Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.mft
File: SQsh95ueovPQQjdHFIZ9EkAZlds.mft (raw, json)
Hash identifier: OTZJrrLNocuq//Twz4XmWqZWPVT/S6F+LlqD4J94lNA=
Subject key identifier: 32:0C:08:8B:C0:20:8F:2C:2A:89:74:D9:23:1C:80:05:55:A0:03:39
Authority key identifier: 49:0B:21:F7:9B:9E:A2:F3:D0:42:37:47:14:86:7D:12:40:19:95:DB
Certificate issuer: /CN=490b21f79b9ea2f3d042374714867d12401995db
Certificate serial: 019A5C7A8EAED9F5487B554C9924A50C4F93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SQsh95ueovPQQjdHFIZ9EkAZlds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.mft
Manifest number: 1718
Signing time: Fri 07 Nov 2025 04:02:06 +0000
Manifest this update: Fri 07 Nov 2025 04:02:06 +0000
Manifest next update: Sat 08 Nov 2025 04:02:06 +0000
Files and hashes: 1: NApugC31V5WK63Ny4-racw1twJY.roa (hash: bVtlfHYisvNWIzitGovNgNsC2+/TaBl7fpGIvEq6gaQ=)
2: OI4m2d90B9xfmwLaDwu0RLIhyHI.roa (hash: 1tPpSMdOXEc4uC4QEVA58ahEFZcfSMXztb+GTkRhAk8=)
3: SQsh95ueovPQQjdHFIZ9EkAZlds.crl (hash: gE7offPOSWb3ROeJVym7sh8s7UPvO119qTpO5pVS/9I=)
4: i4v6AZ8AjCY-DaijxXBLxpCWr-o.roa (hash: IzqUiUJUiq+h6Lhm9373nMFr5yy8oOrsxUoRI4smlK0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.mft
rsync://rpki.ripe.net/repository/DEFAULT/SQsh95ueovPQQjdHFIZ9EkAZlds.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Nov 2025 04:02:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:5c:7a:8e:ae:d9:f5:48:7b:55:4c:99:24:a5:0c:4f:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=490b21f79b9ea2f3d042374714867d12401995db
Validity
Not Before: Nov 7 04:02:06 2025 GMT
Not After : Nov 8 04:02:06 2025 GMT
Subject: CN=320c088bc0208f2c2a8974d9231c800555a00339
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:6d:2c:84:a1:e6:8c:69:4c:4a:1b:f0:d5:78:
5d:37:66:83:f3:16:3d:bc:76:f9:77:7d:c7:f4:6b:
67:65:0b:b1:42:76:2b:34:c7:4c:fa:6c:3e:02:62:
95:dd:c8:0d:69:e3:76:e6:c4:5f:75:f9:c0:3c:dd:
ea:a3:14:85:8c:34:90:76:ca:6f:df:f8:15:27:72:
bd:93:49:8f:86:9c:60:cc:65:2a:55:e5:6d:17:8a:
cf:c1:c4:cb:24:e7:c0:63:15:21:e1:b7:21:2c:1f:
51:ff:80:e9:8a:34:8c:e1:ad:e7:54:88:29:be:a3:
84:3a:12:71:8a:78:82:3a:44:19:a3:6d:59:e0:1b:
95:69:b2:8e:16:3c:ce:47:6c:d2:e7:b6:64:02:3d:
d9:14:39:94:71:eb:ea:1e:2c:fb:50:96:30:d9:3c:
50:cd:75:0d:29:84:c6:76:3e:96:45:a5:cb:89:ae:
d0:d1:b3:08:10:cb:87:33:be:15:1f:72:41:e1:a8:
d6:2f:aa:56:29:db:24:cb:3e:80:90:4c:45:c1:9d:
55:00:cd:a7:11:0a:0b:1c:5e:18:ab:32:73:d5:30:
43:cb:cf:c2:a5:07:89:75:fe:fa:cf:e5:b9:f8:fc:
61:ed:c3:a3:be:e3:2f:ed:3c:2a:fd:79:1d:a3:8d:
87:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:0C:08:8B:C0:20:8F:2C:2A:89:74:D9:23:1C:80:05:55:A0:03:39
X509v3 Authority Key Identifier:
keyid:49:0B:21:F7:9B:9E:A2:F3:D0:42:37:47:14:86:7D:12:40:19:95:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SQsh95ueovPQQjdHFIZ9EkAZlds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:f4:dc:35:4a:7a:12:1e:44:9b:16:1e:24:a4:60:91:a7:4d:
8c:e1:c1:4e:17:85:a3:64:92:55:3d:b4:22:3e:ad:4a:87:f4:
cb:b0:cf:15:8f:64:85:b8:6d:dc:93:64:9f:4b:82:17:62:1d:
89:da:ce:64:67:f8:57:9c:d2:34:87:a0:1e:e2:c2:c6:56:86:
68:ba:a1:03:30:dd:4b:10:df:c1:bc:a3:8a:2f:d3:cb:14:b6:
cd:c0:b4:20:a6:78:45:b2:4a:6c:57:9d:0b:01:fe:1e:5b:73:
45:48:74:8a:49:2a:65:54:61:5e:c6:31:7a:1b:1f:7d:e6:f8:
71:a4:a0:b3:a3:67:30:dd:10:e1:35:dc:6c:95:f3:48:cb:69:
bd:0b:19:d9:1b:c7:10:3e:9d:34:ec:7a:fa:2c:15:43:7e:37:
29:e7:17:e6:b7:74:5c:db:1c:0d:b3:fc:4b:81:c2:83:b0:38:
74:ad:c4:dc:eb:18:d0:e1:fe:e1:15:7e:68:83:e7:53:4b:e5:
80:be:66:b6:74:92:4f:65:9f:3d:27:e4:b2:9b:99:4b:13:b5:
70:25:7f:65:e1:88:62:1b:fa:d4:31:66:a1:06:d5:11:65:30:
43:1b:42:25:b3:3c:b6:f1:08:08:b7:4c:84:29:38:f6:0e:67:
a4:f7:53:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 7 14:00:59 2025 by rpki-client