Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
File: CQKHJW4l-jQNOvungOrGDVVq3sA.mft (raw, json)
Hash identifier: 302AvRAGpYOSa3uFY4Z/UYOD8mQoaRAHkeCH5u7Icj4=
Subject key identifier: 56:04:2C:CD:D5:05:70:58:6B:6F:F8:D6:04:58:A3:E3:B9:21:D6:B0
Authority key identifier: 09:02:87:25:6E:25:FA:34:0D:3A:FB:A7:80:EA:C6:0D:55:6A:DE:C0
Certificate issuer: /CN=090287256e25fa340d3afba780eac60d556adec0
Certificate serial: 019E1DFEAA5D722E860150164A6E281F06EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
Manifest number: 0C23
Signing time: Tue 12 May 2026 21:01:29 +0000
Manifest this update: Tue 12 May 2026 21:01:29 +0000
Manifest next update: Wed 13 May 2026 21:01:29 +0000
Files and hashes: 1: 4TWnkEehYGPz8S3MxMCECSR21Hk.roa (hash: n3+/E4ft5KJ8lIw6jVs8x5Mt/ftJJPREMORWJ+SrYKM=)
2: CQKHJW4l-jQNOvungOrGDVVq3sA.crl (hash: 5TnJQh9LttklxlLxdN1Y9YQPKYDqN5ICxGcgQ+rpwWw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:10:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:fe:aa:5d:72:2e:86:01:50:16:4a:6e:28:1f:06:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=090287256e25fa340d3afba780eac60d556adec0
Validity
Not Before: May 12 21:01:29 2026 GMT
Not After : May 13 21:01:29 2026 GMT
Subject: CN=56042ccdd50570586b6ff8d60458a3e3b921d6b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:9f:8b:4e:ec:e7:1a:39:0b:68:11:06:0e:e0:
15:78:15:32:1c:85:72:a7:f9:02:27:42:a4:32:e6:
f1:c6:e8:0c:04:95:5b:c2:b8:1a:eb:18:ba:e9:99:
c2:01:c3:e0:0f:49:f1:fa:cc:af:40:ec:89:50:78:
ea:9c:06:4f:6f:e7:d4:75:4e:53:e3:73:de:21:68:
9f:d5:cb:0d:38:81:6e:69:3e:e5:cf:a7:fd:f8:63:
d0:e8:53:4a:1f:21:d8:b1:b3:71:8c:66:82:be:fb:
f4:25:ed:21:fc:13:fe:88:47:c3:ff:4e:7f:35:71:
d4:b3:11:e0:0a:88:5e:0c:c6:80:4d:32:9b:2b:ff:
62:cd:48:c9:2d:e2:1d:3f:e4:9f:5d:83:72:fd:f7:
32:05:6c:2d:69:ea:37:15:ba:34:ad:ab:1d:b3:18:
bc:ab:d9:98:f8:a2:07:80:8e:b6:fd:d0:45:2a:82:
44:16:a9:b8:61:20:7a:a5:10:00:0f:fe:c0:76:50:
df:aa:37:22:95:49:72:50:da:4b:dc:b7:a4:e6:31:
bc:e9:4b:3c:e2:6c:85:15:3b:b1:ef:1d:69:a9:11:
2a:b5:7b:3a:a6:9a:94:32:ed:41:2c:4e:c4:19:c5:
23:68:63:2c:f0:91:ca:e3:ef:7f:57:e8:a5:17:75:
02:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:04:2C:CD:D5:05:70:58:6B:6F:F8:D6:04:58:A3:E3:B9:21:D6:B0
X509v3 Authority Key Identifier:
keyid:09:02:87:25:6E:25:FA:34:0D:3A:FB:A7:80:EA:C6:0D:55:6A:DE:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CQKHJW4l-jQNOvungOrGDVVq3sA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5b0ff5-84c3-49bb-9fab-77b21c04bc7d/1/CQKHJW4l-jQNOvungOrGDVVq3sA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:cd:59:4f:9f:c9:ab:05:22:2e:42:43:ec:92:ad:b0:9b:f5:
56:bc:e8:c1:10:b2:d3:ec:73:68:8f:63:70:69:19:24:37:a3:
6a:a0:b0:54:73:fc:60:d5:69:00:b7:cc:26:57:9f:55:0c:95:
62:1c:19:ed:0f:bd:62:4c:00:fd:2f:61:14:07:d6:ad:17:36:
c5:da:5b:8e:27:69:fa:e4:72:56:c0:2c:43:a5:da:7a:a8:bc:
00:42:73:96:85:71:1e:85:e0:c5:6f:ff:0d:87:42:fc:42:6a:
1e:d7:ee:6d:57:b8:6e:4a:e0:44:4f:cf:5d:6c:11:50:0d:76:
44:ad:ba:91:b3:c5:9e:4d:ca:9d:88:b7:23:f9:bc:c5:44:81:
dc:ea:0b:e8:79:48:a2:21:0a:39:a8:45:e2:84:5e:7f:0a:e4:
6e:13:ea:17:7d:25:57:9f:2b:d2:fe:fc:ed:f6:3e:0b:cf:cb:
65:99:21:4e:bc:85:00:22:9f:16:1b:d9:05:ae:1d:fb:11:ad:
ca:40:01:86:f6:06:f1:fb:d3:cf:e9:b0:14:5e:9c:79:c8:7c:
91:ca:b0:f4:c8:f1:3c:46:ce:f9:03:74:10:3b:f1:5e:08:3d:
07:e4:90:d7:cd:8c:c6:fe:9e:04:ec:05:43:0b:38:82:ff:35:
b0:b7:f9:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:24:55 2026 by rpki-client