Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.mft
File: SQ25mcpM4ofFySqxZ6UAkCJZuwU.mft (raw, json)
Hash identifier: a8S3UMNna0b9/F8aPlUG/Z2vpK54h7t5IOqClDbEJ50=
Subject key identifier: 3E:7A:44:D5:3F:11:F5:DD:60:4C:1F:4A:BD:73:D4:CA:27:F3:32:55
Authority key identifier: 49:0D:B9:99:CA:4C:E2:87:C5:C9:2A:B1:67:A5:00:90:22:59:BB:05
Certificate issuer: /CN=490db999ca4ce287c5c92ab167a500902259bb05
Certificate serial: 019A4E18BD3B81F6ED126520DE177D61A639
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SQ25mcpM4ofFySqxZ6UAkCJZuwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.mft
Manifest number: 170E
Signing time: Tue 04 Nov 2025 09:00:35 +0000
Manifest this update: Tue 04 Nov 2025 09:00:35 +0000
Manifest next update: Wed 05 Nov 2025 09:00:35 +0000
Files and hashes: 1: CqiCeQuNX5qYQWUphyM9iUBKOh4.roa (hash: RxNADbHHkDaXqyxPAae3UN8wvqfkoDaWlyxd0mzE4zw=)
2: SQ25mcpM4ofFySqxZ6UAkCJZuwU.crl (hash: GpCdUciYlWNbhmw3vcCXLZDLMZbqsqJ4yQHr/2jwBy4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.mft
rsync://rpki.ripe.net/repository/DEFAULT/SQ25mcpM4ofFySqxZ6UAkCJZuwU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:18:bd:3b:81:f6:ed:12:65:20:de:17:7d:61:a6:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=490db999ca4ce287c5c92ab167a500902259bb05
Validity
Not Before: Nov 4 09:00:35 2025 GMT
Not After : Nov 5 09:00:35 2025 GMT
Subject: CN=3e7a44d53f11f5dd604c1f4abd73d4ca27f33255
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:63:f0:2e:21:9b:76:e8:b7:43:d5:75:df:17:
bd:94:45:5b:f3:6d:2f:d4:d7:db:86:4f:ec:85:64:
67:e3:d9:cb:da:37:8e:a2:05:8f:78:3e:a8:85:8a:
db:dd:09:f3:5c:cd:38:54:b1:a2:70:49:cf:97:d6:
ce:93:9d:e9:e0:1d:e2:cf:1f:f4:8a:9e:20:30:a8:
79:72:7a:d5:81:43:bf:80:9c:b3:b2:06:8d:76:87:
4e:43:18:34:23:79:a5:0e:50:0f:56:ec:4c:2b:ff:
8a:d7:82:b7:56:96:ee:1e:18:1f:c3:a2:04:d4:0d:
62:4c:ee:5d:3d:5d:b2:7a:58:57:f2:c8:ee:9c:42:
09:e4:7d:69:d3:e4:d5:80:40:35:da:f9:57:ec:80:
ae:66:d0:ff:19:fc:ac:a6:79:f2:73:04:2d:e7:6c:
2d:be:27:96:32:d6:3a:f0:70:dc:82:7d:ab:ac:81:
4b:89:e2:70:0c:23:f5:dd:9e:76:82:1a:ed:7f:43:
b4:70:0f:2c:c3:c3:3c:59:22:b5:e8:50:0a:82:ab:
12:5b:0a:29:6a:64:a8:aa:98:74:d1:92:b6:b0:48:
ce:cf:85:c3:9b:9e:ac:9f:88:47:0e:a9:c3:ff:79:
1d:3d:f2:b4:e0:5f:4d:27:01:5d:5a:03:c4:7a:48:
22:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:7A:44:D5:3F:11:F5:DD:60:4C:1F:4A:BD:73:D4:CA:27:F3:32:55
X509v3 Authority Key Identifier:
keyid:49:0D:B9:99:CA:4C:E2:87:C5:C9:2A:B1:67:A5:00:90:22:59:BB:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SQ25mcpM4ofFySqxZ6UAkCJZuwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:10:14:40:95:0e:2e:c7:9e:ce:ce:4f:d1:c3:50:3a:64:3f:
be:a0:cc:2e:0a:cb:c8:84:44:aa:ad:9a:73:76:51:98:83:4c:
12:98:c7:a1:66:a7:57:d4:03:99:10:45:b8:b9:ef:98:10:bd:
02:83:e6:b3:bc:94:06:65:b9:65:a9:1a:db:d2:56:c0:a2:7f:
c3:d7:1b:b6:37:25:bd:e9:16:18:96:0a:98:c9:f1:4a:35:ce:
d8:60:07:72:27:22:81:59:46:c8:83:2e:18:34:49:6b:5f:7c:
44:e2:fe:f5:f5:8b:ce:0f:d5:ee:b8:86:0c:99:d8:e0:6b:9d:
40:97:7b:6c:94:f2:b2:c1:74:fb:c4:63:be:7e:0b:ac:58:63:
1f:e4:38:5e:26:84:05:7d:19:f6:3f:89:6b:53:9d:7e:90:45:
be:c6:88:ab:04:f4:81:76:93:e4:fa:51:51:ef:c7:e6:0e:60:
a1:bc:cb:c4:10:48:26:88:ea:bc:22:6f:00:f0:78:f9:45:ce:
8a:98:3c:4f:70:72:9f:a2:26:d9:ae:43:b6:62:c6:d8:43:30:
a7:17:4e:22:31:e2:3d:a3:42:e9:19:c6:e6:8d:b1:35:1b:4f:
7d:7a:9b:c8:a6:db:87:2f:b5:a4:d6:1e:af:fc:fa:a0:74:87:
b2:65:c8:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 10:52:29 2025 by rpki-client