Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
File: CQKHJW4l-jQNOvungOrGDVVq3sA.mft (raw, json)
Hash identifier: 2ignZyaTpdXLNsZyiajeKx5JGBxU16+PhEaEMkKJ4NM=
Subject key identifier: 97:24:10:8C:52:94:12:5F:2E:D8:0D:8C:B5:F6:E2:20:8B:FE:34:F9
Authority key identifier: 09:02:87:25:6E:25:FA:34:0D:3A:FB:A7:80:EA:C6:0D:55:6A:DE:C0
Certificate issuer: /CN=090287256e25fa340d3afba780eac60d556adec0
Certificate serial: 019EC0360B2374842E26AA4CB18D49EBBB7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
Manifest number: 0C77
Signing time: Sat 13 Jun 2026 09:00:27 +0000
Manifest this update: Sat 13 Jun 2026 09:00:27 +0000
Manifest next update: Sun 14 Jun 2026 09:00:27 +0000
Files and hashes: 1: 4TWnkEehYGPz8S3MxMCECSR21Hk.roa (hash: n3+/E4ft5KJ8lIw6jVs8x5Mt/ftJJPREMORWJ+SrYKM=)
2: CQKHJW4l-jQNOvungOrGDVVq3sA.crl (hash: SgML++fPTCyINu41qavei93hyUW9vgzD5ZLInKym70s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:36:0b:23:74:84:2e:26:aa:4c:b1:8d:49:eb:bb:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=090287256e25fa340d3afba780eac60d556adec0
Validity
Not Before: Jun 13 09:00:27 2026 GMT
Not After : Jun 14 09:00:27 2026 GMT
Subject: CN=9724108c5294125f2ed80d8cb5f6e2208bfe34f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:a4:88:ef:1f:2e:bc:b0:01:a2:a2:04:eb:ac:
2a:2f:86:5f:12:09:a3:1d:0a:a0:54:73:95:60:6c:
a2:31:e9:f0:1a:f2:85:fd:a7:9d:4d:89:10:08:f7:
ae:f9:10:94:ed:3d:f5:f6:34:86:5f:ac:fd:8d:6b:
c1:6f:2b:c2:f3:37:09:9e:ac:61:f9:1e:f5:08:01:
9a:0e:4a:68:24:0f:14:3d:58:72:e3:52:b9:d9:7d:
55:17:d9:94:5f:07:ff:77:a3:cc:5e:a8:af:09:ce:
3a:42:da:a5:46:50:c7:a1:31:1a:37:1b:b1:72:9c:
5e:d8:48:db:2f:03:a0:84:d2:b9:42:76:40:e3:ec:
6e:32:3c:ad:28:04:3c:5f:8c:5f:d1:1b:5b:ec:e4:
bd:47:ca:88:b3:1f:9e:52:6c:f9:4a:11:c1:36:f2:
3c:f3:55:2e:ad:d2:f5:d3:9e:79:3c:e3:15:75:9d:
4d:7b:2e:64:02:b9:c6:2d:6e:c2:19:5f:54:95:31:
11:5a:f1:1f:40:5c:16:e7:30:bb:d6:5b:a4:28:f8:
e2:c0:f7:d1:32:ac:b1:56:22:46:92:3d:fe:6d:36:
f5:85:91:c0:75:e3:17:7d:d6:48:62:af:45:5c:74:
58:7f:68:e6:31:53:64:fd:2f:e6:21:cd:31:42:ae:
ba:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:24:10:8C:52:94:12:5F:2E:D8:0D:8C:B5:F6:E2:20:8B:FE:34:F9
X509v3 Authority Key Identifier:
keyid:09:02:87:25:6E:25:FA:34:0D:3A:FB:A7:80:EA:C6:0D:55:6A:DE:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:36:30:b6:49:76:b8:75:a9:ef:2e:88:08:1e:83:92:e9:90:
1e:55:71:56:b0:c4:b1:49:17:0e:e4:10:88:f8:65:cf:65:28:
41:3d:9e:62:27:2d:f9:6e:59:36:58:7e:20:62:e0:04:45:b5:
1d:d2:fe:62:ce:8c:41:66:4d:cd:49:2e:a3:03:14:4a:16:82:
40:13:6f:7e:d8:71:c7:32:62:99:fe:05:6c:cc:81:34:97:5f:
a0:89:87:27:9d:80:d7:0c:7a:3b:44:68:11:19:33:97:cb:07:
6d:0e:3f:9b:4b:56:75:0f:23:05:c5:47:b3:70:d0:92:56:8d:
2e:5b:4d:54:fd:c5:7c:e7:49:50:ae:53:11:6e:81:55:b1:0b:
60:6f:25:75:65:07:e1:46:01:6e:f6:f4:20:6a:83:cd:40:56:
8e:a7:d8:11:8e:02:bf:67:e7:b1:22:a7:4a:03:f0:8e:e8:78:
79:81:23:d5:40:5f:cb:39:30:3d:cd:a8:4c:d4:65:10:26:d8:
ef:7d:aa:f6:3d:ac:0f:51:5a:c4:d5:12:58:d0:6a:db:18:1a:
bc:af:28:20:5a:12:e6:08:fe:0b:21:fb:cc:75:79:36:45:9f:
36:23:79:3a:6c:63:6d:66:a3:0d:36:9f:2f:19:11:60:83:df:
17:66:c1:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 13:13:54 2026 by rpki-client