Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
File: CQKHJW4l-jQNOvungOrGDVVq3sA.mft (raw, json)
Hash identifier: Krdk3u9tGfGcLc7Z5tRVD+du5I/eHmq7q3QeXhT+c+s=
Subject key identifier: 79:B6:2A:7C:1D:00:CA:00:AC:20:6C:38:C1:E2:79:20:B6:ED:BB:E7
Authority key identifier: 09:02:87:25:6E:25:FA:34:0D:3A:FB:A7:80:EA:C6:0D:55:6A:DE:C0
Certificate issuer: /CN=090287256e25fa340d3afba780eac60d556adec0
Certificate serial: 019CAB345BD669B48FB86E38D0C48F3E1799
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
Manifest number: 0B63
Signing time: Sun 01 Mar 2026 21:01:01 +0000
Manifest this update: Sun 01 Mar 2026 21:01:01 +0000
Manifest next update: Mon 02 Mar 2026 21:01:01 +0000
Files and hashes: 1: 4TWnkEehYGPz8S3MxMCECSR21Hk.roa (hash: n3+/E4ft5KJ8lIw6jVs8x5Mt/ftJJPREMORWJ+SrYKM=)
2: CQKHJW4l-jQNOvungOrGDVVq3sA.crl (hash: 80RkmSQ4z8xItP1IJ2hAxqoj1C/yvu+8CtEURjp3Ef4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 21:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:34:5b:d6:69:b4:8f:b8:6e:38:d0:c4:8f:3e:17:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=090287256e25fa340d3afba780eac60d556adec0
Validity
Not Before: Mar 1 21:01:01 2026 GMT
Not After : Mar 2 21:01:01 2026 GMT
Subject: CN=79b62a7c1d00ca00ac206c38c1e27920b6edbbe7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:98:d7:c4:52:36:53:0a:62:3e:78:b4:63:5e:
40:69:2d:3f:99:1a:38:5d:d9:c7:44:42:fa:51:76:
06:0d:6a:b4:0e:86:5f:32:b6:dc:5f:0b:64:7d:74:
a6:36:d9:f3:af:92:87:ef:2f:e9:d2:3d:82:61:0a:
08:48:9c:ec:51:98:40:8f:0f:b0:da:42:6b:53:e3:
e7:59:ce:7f:5f:b3:9d:32:60:a1:5e:cc:6f:df:83:
99:6e:63:07:a0:6a:d3:8a:fb:8c:96:3e:5d:60:88:
f4:19:03:cf:ff:5d:40:d8:63:d7:06:b4:2b:a0:bf:
d1:7e:e1:58:92:47:3d:fd:ea:1d:39:89:9c:a5:4c:
ad:43:cf:22:48:85:25:b7:fd:8b:70:86:cc:05:cf:
4b:4c:04:5c:fd:68:8e:dc:6b:56:e1:65:9b:be:32:
c7:75:25:8d:c4:0e:3a:dc:11:72:f2:c5:1d:b9:f7:
6b:69:12:d4:11:dc:3a:5d:cd:0a:7f:33:17:b7:46:
71:74:7d:75:2b:85:db:28:67:ce:1a:77:e4:81:8f:
95:db:6a:c5:33:d4:a8:e2:c7:bb:1e:39:66:a3:f1:
71:25:60:b5:dd:66:c8:b5:3a:0f:4e:2b:36:18:11:
c2:5f:d4:84:47:80:63:27:94:8e:78:0c:49:71:a1:
2b:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:B6:2A:7C:1D:00:CA:00:AC:20:6C:38:C1:E2:79:20:B6:ED:BB:E7
X509v3 Authority Key Identifier:
keyid:09:02:87:25:6E:25:FA:34:0D:3A:FB:A7:80:EA:C6:0D:55:6A:DE:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:e6:c8:0b:09:0e:d2:bb:3e:9f:39:cb:a5:e6:aa:35:60:4c:
5d:6e:e4:a0:19:59:81:49:e2:e6:b9:aa:cd:bb:c9:a5:50:47:
1c:0f:35:ac:ba:34:fd:4a:2d:81:52:96:17:78:91:e5:ac:0f:
29:e0:c0:d5:f0:10:32:e2:17:12:f9:0d:df:eb:10:bf:58:ee:
2c:1e:8c:6c:3c:68:cd:62:79:33:c0:15:19:f3:b7:df:fa:e6:
dd:60:8d:b6:b2:b2:d5:29:0b:93:4d:5a:e4:ce:12:9b:1d:42:
27:d1:b4:0a:7a:2f:c4:00:00:cc:39:79:98:cf:ed:ec:f3:82:
74:54:59:31:6b:76:66:de:3b:6e:d0:83:3a:ac:1c:3b:18:70:
d3:35:a9:27:57:bd:46:b2:e1:ce:a9:ce:ce:90:d7:75:4e:96:
1d:fe:d6:04:8f:8f:c9:b7:73:5d:c1:cb:a8:2d:15:ba:ed:4e:
e1:34:29:d0:d7:6a:7d:7d:2e:a1:db:4e:10:e3:4a:86:6a:a4:
d6:20:d2:11:d5:b1:bb:ac:ab:c5:f0:74:35:da:c4:19:0a:aa:
83:a4:9f:86:fd:1a:b5:5e:78:5d:b5:b1:ab:da:7d:37:92:0c:
17:c6:e2:aa:e1:87:6a:66:2a:00:41:8a:36:9d:1e:88:a3:c2:
f6:32:55:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:10:48 2026 by rpki-client