Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.mft
File: sqvUconMbNnByAJ0KiztUMY0vTs.mft (raw, json)
Hash identifier: AbAaw5LfXg6km9+gO3TuwJHTYNVTDGfo+Aw0hTOLTXo=
Subject key identifier: 78:43:ED:68:16:50:48:B8:8C:F0:B7:6F:0D:06:9F:BB:7F:C7:38:AE
Authority key identifier: B2:AB:D4:72:89:CC:6C:D9:C1:C8:02:74:2A:2C:ED:50:C6:34:BD:3B
Certificate issuer: /CN=b2abd47289cc6cd9c1c802742a2ced50c634bd3b
Certificate serial: 0199FCC6440AD35D2DD75704BE31DF49FFF1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sqvUconMbNnByAJ0KiztUMY0vTs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.mft
Manifest number: 08B6
Signing time: Sun 19 Oct 2025 14:01:15 +0000
Manifest this update: Sun 19 Oct 2025 14:01:15 +0000
Manifest next update: Mon 20 Oct 2025 14:01:15 +0000
Files and hashes: 1: sqvUconMbNnByAJ0KiztUMY0vTs.crl (hash: aFVp0mox0NHqZAGXTBY1AnvEX2yFOnb+mJMOuZboLOI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.mft
rsync://rpki.ripe.net/repository/DEFAULT/sqvUconMbNnByAJ0KiztUMY0vTs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:44:0a:d3:5d:2d:d7:57:04:be:31:df:49:ff:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2abd47289cc6cd9c1c802742a2ced50c634bd3b
Validity
Not Before: Oct 19 14:01:15 2025 GMT
Not After : Oct 20 14:01:15 2025 GMT
Subject: CN=7843ed68165048b88cf0b76f0d069fbb7fc738ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:00:fe:1d:a4:91:28:20:fa:04:ea:7d:20:d3:
f2:aa:26:aa:f5:7a:d9:4d:23:1d:e4:d9:e7:c3:fe:
52:1b:fc:2c:e2:26:21:aa:2d:62:f2:2f:98:5f:d0:
ea:17:f6:84:91:07:84:30:6c:27:f7:4f:b7:2f:8a:
38:ad:62:82:8a:85:2f:20:3d:47:86:74:05:6e:3b:
89:6a:66:8e:88:22:82:be:d7:b3:6e:79:a1:55:20:
ad:fe:a6:42:9c:21:11:56:53:d4:4a:44:46:99:d7:
51:d1:29:45:44:be:04:01:08:55:57:89:db:ca:42:
72:b7:59:c9:c8:2b:43:17:c1:c1:21:d4:88:a4:44:
4b:b7:a6:b4:05:f8:bb:11:69:9d:f2:ce:95:44:87:
11:aa:20:be:b6:46:6e:b6:50:ad:dd:ee:2b:d8:4f:
f7:7c:af:f2:d1:10:51:9f:44:5a:01:a6:17:33:5e:
6e:c8:b3:66:38:1a:ac:32:73:e2:0f:2f:de:f2:42:
89:7c:c6:3a:07:b7:4b:be:b6:d6:52:9a:7b:21:91:
89:1b:05:c1:d8:39:8c:c3:d5:4f:f0:bf:43:36:6f:
ad:e8:3a:c4:cc:d0:af:75:21:fe:93:4f:1f:5a:c0:
84:3f:b9:a7:5d:dd:99:17:91:ed:82:1a:d1:04:ac:
06:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:43:ED:68:16:50:48:B8:8C:F0:B7:6F:0D:06:9F:BB:7F:C7:38:AE
X509v3 Authority Key Identifier:
keyid:B2:AB:D4:72:89:CC:6C:D9:C1:C8:02:74:2A:2C:ED:50:C6:34:BD:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sqvUconMbNnByAJ0KiztUMY0vTs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:24:90:2f:62:7d:34:37:a3:dc:a2:d7:b6:0e:85:da:e5:88:
9d:82:01:8b:a9:d3:e3:43:84:01:e7:f1:ca:81:71:fb:a5:a1:
a2:20:1c:67:e7:34:43:7f:1e:6d:9e:bb:ed:fc:5d:8d:60:0d:
bb:fa:4e:5c:b1:13:f0:07:d6:96:25:46:d9:fe:22:6c:c6:16:
53:b2:b8:34:44:80:21:59:e3:f9:30:d5:c2:f7:3f:a3:7d:ee:
4e:f8:6b:fa:84:5b:9b:96:8a:9c:69:15:7d:8c:2c:76:a6:85:
39:70:e8:79:cb:13:d2:bf:ce:73:e7:26:53:a7:87:a8:7f:54:
9f:44:40:9b:06:9a:59:fe:5f:fa:a2:fb:48:1d:65:cf:cc:be:
77:39:ee:da:73:0c:25:1e:43:f0:9c:a9:e5:8d:e6:1e:2a:4b:
0e:6e:f9:e2:5f:ee:fc:08:a4:c6:cd:bb:bb:97:fc:80:38:42:
72:d8:89:15:72:ad:84:0e:b1:50:09:f8:dd:0e:e8:a3:3d:d2:
85:de:bd:fd:f7:c1:de:4a:30:2f:2c:c9:eb:bd:e9:82:20:37:
c2:e6:59:30:77:7b:b2:75:96:84:c7:17:29:8b:49:d5:e0:f3:
df:64:f6:b7:d7:14:0a:bb:9b:62:5c:99:d2:a8:c6:6d:8a:0f:
0d:39:88:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:41:22 2025 by rpki-client