Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.mft
File: sq-PF3TgWSXyTkHe5p5bYj2axj0.mft (raw, json)
Hash identifier: gdDCUyHfYcGzYcK9VByUb/IeiIJvIpSylds9kD4rN/k=
Subject key identifier: 34:AA:B8:06:D2:C2:8C:60:5B:C1:F6:16:10:24:E3:AA:4C:21:DE:A2
Authority key identifier: B2:AF:8F:17:74:E0:59:25:F2:4E:41:DE:E6:9E:5B:62:3D:9A:C6:3D
Certificate issuer: /CN=b2af8f1774e05925f24e41dee69e5b623d9ac63d
Certificate serial: 019D292964AA6C0D8395B614AC972D0B846C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sq-PF3TgWSXyTkHe5p5bYj2axj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.mft
Manifest number: 1889
Signing time: Thu 26 Mar 2026 08:01:11 +0000
Manifest this update: Thu 26 Mar 2026 08:01:11 +0000
Manifest next update: Fri 27 Mar 2026 08:01:11 +0000
Files and hashes: 1: VFGEJNzLzqbtn_xoW_8uAp03Cps.roa (hash: vNmZGriew68XIyyo5twCVk3Ozs6RyZWncGa/e7gLj+Q=)
2: sq-PF3TgWSXyTkHe5p5bYj2axj0.crl (hash: 01IPoZnshfArRrwlVx63C+0YyM+Pk2ERsH8gIjUyJt0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.mft
rsync://rpki.ripe.net/repository/DEFAULT/sq-PF3TgWSXyTkHe5p5bYj2axj0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 08:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:29:64:aa:6c:0d:83:95:b6:14:ac:97:2d:0b:84:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2af8f1774e05925f24e41dee69e5b623d9ac63d
Validity
Not Before: Mar 26 08:01:11 2026 GMT
Not After : Mar 27 08:01:11 2026 GMT
Subject: CN=34aab806d2c28c605bc1f6161024e3aa4c21dea2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:9b:7c:65:3b:82:1d:09:52:c1:e6:a1:57:72:
f9:55:ef:1f:25:3f:eb:aa:47:a3:8a:10:91:61:ab:
b9:f6:e6:20:90:fd:6a:c0:ce:a2:a5:8d:89:19:f2:
79:fc:e9:83:5f:10:4d:01:0f:c4:6a:53:bd:c6:f5:
85:36:a2:32:10:d4:f3:1e:23:4a:7e:fe:f0:4d:d7:
8a:d4:51:4c:83:68:ac:f1:47:c4:ff:1e:ab:f8:1d:
e6:9c:8c:3f:2d:34:7f:52:b5:1d:ef:74:4b:a8:0c:
91:90:19:04:6d:f0:52:f0:04:d1:7f:62:2b:8a:5b:
69:a5:ac:ab:0a:a0:2a:3c:6e:9e:cc:3c:74:d2:a2:
b7:71:74:68:c7:72:2c:9a:6d:11:6b:a5:6b:c6:35:
f9:03:eb:0d:df:81:0d:62:a9:59:bc:1a:7e:9c:38:
82:cc:ab:67:96:82:83:f4:2d:e5:a0:03:22:2c:0b:
89:2e:0b:3d:87:f6:84:31:90:af:4b:ad:b8:49:35:
cf:8f:12:f4:ca:92:44:25:f4:ce:5f:b8:db:10:bc:
5d:94:01:06:07:c1:13:37:39:8d:6b:2b:e4:35:fb:
89:00:bc:5d:26:ba:a7:aa:c0:0d:5d:9f:26:3a:a2:
93:93:77:72:b5:68:e3:f2:1c:94:88:7f:76:a0:0c:
0b:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:AA:B8:06:D2:C2:8C:60:5B:C1:F6:16:10:24:E3:AA:4C:21:DE:A2
X509v3 Authority Key Identifier:
keyid:B2:AF:8F:17:74:E0:59:25:F2:4E:41:DE:E6:9E:5B:62:3D:9A:C6:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sq-PF3TgWSXyTkHe5p5bYj2axj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:49:80:c4:fe:e0:3f:7d:9f:87:ab:7d:ba:ab:81:de:4f:f6:
52:75:a6:dc:82:60:89:8e:33:55:7f:0e:a8:9d:8e:77:9f:a4:
40:8e:4c:c1:65:f8:37:b7:fa:6a:99:99:92:72:b3:c7:53:15:
83:a3:11:97:d4:26:d8:ce:62:d5:b2:ac:1e:1a:59:fc:d9:d7:
39:61:fc:da:35:80:e0:5d:85:91:ce:1a:c0:9d:a6:38:21:01:
78:e4:95:03:d7:fa:31:75:33:83:09:2e:03:9d:e5:75:67:c2:
c5:17:0c:e8:f0:7a:36:e0:61:77:f3:9d:92:d0:96:38:33:4b:
96:56:d3:ce:f9:30:b6:80:b9:3e:60:2e:23:b4:60:6d:39:e9:
b6:1e:5d:69:7e:46:33:80:31:45:02:7b:dd:3f:86:f9:ed:16:
df:9d:d6:3a:86:8f:24:fe:27:ad:3a:3b:97:f9:54:44:7c:1a:
bc:8a:09:0b:44:d2:3e:aa:c1:a0:98:ef:95:65:8a:60:ed:50:
8f:f3:fd:f4:04:dd:52:0d:1b:f4:a2:10:08:67:f0:2d:84:28:
27:4a:92:1b:b1:bf:db:d0:cd:10:d7:7a:9c:99:b5:6d:2d:64:
42:b9:7c:14:9b:9d:2a:46:25:b4:7f:5e:c8:b4:7b:a1:88:da:
c8:93:c7:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:26:35 2026 by rpki-client