Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.mft
File: sq-PF3TgWSXyTkHe5p5bYj2axj0.mft (raw, json)
Hash identifier: NKj8IFudyXnOPQgzUYyESUnWAWLmkhMdR9Aln+NL6vo=
Subject key identifier: 04:A3:E7:3B:62:E1:D8:3A:D3:72:74:40:57:47:02:5C:AF:20:A9:BE
Authority key identifier: B2:AF:8F:17:74:E0:59:25:F2:4E:41:DE:E6:9E:5B:62:3D:9A:C6:3D
Certificate issuer: /CN=b2af8f1774e05925f24e41dee69e5b623d9ac63d
Certificate serial: 0198D5F188B03926052BE8DD92D188C86F68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sq-PF3TgWSXyTkHe5p5bYj2axj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.mft
Manifest number: 164B
Signing time: Sat 23 Aug 2025 08:00:32 +0000
Manifest this update: Sat 23 Aug 2025 08:00:32 +0000
Manifest next update: Sun 24 Aug 2025 08:00:32 +0000
Files and hashes: 1: dHmQJZqThrz58J_TSvHl_H-39E8.roa (hash: lBrrDh2GaFmnqywSNW3PsD5utU5WNEXu75PvBG3VZjI=)
2: sq-PF3TgWSXyTkHe5p5bYj2axj0.crl (hash: gqPGSWCGU+5f/sczZ5hKGVCaKzX2lfQHZYR0x8zk7HQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.mft
rsync://rpki.ripe.net/repository/DEFAULT/sq-PF3TgWSXyTkHe5p5bYj2axj0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:88:b0:39:26:05:2b:e8:dd:92:d1:88:c8:6f:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2af8f1774e05925f24e41dee69e5b623d9ac63d
Validity
Not Before: Aug 23 08:00:32 2025 GMT
Not After : Aug 24 08:00:32 2025 GMT
Subject: CN=04a3e73b62e1d83ad37274405747025caf20a9be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:10:53:a7:27:e5:f1:21:91:29:fe:42:80:03:
8a:22:61:a2:ac:fa:35:2d:de:f5:3b:39:b9:9a:d5:
12:f8:8a:70:f7:15:d4:f2:46:ae:49:6c:1a:d3:1c:
ac:77:96:55:d0:e7:3d:d9:19:97:5c:6f:a1:3d:66:
a4:ef:4b:65:ec:45:9c:06:cb:44:dc:6a:3e:27:59:
0f:c3:80:4a:27:1e:cd:cb:c8:db:05:b3:fa:dd:cf:
59:9d:e8:2b:62:0a:01:c3:09:97:f5:b1:41:ad:a0:
4d:1a:e3:5b:77:c0:4a:51:e7:27:11:1f:01:2b:fd:
f0:75:56:20:8d:93:5d:d0:3c:3c:43:fe:f3:4e:c8:
e2:0c:4f:e2:b0:0a:c0:0f:7e:01:2a:0c:88:2d:9d:
41:8c:03:05:21:a3:d9:96:d7:1a:5c:06:0e:88:9a:
75:0c:62:6e:bd:76:36:60:5c:a5:b1:8b:4f:38:5f:
ad:d8:55:15:3a:3b:4a:0b:37:ad:2b:ec:82:95:04:
94:af:24:6f:ec:10:ec:a6:86:10:e3:88:3f:06:5d:
88:04:78:e4:d2:3f:a6:d4:cf:55:14:71:be:47:0f:
51:56:9d:77:62:78:09:22:3f:3f:4f:ac:65:28:7f:
c6:3b:a9:8f:c4:01:3f:af:37:92:49:e1:2f:28:b9:
04:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:A3:E7:3B:62:E1:D8:3A:D3:72:74:40:57:47:02:5C:AF:20:A9:BE
X509v3 Authority Key Identifier:
keyid:B2:AF:8F:17:74:E0:59:25:F2:4E:41:DE:E6:9E:5B:62:3D:9A:C6:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sq-PF3TgWSXyTkHe5p5bYj2axj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:6b:2a:23:1a:8d:8a:5b:61:21:4b:f7:b1:da:e8:ef:bf:df:
7d:9b:95:c5:97:f9:ce:09:15:8a:10:6f:7e:01:56:2b:28:34:
5a:e7:ae:55:9f:8b:6a:da:99:1f:95:99:9b:3e:0a:2c:11:98:
19:b8:40:5e:1f:4e:18:39:0d:6c:ba:35:e0:fc:a2:16:6b:d3:
a5:8c:c9:6e:8b:89:2d:62:d4:0a:32:17:24:9a:9f:96:90:72:
f0:ae:1e:96:6b:0b:11:fb:9c:17:cf:0c:27:80:eb:1e:74:0e:
30:33:5a:1d:5f:a5:e1:2a:47:79:1a:5b:5a:d8:0a:e4:97:ca:
fe:43:70:3c:39:3c:0f:13:78:6c:a9:b9:43:85:4a:30:bd:1b:
40:97:ad:82:6f:16:81:db:18:e2:08:0b:d0:73:34:ce:a0:02:
f4:b0:b8:a3:8d:17:1e:2b:3a:53:4c:c2:1d:33:7b:f7:19:d9:
06:92:9e:82:ca:a3:21:5e:c2:2d:29:67:03:c1:81:b3:e7:b2:
2e:5f:46:61:a7:4a:5e:80:7b:1f:6d:cb:ff:56:34:03:ac:da:
e7:13:d8:c4:54:86:09:05:d7:6b:c2:23:8c:6f:ef:5d:4c:43:
89:64:b3:93:e5:44:cd:e5:e8:09:82:1e:3c:53:2d:de:fa:fa:
4f:22:3d:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:37:16 2025 by rpki-client