Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
File: CQKHJW4l-jQNOvungOrGDVVq3sA.mft (raw, json)
Hash identifier: 5gpIzkG/JEc+1pe8i1dtFAcAARrYdlK4qE+9Hvw208g=
Subject key identifier: 89:E9:1F:37:65:4A:5A:17:54:B3:A8:6C:CB:21:50:F5:1C:10:0F:E7
Authority key identifier: 09:02:87:25:6E:25:FA:34:0D:3A:FB:A7:80:EA:C6:0D:55:6A:DE:C0
Certificate issuer: /CN=090287256e25fa340d3afba780eac60d556adec0
Certificate serial: 019E2F6040CBB357126DA776F268B4298961
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
Manifest number: 0C2C
Signing time: Sat 16 May 2026 06:01:37 +0000
Manifest this update: Sat 16 May 2026 06:01:37 +0000
Manifest next update: Sun 17 May 2026 06:01:37 +0000
Files and hashes: 1: 4TWnkEehYGPz8S3MxMCECSR21Hk.roa (hash: n3+/E4ft5KJ8lIw6jVs8x5Mt/ftJJPREMORWJ+SrYKM=)
2: CQKHJW4l-jQNOvungOrGDVVq3sA.crl (hash: 6ca4ryXjrUaMIhcik3ZQvKBVwIfiHMGfsRdm+7ftQ3g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 05:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:60:40:cb:b3:57:12:6d:a7:76:f2:68:b4:29:89:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=090287256e25fa340d3afba780eac60d556adec0
Validity
Not Before: May 16 06:01:37 2026 GMT
Not After : May 17 06:01:37 2026 GMT
Subject: CN=89e91f37654a5a1754b3a86ccb2150f51c100fe7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:47:b4:ce:15:9b:cb:37:9e:5a:dc:99:ce:b1:
ca:dd:b9:27:f4:fd:d0:87:d1:59:64:10:1c:15:97:
01:2c:ac:b6:98:76:ee:e1:1e:59:8d:de:77:d8:18:
30:de:7c:a7:57:6f:5c:dc:af:ac:bb:39:30:47:f2:
a3:a0:dc:42:d1:87:bb:bd:7a:5d:18:4f:39:f8:ca:
52:3d:81:7c:bc:23:ba:0b:e2:a2:ea:64:c6:03:e6:
75:83:09:d5:d3:63:24:2d:55:99:16:1d:18:5c:09:
65:8e:db:f8:4c:ff:10:ff:cf:3b:f3:4f:95:21:f4:
0a:8e:5c:26:57:88:5f:fa:73:67:1c:b6:43:06:71:
a4:68:ec:c2:84:0e:ea:00:7b:51:68:e7:9d:4d:33:
69:73:5d:69:f1:7e:77:16:47:95:6e:93:35:22:2a:
f2:d0:31:1a:06:a1:a9:c5:ac:4a:40:d2:3f:b6:ba:
ce:6f:80:59:3c:70:23:c6:a4:a2:e9:02:10:85:8c:
38:70:5d:25:b0:8a:61:d0:9c:07:5c:72:78:ed:f8:
4e:e1:c9:b9:9e:09:cd:b5:ff:68:9f:6b:bc:6f:ff:
5a:0a:c6:8e:82:8c:9e:a7:5b:70:91:f4:9b:03:58:
0e:45:20:0e:63:26:ae:9e:4f:0f:bf:91:0e:01:fd:
c6:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:E9:1F:37:65:4A:5A:17:54:B3:A8:6C:CB:21:50:F5:1C:10:0F:E7
X509v3 Authority Key Identifier:
keyid:09:02:87:25:6E:25:FA:34:0D:3A:FB:A7:80:EA:C6:0D:55:6A:DE:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:de:97:d7:f4:53:ef:71:53:b5:b0:84:3d:1c:47:b3:cc:b5:
5b:60:0e:a9:5f:e0:2b:e7:ef:e3:f7:64:a4:4e:53:57:70:7d:
b1:60:dd:0f:f4:6f:d7:ce:3d:87:62:52:a6:48:56:8d:46:24:
e3:f6:0f:9e:86:89:72:be:33:2e:33:84:30:a1:01:df:64:c6:
11:80:85:82:62:02:8f:53:fe:35:e1:e1:9b:8d:bb:1e:ca:c3:
24:d9:8a:2b:0c:20:9b:99:fd:9f:29:79:2e:8e:73:5a:92:ae:
c3:76:22:6e:ed:e6:53:a3:f4:cf:61:96:72:50:c1:63:16:f2:
6d:fe:54:69:ed:8b:e6:15:9a:a4:e3:df:71:1f:7d:53:b9:b1:
d9:19:9a:63:ac:1e:d4:6e:75:04:f6:26:ed:1a:71:ab:5b:77:
08:b9:83:65:23:34:41:39:5b:4c:3f:17:ea:4a:5d:06:7a:c9:
fc:58:df:ac:1b:ae:4a:ab:35:ef:3c:3c:7d:75:20:88:fc:cb:
57:72:e4:45:06:8f:eb:c4:e2:89:c3:af:e9:a8:7f:b2:3c:e6:
5d:58:81:7c:89:f8:54:46:52:e2:97:77:93:23:29:e5:a1:3b:
90:7e:ae:8d:54:17:82:4c:62:6c:e8:03:4c:85:cf:84:91:69:
c8:38:3c:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:38:50 2026 by rpki-client