Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.mft
File: sq-PF3TgWSXyTkHe5p5bYj2axj0.mft (raw, json)
Hash identifier: Dh1RNIL9YwdeNnwz7H9KzH+Bg+jjel0lCu1VFmPKVeg=
Subject key identifier: 87:89:16:B9:9F:E7:B3:8E:6D:59:52:EC:40:E7:85:4A:B0:86:B3:31
Authority key identifier: B2:AF:8F:17:74:E0:59:25:F2:4E:41:DE:E6:9E:5B:62:3D:9A:C6:3D
Certificate issuer: /CN=b2af8f1774e05925f24e41dee69e5b623d9ac63d
Certificate serial: 019D273AA6CF55A426ACEC5533A5C6495C72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sq-PF3TgWSXyTkHe5p5bYj2axj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.mft
Manifest number: 1888
Signing time: Wed 25 Mar 2026 23:00:48 +0000
Manifest this update: Wed 25 Mar 2026 23:00:48 +0000
Manifest next update: Thu 26 Mar 2026 23:00:48 +0000
Files and hashes: 1: VFGEJNzLzqbtn_xoW_8uAp03Cps.roa (hash: vNmZGriew68XIyyo5twCVk3Ozs6RyZWncGa/e7gLj+Q=)
2: sq-PF3TgWSXyTkHe5p5bYj2axj0.crl (hash: HCPjveUXgBhVahu680Usn0D7iJ0G6jcJJuwhdHBhWHc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.mft
rsync://rpki.ripe.net/repository/DEFAULT/sq-PF3TgWSXyTkHe5p5bYj2axj0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3a:a6:cf:55:a4:26:ac:ec:55:33:a5:c6:49:5c:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2af8f1774e05925f24e41dee69e5b623d9ac63d
Validity
Not Before: Mar 25 23:00:48 2026 GMT
Not After : Mar 26 23:00:48 2026 GMT
Subject: CN=878916b99fe7b38e6d5952ec40e7854ab086b331
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:fc:bb:4c:4c:df:2b:d4:0e:69:16:15:c2:d5:
7a:c3:e3:49:c9:f0:55:d1:43:ce:c3:37:da:a6:e3:
a5:28:c1:38:55:b9:6b:11:58:6b:9a:d4:b8:71:32:
bb:3e:44:a3:2d:85:2e:67:c9:51:79:e6:0d:43:5c:
53:23:1f:fd:21:f4:4d:fe:00:a2:12:bc:3c:5f:9f:
e3:cf:b8:84:c0:38:4b:04:37:35:0b:5a:96:f7:c8:
8f:72:9b:ce:a9:76:6e:c3:d7:18:fb:ba:b2:e6:e6:
aa:e7:46:07:2a:16:f7:5a:47:18:40:25:21:40:7f:
5b:ee:b7:60:8a:63:69:a8:f6:23:68:97:52:7e:8f:
64:f6:dd:e7:14:84:ff:45:df:71:8d:1e:6d:91:b5:
ed:c7:ff:1f:86:7f:ff:55:b4:7c:5e:e0:5d:4a:b7:
87:f6:a5:1f:f3:cf:7c:43:33:bd:b2:88:e8:8e:1d:
77:ea:a4:8f:f1:90:47:7c:bd:22:5d:3e:74:64:a1:
f8:e7:5b:30:80:3f:9c:d2:23:38:34:a8:c6:42:2c:
a1:58:7a:cb:e0:9e:21:b6:4a:35:0f:8c:a6:53:6b:
a2:34:a7:f6:57:81:ae:6b:d4:eb:59:45:5c:3f:a2:
84:62:07:86:99:09:88:f3:55:d7:12:7b:14:4b:06:
3f:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:89:16:B9:9F:E7:B3:8E:6D:59:52:EC:40:E7:85:4A:B0:86:B3:31
X509v3 Authority Key Identifier:
keyid:B2:AF:8F:17:74:E0:59:25:F2:4E:41:DE:E6:9E:5B:62:3D:9A:C6:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sq-PF3TgWSXyTkHe5p5bYj2axj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:8d:51:f9:ae:78:18:93:eb:23:e0:77:b2:86:f3:4b:05:a3:
2e:cd:43:74:06:02:a4:49:5b:d4:c9:31:c3:bc:36:9d:cd:cf:
5b:d5:5e:fa:17:07:ef:39:08:b8:c4:77:46:15:1b:9c:79:5f:
ed:9c:7a:7e:58:80:a6:11:45:13:5e:81:d4:09:17:b3:bb:c1:
9c:87:02:e7:5a:45:b3:6a:2d:d7:7d:6e:47:ea:f6:6e:f6:43:
1e:d7:0b:64:28:48:51:2b:86:96:98:39:29:07:ee:09:68:51:
72:19:2f:2c:dd:f3:09:db:0d:7e:b8:c6:8e:b1:12:c1:d4:8f:
38:88:e3:7c:01:43:a6:4d:f8:3b:72:17:bf:d5:a3:ec:07:6f:
9f:c7:00:e2:5f:3e:22:c7:96:31:b5:de:b3:60:e0:03:11:73:
6f:28:1d:41:15:52:ef:67:bf:d9:18:5d:4f:72:36:ca:fe:1e:
21:3b:f5:38:0b:fb:7b:65:5f:dd:36:09:8e:d0:eb:d1:02:7b:
08:76:66:ec:54:2d:76:59:06:09:dc:de:0b:d4:36:95:59:ea:
d7:f2:49:64:fc:8c:2b:a6:2e:67:65:f8:bd:2c:17:10:72:bb:
94:50:47:b2:03:d6:29:08:10:f3:77:22:f0:a1:cb:47:5a:aa:
40:04:db:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 07:17:26 2026 by rpki-client