Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.mft
File: sq-PF3TgWSXyTkHe5p5bYj2axj0.mft (raw, json)
Hash identifier: M060RQNJeIUwnZuyxcGbM/hHMn/WCDU8QF5TOYMHeec=
Subject key identifier: DF:90:67:C3:5B:79:51:DC:5E:16:5D:0B:65:2E:2B:C7:31:35:27:E0
Authority key identifier: B2:AF:8F:17:74:E0:59:25:F2:4E:41:DE:E6:9E:5B:62:3D:9A:C6:3D
Certificate issuer: /CN=b2af8f1774e05925f24e41dee69e5b623d9ac63d
Certificate serial: 0199FD6B1B7F198D9F88EB7AD740E36246C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sq-PF3TgWSXyTkHe5p5bYj2axj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.mft
Manifest number: 16E4
Signing time: Sun 19 Oct 2025 17:01:18 +0000
Manifest this update: Sun 19 Oct 2025 17:01:18 +0000
Manifest next update: Mon 20 Oct 2025 17:01:18 +0000
Files and hashes: 1: dHmQJZqThrz58J_TSvHl_H-39E8.roa (hash: lBrrDh2GaFmnqywSNW3PsD5utU5WNEXu75PvBG3VZjI=)
2: sq-PF3TgWSXyTkHe5p5bYj2axj0.crl (hash: XdNQIptxDqNKV0nAzqoLeHvDPt6IYtWeTGP4Vy5gVws=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.mft
rsync://rpki.ripe.net/repository/DEFAULT/sq-PF3TgWSXyTkHe5p5bYj2axj0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6b:1b:7f:19:8d:9f:88:eb:7a:d7:40:e3:62:46:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2af8f1774e05925f24e41dee69e5b623d9ac63d
Validity
Not Before: Oct 19 17:01:18 2025 GMT
Not After : Oct 20 17:01:18 2025 GMT
Subject: CN=df9067c35b7951dc5e165d0b652e2bc7313527e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:34:94:48:1c:27:96:6f:f7:c2:de:65:f1:5b:
d6:d5:ae:20:83:a3:53:e3:a8:5e:b1:43:ce:79:1e:
4a:b4:96:17:90:8e:b2:c2:76:54:fd:39:b1:dd:03:
14:5d:34:fb:73:8c:b8:c7:59:19:38:eb:41:54:d6:
4d:c3:73:6a:b3:a0:e5:11:60:56:66:a5:ad:73:48:
0f:f2:68:ab:16:17:25:2c:dc:7a:1c:6a:31:ae:5e:
68:95:10:61:b4:19:71:33:f8:19:a8:7f:a1:64:f6:
a0:d2:f1:ec:61:8b:85:7a:fa:b6:1c:00:e0:4c:f6:
6c:af:61:28:0e:f3:6e:58:a4:45:85:80:ac:6b:6f:
00:40:63:16:87:36:1d:9c:75:01:1b:3a:78:77:73:
c7:c2:ab:3a:09:20:34:67:b6:2c:b7:b9:72:b0:3b:
f7:b0:6d:57:35:16:9e:fa:2d:c2:e7:5e:b6:e1:62:
a6:ea:e2:1f:88:fe:8e:74:9d:7f:81:a4:6c:f7:7c:
33:6d:b8:2d:11:33:9c:04:e1:45:cd:67:45:ff:33:
d5:9e:59:bb:30:8d:5b:ca:80:8c:af:ca:4c:ef:6b:
23:e0:fa:bc:ab:ad:4c:c4:6b:85:b0:ff:7f:8b:2a:
8d:f5:a9:76:8c:69:bd:18:2e:03:b2:54:15:c2:e2:
c1:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:90:67:C3:5B:79:51:DC:5E:16:5D:0B:65:2E:2B:C7:31:35:27:E0
X509v3 Authority Key Identifier:
keyid:B2:AF:8F:17:74:E0:59:25:F2:4E:41:DE:E6:9E:5B:62:3D:9A:C6:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sq-PF3TgWSXyTkHe5p5bYj2axj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:4c:ec:e2:fb:56:42:31:71:fc:fa:e2:3c:ca:90:db:53:ee:
33:fc:29:45:d3:45:d3:49:96:05:60:25:52:95:cc:31:27:40:
b8:bd:75:74:06:7b:6f:2b:60:e5:4e:0a:92:c2:3b:3d:d9:14:
38:aa:74:d8:fc:37:33:cd:19:68:0e:96:16:d4:67:89:34:e2:
b0:ea:6e:07:ee:de:8b:d4:47:f4:97:ab:af:c0:71:0b:21:85:
98:13:ab:48:45:8e:5d:ca:bb:35:65:24:08:a9:0a:1f:5a:d5:
a1:ff:ec:f3:c7:f5:e5:6e:b1:c6:34:7f:49:d8:f1:c5:b7:39:
b6:d8:68:a8:85:c3:16:2e:0e:66:6f:7e:ef:bb:82:fb:13:d1:
a6:44:30:97:07:6a:3a:90:61:9c:81:53:db:23:84:a4:20:d7:
25:51:54:53:ec:be:ca:1e:e8:71:6d:b7:8f:88:97:1f:11:b7:
e3:9a:71:67:e7:27:80:9b:55:1f:34:fb:fc:c9:00:48:91:5b:
40:ca:f7:2a:c2:d4:df:dd:a1:ee:74:3e:0d:30:f6:ac:c3:4d:
92:93:4a:e9:86:01:a8:93:6f:0b:2d:21:ad:a0:46:06:e1:4f:
ec:00:a0:e2:3a:4c:ba:0b:21:12:8c:d9:84:01:8b:2d:9a:32:
96:75:08:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 22:36:35 2025 by rpki-client