Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.mft
File: SQ25mcpM4ofFySqxZ6UAkCJZuwU.mft (raw, json)
Hash identifier: jiPD5VgsDuoHR77vSNNOjGVdoay3k+iKGABcPn03xFk=
Subject key identifier: 9D:7C:34:19:AE:BD:A1:86:E3:46:BC:95:F0:6D:1C:49:46:F6:32:7C
Authority key identifier: 49:0D:B9:99:CA:4C:E2:87:C5:C9:2A:B1:67:A5:00:90:22:59:BB:05
Certificate issuer: /CN=490db999ca4ce287c5c92ab167a500902259bb05
Certificate serial: 019CACB48CF7A220FF39C16F3F250CE7547C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SQ25mcpM4ofFySqxZ6UAkCJZuwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.mft
Manifest number: 1849
Signing time: Mon 02 Mar 2026 04:00:39 +0000
Manifest this update: Mon 02 Mar 2026 04:00:39 +0000
Manifest next update: Tue 03 Mar 2026 04:00:39 +0000
Files and hashes: 1: SQ25mcpM4ofFySqxZ6UAkCJZuwU.crl (hash: R4hZ5WkelDRAjl84qD5oQagvpVt0kudDQQU2U6GdMQY=)
2: hAZrKewTVxZT3GF5DqzKsU9bNKo.roa (hash: fsGaTWUHmLGtuoOa159GIKQVUnBG8uk4RWTcKenk10M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.mft
rsync://rpki.ripe.net/repository/DEFAULT/SQ25mcpM4ofFySqxZ6UAkCJZuwU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 04:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b4:8c:f7:a2:20:ff:39:c1:6f:3f:25:0c:e7:54:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=490db999ca4ce287c5c92ab167a500902259bb05
Validity
Not Before: Mar 2 04:00:39 2026 GMT
Not After : Mar 3 04:00:39 2026 GMT
Subject: CN=9d7c3419aebda186e346bc95f06d1c4946f6327c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:89:e4:9e:b3:02:92:5e:77:f4:03:66:5c:e3:
c1:dd:41:ac:cf:9e:f8:c5:95:e9:34:5e:4c:7c:df:
c0:80:5d:47:0b:d6:5b:fa:6a:41:29:03:a5:08:0a:
e4:38:d6:c4:d5:75:8a:b6:74:54:85:6b:ec:33:fa:
07:6b:7e:3c:e8:23:c0:3a:47:9a:f3:a7:e3:57:82:
4a:d9:7a:42:84:74:e0:1c:8a:f4:64:fe:0c:d6:8c:
5b:63:7b:34:43:ac:93:05:bb:aa:4d:39:94:b0:2a:
e3:ef:5f:72:b1:a5:91:fd:44:e7:f0:79:01:fb:c4:
b2:32:98:c0:28:ca:9a:b1:9c:68:8f:85:cd:e9:5e:
c6:83:f2:47:9a:c0:44:aa:b9:38:bf:d8:4c:43:ae:
3d:90:6e:f1:20:aa:93:e6:a8:da:eb:7f:57:34:c9:
c4:c4:da:cb:79:14:99:05:9b:a7:cd:46:10:4b:37:
fb:b0:e8:2f:67:28:bf:f9:47:ae:d5:48:06:9e:3f:
af:da:1f:c8:0c:74:af:f2:b0:1f:a6:61:41:83:0f:
43:a6:d3:f1:e7:58:5b:58:55:2d:87:39:de:ea:8c:
59:71:3f:e3:ff:0e:57:51:15:1d:c6:40:51:36:29:
0b:76:97:f3:c4:ec:5c:9a:cb:d4:ba:e6:ff:70:2b:
de:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:7C:34:19:AE:BD:A1:86:E3:46:BC:95:F0:6D:1C:49:46:F6:32:7C
X509v3 Authority Key Identifier:
keyid:49:0D:B9:99:CA:4C:E2:87:C5:C9:2A:B1:67:A5:00:90:22:59:BB:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SQ25mcpM4ofFySqxZ6UAkCJZuwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:e3:49:27:67:2c:6c:51:86:99:4c:dd:8e:5a:3f:b5:4a:9c:
c2:ed:57:01:8e:c5:ac:32:69:f2:08:85:34:72:ba:eb:bf:a5:
a7:d9:be:c8:8b:e7:c1:3b:d0:2f:e1:cc:ef:65:08:e6:27:6f:
3c:5f:cc:ad:8e:35:5d:38:41:5e:cf:53:e2:81:cd:a5:0f:89:
87:b5:14:b4:be:bc:3a:79:f0:3b:02:65:dc:35:cc:39:b0:29:
19:35:f5:a2:11:25:8d:4a:c1:25:8a:10:19:83:ce:49:a9:85:
3c:83:b7:e7:61:30:9f:5c:a4:38:b1:43:5c:14:80:c3:05:3e:
41:28:a4:cc:96:30:32:56:7b:4f:bb:e3:11:28:82:3b:49:1d:
bd:e3:1b:d2:1d:c2:bd:b2:47:87:57:63:c2:ac:8a:72:c4:7c:
8a:27:43:9d:2f:c7:2b:36:a0:8a:6a:da:f8:f8:e9:95:b9:f7:
ce:a8:8f:d2:4b:6f:68:0d:72:e9:af:2b:c0:5b:b4:b3:4d:5d:
e7:66:61:9b:dc:c6:f8:85:2d:5d:82:fd:4d:8f:46:aa:43:75:
64:f7:31:40:4e:39:77:ff:10:88:d7:30:b3:82:33:c6:5d:70:
68:3c:c7:5f:f0:6a:2f:97:72:97:ef:a1:8c:58:3f:16:e0:34:
80:59:a2:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 15:00:13 2026 by rpki-client