Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.mft
File: sqvUconMbNnByAJ0KiztUMY0vTs.mft (raw, json)
Hash identifier: Bys9NLuseEUfrbtwArpQK+8dV75E37Gs+/TVS1Y9ggA=
Subject key identifier: C3:3D:FF:38:91:C9:D7:35:6B:7E:FB:1C:0D:74:A3:97:9A:68:3A:1C
Authority key identifier: B2:AB:D4:72:89:CC:6C:D9:C1:C8:02:74:2A:2C:ED:50:C6:34:BD:3B
Certificate issuer: /CN=b2abd47289cc6cd9c1c802742a2ced50c634bd3b
Certificate serial: 019CAC47517CD701927F25FB052EE59A4E69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sqvUconMbNnByAJ0KiztUMY0vTs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.mft
Manifest number: 0A1A
Signing time: Mon 02 Mar 2026 02:01:20 +0000
Manifest this update: Mon 02 Mar 2026 02:01:20 +0000
Manifest next update: Tue 03 Mar 2026 02:01:20 +0000
Files and hashes: 1: sqvUconMbNnByAJ0KiztUMY0vTs.crl (hash: 8Qa9lnnuM9cQEQCs9Q2jF7yO4Mroj2k6hUk8zBQyOes=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.mft
rsync://rpki.ripe.net/repository/DEFAULT/sqvUconMbNnByAJ0KiztUMY0vTs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:47:51:7c:d7:01:92:7f:25:fb:05:2e:e5:9a:4e:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2abd47289cc6cd9c1c802742a2ced50c634bd3b
Validity
Not Before: Mar 2 02:01:20 2026 GMT
Not After : Mar 3 02:01:20 2026 GMT
Subject: CN=c33dff3891c9d7356b7efb1c0d74a3979a683a1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:45:3b:75:55:04:75:c1:2f:e4:86:d8:5b:aa:
71:99:3e:5c:f6:f0:b5:4a:d3:23:92:b5:43:26:43:
cd:c2:af:af:ed:ad:f7:3e:fb:e6:42:ee:5c:18:56:
34:12:0f:bf:ad:3d:46:49:c9:c0:4e:9c:9c:51:9f:
5f:45:38:c2:e5:0b:88:32:eb:5c:c2:0e:3a:ff:f6:
a6:7f:e0:28:42:a5:aa:9f:ab:c3:bb:ef:87:3e:7e:
16:79:b8:14:5d:0f:90:9e:0d:1b:21:ed:57:75:ff:
30:be:0c:2e:ee:2d:2e:02:6a:dc:7f:78:a3:ac:34:
53:1b:0d:f2:bb:15:a3:b5:c3:f2:df:4c:1a:fe:df:
a8:4f:af:b2:b5:92:b8:7b:89:79:e3:d8:21:24:1e:
10:9d:2c:9c:d9:b4:08:42:1c:89:4e:4a:e3:e7:69:
35:7c:77:22:bb:03:43:42:f5:7f:ff:6c:7a:09:69:
e3:6d:da:8f:be:04:59:9e:b7:ee:90:28:f6:4b:13:
20:04:47:4d:99:4c:e1:fc:94:de:cd:27:03:19:2b:
79:57:85:c2:f5:15:4c:c5:33:d6:58:a6:be:74:67:
ad:95:34:84:a5:fe:4e:62:a3:91:8a:dc:d3:94:53:
b0:d2:b7:96:1d:b9:1c:97:30:2f:e4:72:82:9f:68:
96:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:3D:FF:38:91:C9:D7:35:6B:7E:FB:1C:0D:74:A3:97:9A:68:3A:1C
X509v3 Authority Key Identifier:
keyid:B2:AB:D4:72:89:CC:6C:D9:C1:C8:02:74:2A:2C:ED:50:C6:34:BD:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sqvUconMbNnByAJ0KiztUMY0vTs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:2e:39:98:93:0f:e2:8e:40:a5:bb:77:cd:0d:3d:99:91:76:
dc:5d:d7:fa:f6:98:15:60:c3:94:a3:91:40:a0:77:e1:32:e6:
54:e3:ee:35:9a:32:9a:6b:da:b1:38:8f:44:be:d4:12:94:6a:
5e:18:fb:c0:ec:83:f4:a3:75:46:74:ae:c0:1f:4d:20:47:44:
b9:7a:5e:04:e1:1f:b3:a3:f3:4b:eb:8b:ef:13:c3:18:09:29:
6c:d5:c4:af:db:06:03:81:df:70:a2:26:c7:c5:5e:71:97:61:
fb:f0:18:49:d4:3b:3b:6d:b7:60:49:73:fa:85:71:17:99:c8:
d4:65:17:11:96:12:6c:c4:00:ac:c3:b9:55:ac:8c:6d:7c:ef:
2d:ea:7b:7a:60:04:ba:c3:61:db:5d:b0:fc:f8:62:3c:99:7a:
e0:5c:2f:d8:0f:0d:4c:66:b8:6c:16:27:43:d4:92:e9:42:92:
f9:ab:c9:9b:02:b2:18:eb:be:40:f0:3b:b2:1e:f1:e7:3f:76:
89:51:6a:5a:0b:de:05:91:bd:19:d9:f6:b5:fa:62:2d:f2:d1:
37:ba:1a:00:93:58:ba:40:16:be:43:bf:d9:61:92:44:9a:b8:
e7:ac:50:80:1a:db:2a:2b:10:19:c9:11:a0:4a:33:53:39:08:
9d:09:24:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 11:38:25 2026 by rpki-client