Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.mft
File: SQsh95ueovPQQjdHFIZ9EkAZlds.mft (raw, json)
Hash identifier: NlOo6q+BrKinFPiEQfll06xukQD6YDI+K/EpYVfAqPw=
Subject key identifier: 4D:23:07:5D:8D:BA:05:E4:A2:22:7B:DE:AA:31:54:37:85:E4:0C:15
Authority key identifier: 49:0B:21:F7:9B:9E:A2:F3:D0:42:37:47:14:86:7D:12:40:19:95:DB
Certificate issuer: /CN=490b21f79b9ea2f3d042374714867d12401995db
Certificate serial: 019D35D1AEE393A56B63C11396A11B344716
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SQsh95ueovPQQjdHFIZ9EkAZlds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.mft
Manifest number: 1894
Signing time: Sat 28 Mar 2026 19:00:27 +0000
Manifest this update: Sat 28 Mar 2026 19:00:27 +0000
Manifest next update: Sun 29 Mar 2026 19:00:27 +0000
Files and hashes: 1: OsHfm5IcRp6wCajw-NE1iWNH7Z8.roa (hash: oS3FUlduEB7YSg+361aWK05LocqnWlc3lIUtH4BZyko=)
2: QQeZJrwl_4NJIISgArACAVq6L0o.roa (hash: uh1KpLqwgaZj2AcvOxxyx2dRcs//e4c0XtE2TUfZonY=)
3: SQsh95ueovPQQjdHFIZ9EkAZlds.crl (hash: mAXv6Py+3hYS/3kUkOQaQJSyE29cYu6A1cbZuQ40peE=)
4: Z4RE0ETdC4xhk1FbbundGTGGRB8.roa (hash: qQ3AizCsruyzTMQNiKoa4LuCo6aARO1PFZyPx/nGISA=)
5: ZmfnOd4CDL5CJbgzX0IFfaCpn_I.roa (hash: r+ACJr/bLBpfF1nAJ7m58XKQpbM78W0wGzauIYTi2V8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.mft
rsync://rpki.ripe.net/repository/DEFAULT/SQsh95ueovPQQjdHFIZ9EkAZlds.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 13:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:35:d1:ae:e3:93:a5:6b:63:c1:13:96:a1:1b:34:47:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=490b21f79b9ea2f3d042374714867d12401995db
Validity
Not Before: Mar 28 19:00:27 2026 GMT
Not After : Mar 29 19:00:27 2026 GMT
Subject: CN=4d23075d8dba05e4a2227bdeaa31543785e40c15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:3a:ed:84:63:b3:58:d4:72:3e:de:c4:2a:40:
7e:33:bc:3a:40:1f:09:83:99:69:13:f5:94:8c:98:
05:68:f6:5e:78:f3:ea:ee:5f:c9:74:d3:df:39:8c:
ea:c0:00:04:38:a2:31:6c:5a:b0:67:c6:ac:e9:9f:
9e:c7:1d:00:bd:d5:f3:35:1f:3b:15:85:58:9f:c4:
45:bb:5c:09:a9:0d:d3:d4:7e:4b:25:b4:9d:ce:73:
51:0e:4a:47:a5:9b:c1:53:03:d2:be:91:4e:e3:85:
b1:96:c6:ca:a0:c0:ad:da:ce:60:e2:71:a4:55:20:
f3:18:23:32:21:2b:87:82:9c:01:13:43:4b:98:41:
a1:cb:d8:4a:e3:4a:6f:4f:85:61:44:09:a7:7f:e1:
14:3f:08:8c:38:bf:5b:55:fc:50:1e:21:7b:18:3a:
b5:e8:77:e3:5d:54:29:0f:1e:3f:93:a6:c8:f9:3d:
4a:fa:e0:d0:93:3c:fc:ca:15:9b:0c:65:21:53:82:
53:4e:47:40:01:5d:18:02:6a:74:a2:fd:0c:29:38:
da:87:0b:d8:bd:45:07:7b:f0:02:72:da:c3:13:d5:
8b:eb:57:70:22:f4:52:9f:1a:de:8e:bd:c1:74:7c:
34:cf:e0:c6:16:07:7d:23:39:be:32:77:28:70:59:
36:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:23:07:5D:8D:BA:05:E4:A2:22:7B:DE:AA:31:54:37:85:E4:0C:15
X509v3 Authority Key Identifier:
keyid:49:0B:21:F7:9B:9E:A2:F3:D0:42:37:47:14:86:7D:12:40:19:95:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SQsh95ueovPQQjdHFIZ9EkAZlds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:76:ce:07:e8:79:58:a4:97:c0:e3:71:81:76:72:af:5d:02:
d6:c0:51:59:3a:8e:0c:c5:fb:af:7f:db:65:de:c5:95:00:fd:
7f:d5:a6:81:9c:f4:94:76:d6:ce:09:79:3b:d3:37:1f:50:82:
df:88:79:fd:61:95:4d:b1:81:ad:c0:8e:a7:d2:aa:f5:70:8a:
92:07:fb:67:25:d8:44:a4:7b:42:48:a4:0e:3d:98:6f:ec:bd:
2d:ec:25:f0:29:0a:b9:85:5a:bb:1e:06:82:6c:1d:63:b6:90:
85:6c:e6:b3:d4:a1:8e:3c:cd:51:fa:95:fa:c3:48:7b:77:9b:
dc:23:21:8b:cd:06:9f:95:06:50:99:7a:1e:66:0c:0c:e5:c5:
d9:16:0d:fa:a3:f3:6e:5c:35:23:04:d8:d8:e4:d6:39:4b:be:
db:da:24:c3:d2:61:ee:51:4f:d6:3a:c0:45:97:11:6b:dc:70:
84:ff:10:f2:44:0f:a9:f9:ad:cf:c4:8e:52:54:cc:71:5f:9e:
a1:dd:92:f4:ed:64:09:6b:ae:4a:20:d4:df:eb:92:fe:3c:9d:
0a:ad:91:87:e7:c3:37:e4:a2:a4:cd:b9:f5:42:8a:66:20:98:
d2:6b:89:e7:c7:50:a1:15:27:7e:c5:df:3b:e1:96:c4:a3:c3:
00:e7:81:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 21:44:45 2026 by rpki-client