAm8=
Subject key identifier: 39:DE:0F:38:5E:9C:B8:BE:B4:DA:7D:C0:A9:F1:3B:B8:95:39:AC:98
Authority key identifier: 09:02:87:25:6E:25:FA:34:0D:3A:FB:A7:80:EA:C6:0D:55:6A:DE:C0
Certificate issuer: /CN=090287256e25fa340d3afba780eac60d556adec0
Certificate serial: 019F190CAFC16ACAFC896559CF7EE07FC3F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
Manifest number: 0CA5
Signing time: Tue 30 Jun 2026 15:01:29 +0000
Manifest this update: Tue 30 Jun 2026 15:01:29 +0000
Manifest next update: Wed 01 Jul 2026 15:01:29 +0000
Files and hashes: 1: 4TWnkEehYGPz8S3MxMCECSR21Hk.roa (hash: n3+/E4ft5KJ8lIw6jVs8x5Mt/ftJJPREMORWJ+SrYKM=)
2: CQKHJW4l-jQNOvungOrGDVVq3sA.crl (hash: Zm0dIa8NYntUPFyxK3QJr7tFKdojzNUhfWmcJDjsHIk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:0c:af:c1:6a:ca:fc:89:65:59:cf:7e:e0:7f:c3:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=090287256e25fa340d3afba780eac60d556adec0
Validity
Not Before: Jun 30 15:01:29 2026 GMT
Not After : Jul 1 15:01:29 2026 GMT
Subject: CN=39de0f385e9cb8beb4da7dc0a9f13bb89539ac98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:d2:9c:c9:4d:4b:ce:60:7f:f7:ce:d6:89:9f:
0f:3d:46:9f:9f:87:ce:83:ef:1f:75:20:b1:22:87:
d1:93:4f:bd:c0:88:f0:49:26:52:0e:c8:04:c9:7f:
4a:d9:12:65:62:af:96:7d:33:a7:4c:aa:f4:b4:fe:
0b:d3:8e:d9:b6:c5:a6:26:c1:84:0b:7d:e9:fd:89:
3d:6b:e2:2e:1f:1d:88:56:dc:b1:ee:b4:5c:3a:9d:
a8:29:62:a0:3d:ad:c8:12:29:8f:bc:ee:ad:63:00:
6a:7d:16:c2:ff:8c:8c:3e:20:9d:77:84:39:5c:1e:
d7:77:40:b9:ac:91:9d:87:08:48:4f:56:f6:d9:31:
40:0b:e1:0a:87:d9:db:19:73:d1:0c:45:91:4d:d5:
08:83:eb:0f:a5:3f:24:8a:9a:04:b1:cb:f2:ec:be:
e3:a7:e2:07:7e:c0:66:9e:ef:1e:20:2d:65:93:35:
59:e5:45:ad:86:34:cb:df:fe:38:b2:8b:62:9e:e1:
d6:c0:b8:fb:82:66:80:52:f3:5b:70:26:73:f6:7c:
a9:15:6c:5b:17:a9:1b:24:03:1f:92:e4:35:e4:bf:
32:b8:b9:50:8c:6f:b0:65:93:4e:c0:0b:f2:ff:09:
af:2c:eb:b1:43:b2:c2:1d:0c:ba:18:54:79:e9:a8:
0a:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:DE:0F:38:5E:9C:B8:BE:B4:DA:7D:C0:A9:F1:3B:B8:95:39:AC:98
X509v3 Authority Key Identifier:
keyid:09:02:87:25:6E:25:FA:34:0D:3A:FB:A7:80:EA:C6:0D:55:6A:DE:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:e9:ed:b5:81:f5:1b:a7:0d:9b:fa:5d:0e:5b:80:e2:a8:a3:
75:83:81:81:71:f1:41:b1:51:ec:b3:13:00:ac:ae:f2:6b:f1:
0b:8c:6f:46:eb:29:70:28:2e:e7:2c:37:86:5d:65:81:7c:b8:
3a:95:e5:66:fc:a0:d7:4a:5e:81:2c:50:13:c2:c1:ee:82:de:
12:82:ea:ee:a3:ef:0f:0e:df:e2:c5:3a:52:ca:90:2c:2c:07:
70:bd:03:1a:0d:37:a7:48:94:40:b3:71:99:ec:a4:49:65:4c:
49:af:e2:4b:ad:5e:b0:aa:9b:ae:d3:27:fa:b9:14:cf:34:5a:
10:44:7e:99:c8:be:f8:4a:4a:2a:e2:f6:7b:45:fc:f7:4c:61:
16:2b:2a:d7:93:8a:03:6e:16:da:be:20:c9:06:7e:5c:44:93:
7f:ce:54:f5:33:c2:71:6e:b8:6f:01:f6:30:b1:30:ad:db:f3:
f4:03:0d:1d:fd:82:da:40:51:bb:56:8f:53:c0:e8:5e:ff:0d:
a2:46:58:79:cc:3c:8b:56:05:69:5d:2d:14:ea:fa:f1:5d:6f:
bc:d7:47:2d:71:90:dc:46:66:6f:78:1e:17:72:e8:ce:dc:bd:
44:ea:17:1a:42:06:64:3c:d1:88:84:15:d4:58:57:4a:44:50:
11:66:a1:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 19:34:20 2026 by rpki-client