Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.mft
File: sqvUconMbNnByAJ0KiztUMY0vTs.mft (raw, json)
Hash identifier: 7tFy6SWvlRLJ7PiNAaOjuXfwCE3o8EICcCYVRqzqIoM=
Subject key identifier: C2:AA:C1:AB:67:A2:53:FD:13:0D:E8:48:AA:E7:64:72:1B:18:59:EB
Authority key identifier: B2:AB:D4:72:89:CC:6C:D9:C1:C8:02:74:2A:2C:ED:50:C6:34:BD:3B
Certificate issuer: /CN=b2abd47289cc6cd9c1c802742a2ced50c634bd3b
Certificate serial: 019D99D05B0C610F65A517EC86142897CF64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sqvUconMbNnByAJ0KiztUMY0vTs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.mft
Manifest number: 0A95
Signing time: Fri 17 Apr 2026 05:01:01 +0000
Manifest this update: Fri 17 Apr 2026 05:01:01 +0000
Manifest next update: Sat 18 Apr 2026 05:01:01 +0000
Files and hashes: 1: sqvUconMbNnByAJ0KiztUMY0vTs.crl (hash: gfIbaHcnWmtxF+Hss/7rLBtor2I3cw8dhuH24Phryng=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.mft
rsync://rpki.ripe.net/repository/DEFAULT/sqvUconMbNnByAJ0KiztUMY0vTs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:5b:0c:61:0f:65:a5:17:ec:86:14:28:97:cf:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2abd47289cc6cd9c1c802742a2ced50c634bd3b
Validity
Not Before: Apr 17 05:01:01 2026 GMT
Not After : Apr 18 05:01:01 2026 GMT
Subject: CN=c2aac1ab67a253fd130de848aae764721b1859eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:8e:e0:28:fd:e8:ab:ea:3b:ac:a1:8f:ed:5b:
18:10:68:7d:d2:f4:ca:a9:46:6d:6b:3a:5a:45:62:
8e:d1:4b:d0:ff:f0:d6:7c:e7:78:88:c8:dd:e8:9c:
ce:e0:06:d2:5b:02:7c:a7:ca:9b:c5:4c:4d:fc:cf:
12:9a:a1:71:9e:a3:2d:9a:00:1c:dc:f1:1a:40:27:
a1:2c:b7:dd:45:f9:b4:c1:3b:27:c6:67:e0:67:bb:
ca:3f:9f:8b:e0:c7:c9:8a:62:35:6f:ec:84:cb:07:
00:cd:7d:d7:ca:ee:05:e6:8c:f1:20:4b:6e:02:74:
50:d1:d4:16:ac:34:ce:8c:a7:c2:59:24:4f:2e:f8:
b0:cd:4f:ac:67:45:48:73:11:68:21:e2:c5:86:dd:
e2:9f:91:8e:b0:24:5b:7c:b0:d3:39:7e:58:44:6d:
17:f0:01:79:01:a4:3b:e6:d6:41:41:79:15:c1:84:
d2:ee:7e:2c:af:27:0f:63:12:91:eb:88:85:0e:05:
17:27:89:10:22:44:bd:78:2f:ad:d0:83:7e:77:ba:
75:46:d7:22:8c:c3:ff:8f:26:77:a3:b7:c8:17:d3:
0a:c6:73:a7:c7:69:93:8a:b2:7b:1c:dc:2f:78:6e:
4f:ec:2a:20:34:6f:e6:d1:f0:ef:fb:09:2d:7c:8c:
12:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:AA:C1:AB:67:A2:53:FD:13:0D:E8:48:AA:E7:64:72:1B:18:59:EB
X509v3 Authority Key Identifier:
keyid:B2:AB:D4:72:89:CC:6C:D9:C1:C8:02:74:2A:2C:ED:50:C6:34:BD:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sqvUconMbNnByAJ0KiztUMY0vTs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:24:b1:d1:2e:07:bd:a3:bd:92:80:e9:77:06:bd:84:a8:3d:
11:9f:f3:72:b2:92:5b:fb:10:6a:81:91:47:4c:04:47:e7:02:
40:5b:a7:76:9c:f0:59:49:dc:38:d8:2c:be:ce:bc:bc:eb:c3:
c4:7a:cf:34:0d:92:fc:c5:6e:b7:ef:e4:35:0a:41:02:36:90:
af:6f:fe:ad:6e:a0:5a:7f:cd:e2:e4:3d:54:57:c5:25:e8:85:
76:da:fc:0a:29:ba:06:34:3b:9f:96:87:40:bc:97:56:16:53:
b0:ca:48:46:84:1c:3a:c8:24:b8:b0:d5:a2:34:ac:3e:01:09:
7f:88:af:8d:02:39:35:f3:6f:c3:9a:a5:83:41:e6:c7:5f:51:
07:78:af:38:80:fb:5b:6f:ac:c6:21:fb:d7:d8:56:d0:c4:a6:
09:c6:92:6a:a1:3b:cc:a8:34:d5:a1:06:8e:70:6a:e4:cd:26:
9c:9b:2a:0b:88:c7:28:99:ac:74:c9:c4:89:38:58:94:19:03:
3e:58:35:ec:3b:ad:72:d7:0a:05:48:6c:a1:cb:12:91:6a:8e:
ac:ea:91:96:e1:42:1b:62:d7:c2:48:0f:71:0f:1d:7b:90:af:
8e:c1:46:a5:bb:d0:25:1d:be:5c:94:ed:51:d8:86:25:0c:d3:
9f:60:29:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 15:20:18 2026 by rpki-client