Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
File: CQKHJW4l-jQNOvungOrGDVVq3sA.mft (raw, json)
Hash identifier: iVw7nwfFbHDm7793VJDn4oOW6o3tpMtr9nHC8roHs7Y=
Subject key identifier: 29:4B:3C:A4:36:44:58:CF:3C:BB:5E:87:B4:BA:47:F1:65:DC:5D:C6
Authority key identifier: 09:02:87:25:6E:25:FA:34:0D:3A:FB:A7:80:EA:C6:0D:55:6A:DE:C0
Certificate issuer: /CN=090287256e25fa340d3afba780eac60d556adec0
Certificate serial: 019D98BDF2C744EA82C08111133CA6A57064
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
Manifest number: 0BDE
Signing time: Fri 17 Apr 2026 00:01:18 +0000
Manifest this update: Fri 17 Apr 2026 00:01:18 +0000
Manifest next update: Sat 18 Apr 2026 00:01:18 +0000
Files and hashes: 1: 4TWnkEehYGPz8S3MxMCECSR21Hk.roa (hash: n3+/E4ft5KJ8lIw6jVs8x5Mt/ftJJPREMORWJ+SrYKM=)
2: CQKHJW4l-jQNOvungOrGDVVq3sA.crl (hash: dSxNj+f/o4SM9//ogSDbbANjDPbeRsz14Bl/kBfGv6E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:bd:f2:c7:44:ea:82:c0:81:11:13:3c:a6:a5:70:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=090287256e25fa340d3afba780eac60d556adec0
Validity
Not Before: Apr 17 00:01:18 2026 GMT
Not After : Apr 18 00:01:18 2026 GMT
Subject: CN=294b3ca4364458cf3cbb5e87b4ba47f165dc5dc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a2:79:91:11:75:ac:aa:f6:cf:72:04:07:d2:
5b:a8:16:cf:98:75:d3:ed:f3:88:84:c4:5e:17:97:
74:e0:88:e2:8c:d8:26:66:2a:36:cd:fa:f8:6c:1d:
fc:ce:98:76:5b:15:c3:55:2a:8b:22:b9:09:e7:f0:
e8:12:51:19:25:80:87:9f:e0:57:2a:93:ba:62:55:
d8:04:1e:09:86:2e:7c:49:8f:3b:06:d3:a2:34:3c:
3e:89:93:b1:0f:0f:78:ea:c0:86:f9:27:0a:5e:2d:
be:df:b1:f0:dc:ba:07:d3:d4:d0:38:81:0d:39:30:
2a:bf:db:a1:49:e8:ca:5c:84:36:b4:8c:f0:fe:be:
78:0b:bd:1a:b5:92:a8:eb:ca:76:b8:62:d6:6a:30:
69:91:6d:fc:95:c6:fd:29:d7:af:5c:85:f4:03:ff:
0a:ad:6f:1e:21:16:0e:68:8f:52:6d:6a:b8:9f:f7:
27:25:00:ec:02:cb:29:d0:81:87:60:e8:a1:e4:29:
bf:32:9d:42:93:c2:99:4f:eb:e2:2c:dc:23:46:74:
c7:15:5d:ee:8b:0f:0e:26:1b:34:b7:10:c3:33:cb:
7b:6b:64:23:19:b4:e4:67:a1:6b:0e:8f:6a:ef:51:
88:6a:60:68:c4:ea:8d:39:4d:b5:3e:85:e6:30:82:
3c:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:4B:3C:A4:36:44:58:CF:3C:BB:5E:87:B4:BA:47:F1:65:DC:5D:C6
X509v3 Authority Key Identifier:
keyid:09:02:87:25:6E:25:FA:34:0D:3A:FB:A7:80:EA:C6:0D:55:6A:DE:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:b1:f0:e8:9c:74:a5:37:ed:57:12:f6:6c:aa:8d:cd:13:1d:
f0:eb:f2:c1:3b:d8:60:b0:2e:ca:55:66:6f:87:9f:f5:19:3b:
21:43:85:8f:68:b8:25:37:27:1c:74:ae:c4:8f:6d:8c:8d:f5:
70:b1:d8:d6:d6:58:12:fa:cb:b3:6d:cb:eb:c4:6e:80:27:d7:
39:15:4c:e4:e4:b5:b5:d3:13:aa:f1:9f:77:92:f3:8a:85:82:
10:8f:e4:02:c3:6b:36:94:72:46:8c:af:15:64:0d:c8:e3:f9:
19:f0:c8:4d:0d:81:38:58:ef:b4:90:eb:b7:e9:db:e1:92:cd:
2c:29:98:99:b2:a5:f5:05:85:9b:3d:f8:77:bf:b1:d5:bc:16:
c0:c8:c8:09:ea:ea:3a:64:aa:ea:aa:b1:2b:94:a0:10:50:ea:
c1:0b:75:8c:03:bf:fd:47:9f:b7:fd:80:50:76:ff:b3:56:bf:
d3:79:db:a3:09:99:cf:4f:1d:13:18:ce:3a:5c:c5:f8:ae:26:
1b:3a:06:8c:e6:15:03:cc:94:34:c9:2a:4a:19:78:03:a8:66:
e4:e4:60:6f:de:65:26:1a:6d:91:fb:43:cf:9f:38:6f:87:b0:
f7:ed:67:fc:d5:be:6e:02:b2:66:e5:e3:11:b5:43:47:13:ee:
b0:98:0b:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 03:53:02 2026 by rpki-client