Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.mft
File: sqvUconMbNnByAJ0KiztUMY0vTs.mft (raw, json)
Hash identifier: PjIHtlyTnNvGJMFZj0Nbh+0eW65ZmgItuOnSfWbRkGE=
Subject key identifier: 0D:BB:B2:15:C4:BB:D2:E8:93:67:5F:E8:4A:A1:82:79:C4:05:36:B5
Authority key identifier: B2:AB:D4:72:89:CC:6C:D9:C1:C8:02:74:2A:2C:ED:50:C6:34:BD:3B
Certificate issuer: /CN=b2abd47289cc6cd9c1c802742a2ced50c634bd3b
Certificate serial: 019D27E03096FBA570318669EE50FD16035C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sqvUconMbNnByAJ0KiztUMY0vTs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.mft
Manifest number: 0A5A
Signing time: Thu 26 Mar 2026 02:01:37 +0000
Manifest this update: Thu 26 Mar 2026 02:01:37 +0000
Manifest next update: Fri 27 Mar 2026 02:01:37 +0000
Files and hashes: 1: sqvUconMbNnByAJ0KiztUMY0vTs.crl (hash: Rpt9nbfeCZ2oxa9TFE63TlO5YncsGmj9V2NyqY7Anmw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.mft
rsync://rpki.ripe.net/repository/DEFAULT/sqvUconMbNnByAJ0KiztUMY0vTs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:e0:30:96:fb:a5:70:31:86:69:ee:50:fd:16:03:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2abd47289cc6cd9c1c802742a2ced50c634bd3b
Validity
Not Before: Mar 26 02:01:37 2026 GMT
Not After : Mar 27 02:01:37 2026 GMT
Subject: CN=0dbbb215c4bbd2e893675fe84aa18279c40536b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:7d:17:fc:40:ef:28:ff:62:2e:be:91:b4:bf:
19:49:d1:56:66:ea:b4:f4:ff:dd:57:30:eb:4e:83:
3a:3e:15:ad:a0:14:9d:d3:bc:8c:0d:a9:81:e0:14:
14:d8:bc:8d:39:4c:20:e2:88:18:0c:11:39:da:7c:
ce:45:1d:d2:06:e9:64:b1:ce:e2:c8:d1:62:b8:a0:
94:f6:ab:84:d8:ec:b1:e9:05:61:77:da:80:cc:4f:
5c:98:37:f3:8c:0d:8b:b4:8a:7d:05:19:64:c2:0b:
f6:8a:1f:1e:47:f9:75:10:2e:52:c3:62:c4:29:0a:
f7:df:f5:b6:06:3a:e1:a9:59:08:b3:3d:72:2e:29:
c6:f8:a1:90:b6:fb:c1:53:28:d0:67:a5:54:c6:46:
fa:e8:32:53:df:a3:c2:f3:c2:e1:02:b2:70:a6:7d:
8b:25:bf:34:76:77:ff:7a:7b:0e:57:fa:a5:58:a0:
8d:a3:3c:83:60:7f:73:79:45:f7:26:22:fc:0f:b9:
f2:cb:f9:cd:e7:91:e9:77:fd:c0:1b:1d:24:7f:ba:
54:01:bb:22:b7:da:c0:15:e7:82:7c:a9:8e:f6:c8:
ef:ef:b6:36:3e:0d:88:9b:1f:52:1e:9c:57:f3:0f:
57:4c:07:36:92:8e:bb:2e:db:9c:ab:7f:2c:fd:a9:
78:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:BB:B2:15:C4:BB:D2:E8:93:67:5F:E8:4A:A1:82:79:C4:05:36:B5
X509v3 Authority Key Identifier:
keyid:B2:AB:D4:72:89:CC:6C:D9:C1:C8:02:74:2A:2C:ED:50:C6:34:BD:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sqvUconMbNnByAJ0KiztUMY0vTs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:55:5e:e7:36:aa:92:b5:8c:87:3f:19:3b:f7:a4:aa:c7:5e:
32:64:aa:95:d4:95:6d:a0:9a:7d:82:3b:ec:11:86:12:7c:fe:
c8:2d:c2:de:f3:90:53:9c:a1:e1:35:1b:bb:01:ec:b1:39:ec:
90:c8:51:d4:b7:15:e5:27:a7:74:60:92:4e:c2:9f:64:89:5d:
98:08:dc:9f:97:65:da:3c:73:95:bf:4b:ef:59:c3:3b:f2:f2:
49:31:08:e8:bc:17:02:84:15:f4:d2:8e:9c:de:30:b2:87:5f:
0e:e6:8c:d4:bf:88:c8:d3:3c:40:4a:00:29:7d:41:fa:aa:79:
a9:18:1e:85:39:e7:d3:43:5e:b3:42:c2:19:ac:6c:07:a7:c2:
8d:12:6e:66:f0:6e:f8:a3:4d:60:65:8c:dc:43:a2:4f:da:8e:
1d:c9:fb:fb:d8:dd:b7:75:5a:d5:1b:29:6b:c2:16:4d:a5:80:
a6:b8:99:b9:cf:2b:e6:a5:be:e7:7e:85:61:af:f3:28:b6:2e:
a0:e6:c1:78:e2:38:de:6e:f5:1f:17:35:7b:17:ff:eb:69:3c:
02:86:e5:56:81:da:9b:06:73:c5:4e:1f:f0:d2:55:8f:5b:06:
19:2d:ac:dc:e1:3b:99:d6:c3:4f:64:0a:cb:5b:d9:7c:44:22:
f0:e5:93:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:31:36 2026 by rpki-client