Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.mft
File:                     SQ25mcpM4ofFySqxZ6UAkCJZuwU.mft (raw, json)
Hash identifier:          jiPD5VgsDuoHR77vSNNOjGVdoay3k+iKGABcPn03xFk=
Subject key identifier:   9D:7C:34:19:AE:BD:A1:86:E3:46:BC:95:F0:6D:1C:49:46:F6:32:7C
Authority key identifier: 49:0D:B9:99:CA:4C:E2:87:C5:C9:2A:B1:67:A5:00:90:22:59:BB:05
Certificate issuer:       /CN=490db999ca4ce287c5c92ab167a500902259bb05
Certificate serial:       019CACB48CF7A220FF39C16F3F250CE7547C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/SQ25mcpM4ofFySqxZ6UAkCJZuwU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.mft
Manifest number:          1849
Signing time:             Mon 02 Mar 2026 04:00:39 +0000
Manifest this update:     Mon 02 Mar 2026 04:00:39 +0000
Manifest next update:     Tue 03 Mar 2026 04:00:39 +0000
Files and hashes:         1: SQ25mcpM4ofFySqxZ6UAkCJZuwU.crl (hash: R4hZ5WkelDRAjl84qD5oQagvpVt0kudDQQU2U6GdMQY=)
                          2: hAZrKewTVxZT3GF5DqzKsU9bNKo.roa (hash: fsGaTWUHmLGtuoOa159GIKQVUnBG8uk4RWTcKenk10M=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/SQ25mcpM4ofFySqxZ6UAkCJZuwU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 03 Mar 2026 04:00:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ac:b4:8c:f7:a2:20:ff:39:c1:6f:3f:25:0c:e7:54:7c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=490db999ca4ce287c5c92ab167a500902259bb05
        Validity
            Not Before: Mar  2 04:00:39 2026 GMT
            Not After : Mar  3 04:00:39 2026 GMT
        Subject: CN=9d7c3419aebda186e346bc95f06d1c4946f6327c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e6:89:e4:9e:b3:02:92:5e:77:f4:03:66:5c:e3:
                    c1:dd:41:ac:cf:9e:f8:c5:95:e9:34:5e:4c:7c:df:
                    c0:80:5d:47:0b:d6:5b:fa:6a:41:29:03:a5:08:0a:
                    e4:38:d6:c4:d5:75:8a:b6:74:54:85:6b:ec:33:fa:
                    07:6b:7e:3c:e8:23:c0:3a:47:9a:f3:a7:e3:57:82:
                    4a:d9:7a:42:84:74:e0:1c:8a:f4:64:fe:0c:d6:8c:
                    5b:63:7b:34:43:ac:93:05:bb:aa:4d:39:94:b0:2a:
                    e3:ef:5f:72:b1:a5:91:fd:44:e7:f0:79:01:fb:c4:
                    b2:32:98:c0:28:ca:9a:b1:9c:68:8f:85:cd:e9:5e:
                    c6:83:f2:47:9a:c0:44:aa:b9:38:bf:d8:4c:43:ae:
                    3d:90:6e:f1:20:aa:93:e6:a8:da:eb:7f:57:34:c9:
                    c4:c4:da:cb:79:14:99:05:9b:a7:cd:46:10:4b:37:
                    fb:b0:e8:2f:67:28:bf:f9:47:ae:d5:48:06:9e:3f:
                    af:da:1f:c8:0c:74:af:f2:b0:1f:a6:61:41:83:0f:
                    43:a6:d3:f1:e7:58:5b:58:55:2d:87:39:de:ea:8c:
                    59:71:3f:e3:ff:0e:57:51:15:1d:c6:40:51:36:29:
                    0b:76:97:f3:c4:ec:5c:9a:cb:d4:ba:e6:ff:70:2b:
                    de:ad
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9D:7C:34:19:AE:BD:A1:86:E3:46:BC:95:F0:6D:1C:49:46:F6:32:7C
            X509v3 Authority Key Identifier:
                keyid:49:0D:B9:99:CA:4C:E2:87:C5:C9:2A:B1:67:A5:00:90:22:59:BB:05

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SQ25mcpM4ofFySqxZ6UAkCJZuwU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         37:e3:49:27:67:2c:6c:51:86:99:4c:dd:8e:5a:3f:b5:4a:9c:
         c2:ed:57:01:8e:c5:ac:32:69:f2:08:85:34:72:ba:eb:bf:a5:
         a7:d9:be:c8:8b:e7:c1:3b:d0:2f:e1:cc:ef:65:08:e6:27:6f:
         3c:5f:cc:ad:8e:35:5d:38:41:5e:cf:53:e2:81:cd:a5:0f:89:
         87:b5:14:b4:be:bc:3a:79:f0:3b:02:65:dc:35:cc:39:b0:29:
         19:35:f5:a2:11:25:8d:4a:c1:25:8a:10:19:83:ce:49:a9:85:
         3c:83:b7:e7:61:30:9f:5c:a4:38:b1:43:5c:14:80:c3:05:3e:
         41:28:a4:cc:96:30:32:56:7b:4f:bb:e3:11:28:82:3b:49:1d:
         bd:e3:1b:d2:1d:c2:bd:b2:47:87:57:63:c2:ac:8a:72:c4:7c:
         8a:27:43:9d:2f:c7:2b:36:a0:8a:6a:da:f8:f8:e9:95:b9:f7:
         ce:a8:8f:d2:4b:6f:68:0d:72:e9:af:2b:c0:5b:b4:b3:4d:5d:
         e7:66:61:9b:dc:c6:f8:85:2d:5d:82:fd:4d:8f:46:aa:43:75:
         64:f7:31:40:4e:39:77:ff:10:88:d7:30:b3:82:33:c6:5d:70:
         68:3c:c7:5f:f0:6a:2f:97:72:97:ef:a1:8c:58:3f:16:e0:34:
         80:59:a2:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 15:00:13 2026 by rpki-client