Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.mft
File: SQsh95ueovPQQjdHFIZ9EkAZlds.mft (raw, json)
Hash identifier: bRPH/XYIYZeUWfUIlz38vIk0jyfY/HZqVBq19iOy+Oc=
Subject key identifier: F7:CE:F1:6A:1A:49:5B:C2:CD:92:3D:02:1D:9F:98:B1:66:DA:9C:73
Authority key identifier: 49:0B:21:F7:9B:9E:A2:F3:D0:42:37:47:14:86:7D:12:40:19:95:DB
Certificate issuer: /CN=490b21f79b9ea2f3d042374714867d12401995db
Certificate serial: 019D33E3F4F97278DA2BFB8DEB287DA55C44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SQsh95ueovPQQjdHFIZ9EkAZlds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.mft
Manifest number: 1893
Signing time: Sat 28 Mar 2026 10:01:10 +0000
Manifest this update: Sat 28 Mar 2026 10:01:10 +0000
Manifest next update: Sun 29 Mar 2026 10:01:10 +0000
Files and hashes: 1: OsHfm5IcRp6wCajw-NE1iWNH7Z8.roa (hash: oS3FUlduEB7YSg+361aWK05LocqnWlc3lIUtH4BZyko=)
2: QQeZJrwl_4NJIISgArACAVq6L0o.roa (hash: uh1KpLqwgaZj2AcvOxxyx2dRcs//e4c0XtE2TUfZonY=)
3: SQsh95ueovPQQjdHFIZ9EkAZlds.crl (hash: LeP+ZGxOuoOAPe83gJueriuuRJoWK+ujNkS5ErZ29hs=)
4: Z4RE0ETdC4xhk1FbbundGTGGRB8.roa (hash: qQ3AizCsruyzTMQNiKoa4LuCo6aARO1PFZyPx/nGISA=)
5: ZmfnOd4CDL5CJbgzX0IFfaCpn_I.roa (hash: r+ACJr/bLBpfF1nAJ7m58XKQpbM78W0wGzauIYTi2V8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.mft
rsync://rpki.ripe.net/repository/DEFAULT/SQsh95ueovPQQjdHFIZ9EkAZlds.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 10:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:33:e3:f4:f9:72:78:da:2b:fb:8d:eb:28:7d:a5:5c:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=490b21f79b9ea2f3d042374714867d12401995db
Validity
Not Before: Mar 28 10:01:10 2026 GMT
Not After : Mar 29 10:01:10 2026 GMT
Subject: CN=f7cef16a1a495bc2cd923d021d9f98b166da9c73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:c2:eb:81:ee:d2:18:63:5e:ed:65:9f:3f:72:
33:1c:1c:c7:fb:b3:10:b7:8d:a6:df:e3:73:d4:a2:
4b:da:96:26:7b:92:fd:9f:0c:f5:ec:1a:38:c3:ff:
37:e8:43:72:3d:82:02:a2:53:c5:af:bf:f4:10:61:
ea:11:7b:1e:c2:a5:d0:61:23:fb:83:40:1b:77:2e:
e1:3c:48:ab:bf:a4:d9:5f:82:25:ef:05:3c:cc:39:
0d:67:dc:64:21:e1:ad:4b:74:1c:e6:ba:d0:f9:1d:
e3:5c:a4:dc:69:cc:ef:62:27:95:97:48:d1:94:a1:
65:17:11:f8:90:7e:c9:e0:b6:3b:ac:15:3c:00:0e:
7b:75:d3:6d:2b:06:8f:2c:74:34:60:21:43:bb:cd:
f3:a2:82:c4:15:96:93:ce:18:94:a3:9c:9c:d1:42:
97:e5:0f:39:10:58:63:de:8b:0a:ef:1c:0d:ee:bc:
91:68:7b:10:25:76:a8:3e:eb:1f:11:4f:66:0c:07:
b1:0b:f5:81:12:30:e3:0a:7d:85:6b:3e:91:a7:51:
6c:b7:e4:9f:d9:53:c8:71:6b:5f:8b:75:fa:68:5b:
a4:ea:18:6e:b2:52:dd:bc:81:f9:b5:68:79:d1:aa:
87:84:0f:56:26:75:f5:a4:07:e3:87:7f:7d:d0:ca:
35:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:CE:F1:6A:1A:49:5B:C2:CD:92:3D:02:1D:9F:98:B1:66:DA:9C:73
X509v3 Authority Key Identifier:
keyid:49:0B:21:F7:9B:9E:A2:F3:D0:42:37:47:14:86:7D:12:40:19:95:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SQsh95ueovPQQjdHFIZ9EkAZlds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:1b:be:0b:a3:05:34:4f:23:48:ce:4f:3c:a7:b1:73:89:17:
28:7e:cd:30:21:60:e2:0a:e1:be:ea:cf:08:b1:3b:27:90:fc:
e7:ea:4f:7b:c2:78:05:1d:77:e9:08:e0:76:25:8b:89:12:ad:
0e:b8:60:9c:fd:12:19:60:f4:dd:59:c2:63:ee:03:34:0d:5d:
f3:c2:a0:aa:c2:3a:d9:01:4e:2d:cc:65:eb:b8:50:96:02:5e:
8a:55:13:45:05:b2:c3:08:38:e0:c3:c2:68:79:c0:4c:2f:f2:
ce:8e:b7:e8:ba:90:6e:7b:95:b8:7a:ce:55:ba:7c:e4:d6:ca:
5c:25:1e:96:9d:e9:43:be:44:ac:10:c4:4e:a2:5b:22:e0:7e:
e5:0a:a0:2f:a2:43:d4:6f:af:42:31:dd:6f:b9:a3:1a:fc:9c:
5f:ff:15:fc:c7:4c:86:38:dd:53:b4:5b:06:62:fb:37:7a:07:
ae:ec:bc:fc:44:44:52:40:68:b1:a8:76:01:91:36:e0:d2:c8:
e0:79:51:9f:7f:e7:7f:ad:3a:09:cd:46:c8:9d:10:df:8b:fe:
4e:6b:f9:5f:c1:c7:00:b0:ab:ca:2c:0a:1b:f6:24:9e:4f:01:
7a:ef:8b:03:db:db:bc:a7:eb:14:54:fc:6b:5c:e9:cc:ab:0f:
7a:f6:d5:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 20:11:11 2026 by rpki-client