Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/297bd8-beaf-4609-9c60-7474f916db47/1/SqL6b2dw9y2AhLxsGDBYuA6DjXM.mft
File: SqL6b2dw9y2AhLxsGDBYuA6DjXM.mft (raw, json)
Hash identifier: /lvnF6kMjXjJ/HkNA23jQeqCGd0CuDa5xqxyfjqIVo8=
Subject key identifier: 00:30:93:58:9A:E5:69:A0:F3:3E:18:B1:1A:F9:80:31:E7:66:A7:7D
Authority key identifier: 4A:A2:FA:6F:67:70:F7:2D:80:84:BC:6C:18:30:58:B8:0E:83:8D:73
Certificate issuer: /CN=4aa2fa6f6770f72d8084bc6c183058b80e838d73
Certificate serial: 019CAC7E63E6268A8C2D8E5D56D5A4EF681E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SqL6b2dw9y2AhLxsGDBYuA6DjXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/297bd8-beaf-4609-9c60-7474f916db47/1/SqL6b2dw9y2AhLxsGDBYuA6DjXM.mft
Manifest number: 0425
Signing time: Mon 02 Mar 2026 03:01:29 +0000
Manifest this update: Mon 02 Mar 2026 03:01:29 +0000
Manifest next update: Tue 03 Mar 2026 03:01:29 +0000
Files and hashes: 1: SqL6b2dw9y2AhLxsGDBYuA6DjXM.crl (hash: RuSyrwLqkxtqhTYJXCuQUSiijKrQSNmo+RSKLC/9aew=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/297bd8-beaf-4609-9c60-7474f916db47/1/SqL6b2dw9y2AhLxsGDBYuA6DjXM.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/297bd8-beaf-4609-9c60-7474f916db47/1/SqL6b2dw9y2AhLxsGDBYuA6DjXM.mft
rsync://rpki.ripe.net/repository/DEFAULT/SqL6b2dw9y2AhLxsGDBYuA6DjXM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 03:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:7e:63:e6:26:8a:8c:2d:8e:5d:56:d5:a4:ef:68:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4aa2fa6f6770f72d8084bc6c183058b80e838d73
Validity
Not Before: Mar 2 03:01:29 2026 GMT
Not After : Mar 3 03:01:29 2026 GMT
Subject: CN=003093589ae569a0f33e18b11af98031e766a77d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:5f:a1:34:81:5e:86:dc:71:17:74:8d:ec:73:
c6:b7:08:c3:cc:c3:cb:aa:ce:f7:36:86:b9:f1:e9:
ee:62:33:92:a9:07:14:0f:1a:8f:6c:3a:ee:d8:65:
db:2c:05:3c:59:31:4f:67:69:5d:12:22:42:b4:3f:
14:12:43:7a:57:63:57:6a:00:f8:cd:01:00:67:b4:
64:16:75:d0:a9:f5:91:7e:bc:a5:5d:7e:de:d1:fb:
10:f0:c7:2f:42:61:48:b9:8f:9b:83:3f:4d:a9:18:
dd:c8:1d:52:78:cb:56:4a:c8:3f:69:ad:b7:c8:4d:
e0:af:b6:eb:d4:5b:e9:ed:69:ca:2f:ae:d6:e2:47:
a3:f2:1a:13:5b:24:72:28:d2:5b:ab:de:89:cb:89:
84:88:b2:7f:3b:8b:72:cf:6b:24:47:82:f7:4c:0b:
d0:a2:59:b8:76:60:9b:61:8d:c7:84:a1:5b:81:06:
7b:a2:92:9b:c3:71:51:bc:ee:61:d2:6a:6f:cf:c6:
59:02:48:63:d9:e1:ec:8e:02:01:3c:95:32:ba:f8:
84:3c:10:01:4c:28:07:e3:da:f0:78:74:ee:a8:86:
34:63:57:cf:5c:89:4e:fd:62:54:70:34:c1:1c:c0:
26:24:b2:7e:35:ec:ad:25:13:27:4a:de:ca:a3:93:
ab:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:30:93:58:9A:E5:69:A0:F3:3E:18:B1:1A:F9:80:31:E7:66:A7:7D
X509v3 Authority Key Identifier:
keyid:4A:A2:FA:6F:67:70:F7:2D:80:84:BC:6C:18:30:58:B8:0E:83:8D:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SqL6b2dw9y2AhLxsGDBYuA6DjXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/297bd8-beaf-4609-9c60-7474f916db47/1/SqL6b2dw9y2AhLxsGDBYuA6DjXM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/297bd8-beaf-4609-9c60-7474f916db47/1/SqL6b2dw9y2AhLxsGDBYuA6DjXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:3a:b8:91:83:8b:3a:bf:53:0b:48:02:ff:54:23:9e:9e:83:
b4:29:8c:23:dc:0d:9c:10:60:56:c7:ba:b5:8c:f5:2d:39:06:
a3:b8:25:cb:ed:36:fd:4b:d4:54:d9:96:96:1c:5c:86:cd:ba:
06:80:a0:2d:43:fc:e6:05:21:6f:5b:94:04:7b:e6:56:99:01:
3a:3a:e8:02:75:13:12:33:d9:04:17:20:17:29:8a:f6:7a:f8:
fd:c5:bb:68:36:d1:29:35:d2:88:43:e0:43:71:8c:31:0f:59:
a4:df:91:e5:83:e7:36:f7:04:00:17:52:b0:62:ba:89:a0:2d:
e8:39:a7:61:b7:6c:9c:84:f0:dd:d9:46:62:71:ea:81:d9:a1:
5c:f8:2f:db:15:94:40:15:08:49:a0:2b:c3:ec:0d:bb:74:ec:
57:99:23:55:73:6b:09:47:7e:a5:91:0f:f7:7a:bd:e1:cd:43:
e8:4f:13:9a:9e:a5:22:f9:a1:16:37:fa:53:e0:08:ba:24:35:
0b:a7:5d:de:3d:9d:6a:35:b3:ab:98:13:0f:e4:61:e5:83:1e:
ac:4a:dc:1e:58:d2:da:61:2b:ac:7e:0a:96:34:0f:92:b8:9f:
d7:20:18:9a:0a:b0:f2:3c:3d:83:c0:23:6d:36:fa:8c:e1:bc:
69:e2:94:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 12:39:53 2026 by rpki-client