Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/f5d730-f8eb-4f80-9a9c-9abe4e6c2be1/1/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.mft
File: sqhTcekvOaK-QkdgsE5HrZ2j7Ts.mft (raw, json)
Hash identifier: j87xTdLRcIPT1wENX+nD5qY2rRUqK/k6jbXWV4rv9ak=
Subject key identifier: 88:0D:42:B0:22:F7:1A:B4:92:87:12:E1:C7:6D:FF:48:B2:59:6D:47
Authority key identifier: B2:A8:53:71:E9:2F:39:A2:BE:42:47:60:B0:4E:47:AD:9D:A3:ED:3B
Certificate issuer: /CN=b2a85371e92f39a2be424760b04e47ad9da3ed3b
Certificate serial: 0198D4A7B33826BC993A70746CA672B0457F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/f5d730-f8eb-4f80-9a9c-9abe4e6c2be1/1/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.mft
Manifest number: 02E7
Signing time: Sat 23 Aug 2025 02:00:16 +0000
Manifest this update: Sat 23 Aug 2025 02:00:16 +0000
Manifest next update: Sun 24 Aug 2025 02:00:16 +0000
Files and hashes: 1: sqhTcekvOaK-QkdgsE5HrZ2j7Ts.crl (hash: /Gol/zeQs1WoOnI2IWk6pQpqpGNb+dIO6Yn6Ao3GPkI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/f5d730-f8eb-4f80-9a9c-9abe4e6c2be1/1/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/f5d730-f8eb-4f80-9a9c-9abe4e6c2be1/1/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.mft
rsync://rpki.ripe.net/repository/DEFAULT/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 02:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a7:b3:38:26:bc:99:3a:70:74:6c:a6:72:b0:45:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2a85371e92f39a2be424760b04e47ad9da3ed3b
Validity
Not Before: Aug 23 02:00:16 2025 GMT
Not After : Aug 24 02:00:16 2025 GMT
Subject: CN=880d42b022f71ab4928712e1c76dff48b2596d47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:37:ca:87:3e:fe:84:82:33:3f:5b:0b:06:ac:
fb:4e:74:47:b4:31:c4:a1:cf:9e:e1:37:2b:c5:c6:
6a:b9:9a:a0:b8:d2:1c:db:bc:16:5f:cc:bb:27:e2:
a8:ee:6a:63:71:29:9d:08:c0:4d:d6:f9:e1:57:fe:
0b:19:30:74:c0:d1:24:69:f8:0a:ed:0e:0b:32:20:
fa:c8:b8:8e:b0:fb:6a:94:cb:58:8d:58:de:d5:c4:
71:6b:0c:11:e3:07:52:f1:c5:af:df:7d:ea:59:41:
e9:f4:65:55:6a:72:07:fe:4e:2e:fe:7a:46:a4:a9:
8e:f7:5a:1e:ae:60:68:b8:d5:fc:2f:2d:55:01:39:
91:e5:98:ed:bf:dd:69:c7:f7:5a:27:a3:90:9f:6e:
8d:3b:54:87:21:91:d5:56:22:8e:99:7b:e7:ae:1b:
bc:a4:cb:5f:c4:dd:15:5a:98:df:13:6f:c2:06:d6:
bd:ea:48:e8:16:1b:b5:23:99:6f:63:4e:c8:11:a4:
66:e7:a9:a1:89:a5:b8:bc:0c:0d:fd:83:10:7a:44:
bf:9e:a8:12:6b:1f:3a:a2:1c:0c:8d:b5:5e:6c:3a:
1d:73:d9:88:4e:02:d1:f1:b3:58:42:cf:61:73:ae:
6b:3c:83:55:60:ef:22:1b:3e:b6:61:99:73:18:10:
6f:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:0D:42:B0:22:F7:1A:B4:92:87:12:E1:C7:6D:FF:48:B2:59:6D:47
X509v3 Authority Key Identifier:
keyid:B2:A8:53:71:E9:2F:39:A2:BE:42:47:60:B0:4E:47:AD:9D:A3:ED:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/f5d730-f8eb-4f80-9a9c-9abe4e6c2be1/1/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/f5d730-f8eb-4f80-9a9c-9abe4e6c2be1/1/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:d4:99:e2:cf:3e:27:7c:b2:56:74:1a:b0:a1:2a:40:2e:87:
e8:09:8a:f9:34:c2:4f:f7:60:42:c3:17:0d:fd:26:e2:cf:83:
0f:87:2c:82:42:af:29:68:2b:af:f9:fc:d0:45:23:46:16:51:
89:19:bd:4e:2b:e3:6c:c1:c9:1b:c2:c3:cc:82:b6:fa:2e:9f:
e1:7c:83:ea:78:c6:f3:6e:d8:35:55:d6:ff:83:b4:f6:f8:24:
4d:9a:1f:10:4c:1a:7c:ed:f2:30:51:8d:e1:69:9c:33:f7:22:
30:c1:58:e6:59:c5:31:e5:dc:6f:41:97:1d:1a:4a:e1:5f:0b:
51:23:ee:fe:5e:2a:0b:7c:a3:15:bf:83:19:cd:11:2a:fb:da:
f8:61:53:79:fc:f8:a4:2c:42:55:68:78:ee:d7:cc:ea:6d:dd:
37:0c:cb:93:06:e7:50:e4:d8:ac:fb:85:c3:cb:1b:c9:05:58:
aa:c0:b8:d7:ca:37:f6:23:fb:d1:8d:dd:3a:b6:65:f8:b4:a1:
66:bd:f2:19:d6:ab:2e:23:5b:1c:b0:8a:8b:ce:6d:0e:0a:d8:
c3:c5:c7:b1:10:12:03:e7:c0:f7:fb:16:c3:0f:a0:1f:23:95:
13:ac:21:f5:2d:a7:96:12:fb:93:79:23:a0:d3:54:90:20:f4:
2c:9b:4e:fc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUp7M4JryZOnB0bKZysEV/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyYTg1MzcxZTkyZjM5YTJiZTQyNDc2MGIwNGU0N2FkOWRh
M2VkM2IwHhcNMjUwODIzMDIwMDE2WhcNMjUwODI0MDIwMDE2WjAzMTEwLwYDVQQD
Eyg4ODBkNDJiMDIyZjcxYWI0OTI4NzEyZTFjNzZkZmY0OGIyNTk2ZDQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnjfKhz7+hIIzP1sLBqz7TnRHtDHE
oc+e4TcrxcZquZqguNIc27wWX8y7J+Ko7mpjcSmdCMBN1vnhV/4LGTB0wNEkafgK
7Q4LMiD6yLiOsPtqlMtYjVje1cRxawwR4wdS8cWv333qWUHp9GVVanIH/k4u/npG
pKmO91oermBouNX8Ly1VATmR5Zjtv91px/daJ6OQn26NO1SHIZHVViKOmXvnrhu8
pMtfxN0VWpjfE2/CBta96kjoFhu1I5lvY07IEaRm56mhiaW4vAwN/YMQekS/nqgS
ax86ohwMjbVebDodc9mITgLR8bNYQs9hc65rPINVYO8iGz62YZlzGBBvgwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIgNQrAi9xq0kocS4cdt/0iyWW1HMB8GA1UdIwQY
MBaAFLKoU3HpLzmivkJHYLBOR62do+07MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3FoVGNla3ZPYUstUWtkZ3NFNUhyWjJqN1RzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi9mNWQ3MzAtZjhlYi00ZjgwLTlhOWMt
OWFiZTRlNmMyYmUxLzEvc3FoVGNla3ZPYUstUWtkZ3NFNUhyWjJqN1RzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZi9mNWQ3MzAtZjhlYi00ZjgwLTlhOWMtOWFiZTRlNmMyYmUx
LzEvc3FoVGNla3ZPYUstUWtkZ3NFNUhyWjJqN1RzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhdSZ4s8+
J3yyVnQasKEqQC6H6AmK+TTCT/dgQsMXDf0m4s+DD4csgkKvKWgrr/n80EUjRhZR
iRm9TivjbMHJG8LDzIK2+i6f4XyD6njG827YNVXW/4O09vgkTZofEEwafO3yMFGN
4WmcM/ciMMFY5lnFMeXcb0GXHRpK4V8LUSPu/l4qC3yjFb+DGc0RKvva+GFTefz4
pCxCVWh47tfM6m3dNwzLkwbnUOTYrPuFw8sbyQVYqsC418o39iP70Y3dOrZl+LSh
Zr3yGdarLiNbHLCKi85tDgrYw8XHsRASA+fA9/sWww+gHyOVE6wh9S2nlhL7k3kj
oNNUkCD0LJtO/A==
-----END CERTIFICATE-----
Generated at Sat Aug 23 11:28:50 2025 by rpki-client