Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/297bd8-beaf-4609-9c60-7474f916db47/1/SqL6b2dw9y2AhLxsGDBYuA6DjXM.mft
File: SqL6b2dw9y2AhLxsGDBYuA6DjXM.mft (raw, json)
Hash identifier: NhIeLgpawDXa9q4Bm8/zlFF46CgzVYqEzi4L70p6Nb4=
Subject key identifier: 32:B8:2B:07:6E:91:D1:DF:13:35:60:DC:BE:74:E1:93:19:22:28:47
Authority key identifier: 4A:A2:FA:6F:67:70:F7:2D:80:84:BC:6C:18:30:58:B8:0E:83:8D:73
Certificate issuer: /CN=4aa2fa6f6770f72d8084bc6c183058b80e838d73
Certificate serial: 019D9818EE6721A342C7FD60179DA7AA60E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SqL6b2dw9y2AhLxsGDBYuA6DjXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/297bd8-beaf-4609-9c60-7474f916db47/1/SqL6b2dw9y2AhLxsGDBYuA6DjXM.mft
Manifest number: 049F
Signing time: Thu 16 Apr 2026 21:01:03 +0000
Manifest this update: Thu 16 Apr 2026 21:01:03 +0000
Manifest next update: Fri 17 Apr 2026 21:01:03 +0000
Files and hashes: 1: SqL6b2dw9y2AhLxsGDBYuA6DjXM.crl (hash: nDSt+MVzUGunIAcS06TC0YujqhUScLs5EvEjN/2AM4g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/297bd8-beaf-4609-9c60-7474f916db47/1/SqL6b2dw9y2AhLxsGDBYuA6DjXM.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/297bd8-beaf-4609-9c60-7474f916db47/1/SqL6b2dw9y2AhLxsGDBYuA6DjXM.mft
rsync://rpki.ripe.net/repository/DEFAULT/SqL6b2dw9y2AhLxsGDBYuA6DjXM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 21:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:18:ee:67:21:a3:42:c7:fd:60:17:9d:a7:aa:60:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4aa2fa6f6770f72d8084bc6c183058b80e838d73
Validity
Not Before: Apr 16 21:01:03 2026 GMT
Not After : Apr 17 21:01:03 2026 GMT
Subject: CN=32b82b076e91d1df133560dcbe74e19319222847
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d5:78:eb:f7:71:7a:c2:5f:c4:79:67:79:24:
72:e3:1d:73:67:f3:5c:70:c1:02:48:95:54:da:83:
56:59:77:11:70:77:57:3c:07:79:76:23:cd:ca:86:
8a:14:3d:b5:b4:dc:b0:7f:6a:fc:c5:03:ef:58:7e:
7c:30:c9:2a:65:a6:99:e8:b3:ab:b1:60:2e:13:63:
3e:e3:34:e6:1c:2c:03:34:7a:fd:38:a6:39:24:f6:
ad:73:48:99:0e:7d:15:49:fc:21:2b:2d:e8:25:51:
b3:3c:47:6d:76:e4:3e:34:35:9f:fe:33:0f:81:2b:
9e:1e:57:4e:11:7d:2b:17:b9:d9:25:7c:ca:34:6f:
0f:11:1b:03:44:cf:11:49:14:6f:cd:31:02:14:26:
b0:00:27:f1:ef:7c:bf:5e:d4:22:37:51:fd:34:11:
0b:89:6d:aa:2c:62:5a:0d:6b:d6:94:d0:bc:99:96:
d1:03:49:42:86:b6:a6:00:b9:dd:2f:f8:1c:6b:05:
d1:59:b1:a8:1a:bc:5f:aa:d8:fd:b7:d8:a0:04:e4:
32:0b:4b:99:88:6f:fa:cd:db:a7:5c:4b:c4:72:cd:
1c:7c:f6:02:c8:bc:03:73:04:bc:09:b4:d8:74:75:
13:ff:92:a3:af:0d:bc:6e:76:1c:3b:dc:9c:ab:12:
04:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:B8:2B:07:6E:91:D1:DF:13:35:60:DC:BE:74:E1:93:19:22:28:47
X509v3 Authority Key Identifier:
keyid:4A:A2:FA:6F:67:70:F7:2D:80:84:BC:6C:18:30:58:B8:0E:83:8D:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SqL6b2dw9y2AhLxsGDBYuA6DjXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/297bd8-beaf-4609-9c60-7474f916db47/1/SqL6b2dw9y2AhLxsGDBYuA6DjXM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/297bd8-beaf-4609-9c60-7474f916db47/1/SqL6b2dw9y2AhLxsGDBYuA6DjXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:67:db:6f:10:5d:28:98:ca:c6:fc:1b:0e:82:9c:03:85:4e:
bc:9c:51:36:83:77:95:2f:81:51:a3:c9:df:db:dc:88:db:13:
7b:f9:6b:ac:09:c1:12:33:85:9d:1d:05:54:7d:db:0c:2f:00:
24:55:10:8c:ad:da:4e:2f:8c:08:7e:c1:c5:3b:49:78:46:68:
38:8c:bf:51:0c:a3:d4:ca:cf:96:e8:9b:e3:f6:55:47:e4:8e:
4d:14:46:0b:fd:b4:5f:cd:54:cf:89:33:b7:72:6b:8f:9a:1e:
8e:1f:7a:12:63:bd:49:40:43:b7:9b:40:d6:8e:83:16:98:00:
13:aa:1d:5d:6a:f9:26:68:11:81:ad:ff:98:f9:47:ba:a1:f8:
f6:00:9e:88:8e:69:0d:60:db:55:77:c1:d7:1c:d6:00:e0:63:
2f:05:b5:49:83:ee:cc:01:49:79:a2:1b:b6:39:e0:e6:db:e2:
64:c3:72:2a:8e:45:db:9c:5d:91:74:de:8f:72:ac:78:dc:95:
6c:c6:68:40:a3:4f:db:dd:5c:b1:51:11:6f:7a:65:a8:db:84:
1b:3b:1f:ea:f4:d0:45:88:22:7d:d3:58:6a:2b:e6:54:0e:ba:
bd:a3:77:22:55:84:e1:d5:51:1f:81:f1:ba:33:a6:13:a0:8c:
26:b7:31:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:07:14 2026 by rpki-client