Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/48b42c-c9ef-4e0e-86b4-a2eebb166fc8/1/sq89ZYtJTLFxUgbFzXbnkuckfvc.mft
File: sq89ZYtJTLFxUgbFzXbnkuckfvc.mft (raw, json)
Hash identifier: /soIYv/cP5JyDCQEaOh3rtgm9tbD0Tl/OBkmjhz15jw=
Subject key identifier: 21:BB:D3:DB:81:11:DD:91:EA:67:F0:C8:17:1B:31:4B:18:D4:8B:B3
Authority key identifier: B2:AF:3D:65:8B:49:4C:B1:71:52:06:C5:CD:76:E7:92:E7:24:7E:F7
Certificate issuer: /CN=b2af3d658b494cb1715206c5cd76e792e7247ef7
Certificate serial: 019A7112E0D5EDA28CF1E87C39D165FCB048
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sq89ZYtJTLFxUgbFzXbnkuckfvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/48b42c-c9ef-4e0e-86b4-a2eebb166fc8/1/sq89ZYtJTLFxUgbFzXbnkuckfvc.mft
Manifest number: 05AC
Signing time: Tue 11 Nov 2025 04:00:53 +0000
Manifest this update: Tue 11 Nov 2025 04:00:53 +0000
Manifest next update: Wed 12 Nov 2025 04:00:53 +0000
Files and hashes: 1: 53_H80-AjcuM7a-7V7Ni8CDVxmc.roa (hash: TnMZlgDSn2wGls3cni5JDswiMtfBk15EprIHZOUPW18=)
2: sq89ZYtJTLFxUgbFzXbnkuckfvc.crl (hash: Pr7Q8walXn0rz4QGICkac/aYh58nJaS47xCdGXF+pSs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/48b42c-c9ef-4e0e-86b4-a2eebb166fc8/1/sq89ZYtJTLFxUgbFzXbnkuckfvc.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/48b42c-c9ef-4e0e-86b4-a2eebb166fc8/1/sq89ZYtJTLFxUgbFzXbnkuckfvc.mft
rsync://rpki.ripe.net/repository/DEFAULT/sq89ZYtJTLFxUgbFzXbnkuckfvc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:12:e0:d5:ed:a2:8c:f1:e8:7c:39:d1:65:fc:b0:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2af3d658b494cb1715206c5cd76e792e7247ef7
Validity
Not Before: Nov 11 04:00:53 2025 GMT
Not After : Nov 12 04:00:53 2025 GMT
Subject: CN=21bbd3db8111dd91ea67f0c8171b314b18d48bb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:09:cc:63:d9:d2:ae:9e:1a:4f:e7:2d:cf:b5:
f6:bd:2c:36:6b:13:d3:3d:1c:98:7f:08:fa:1f:cf:
c6:58:68:69:5a:c3:5c:03:bc:cc:94:88:b0:79:13:
14:74:f7:af:97:84:b5:dd:50:79:97:cc:e9:98:a8:
8f:93:ba:59:94:4f:59:8d:67:1a:ac:b0:11:e4:8a:
66:a6:c3:47:be:36:ab:76:2c:06:d5:12:23:1f:ea:
c8:fa:34:f1:4c:b1:6a:0e:af:71:a4:82:d2:a9:a6:
35:7e:20:7e:03:b6:8a:38:07:b3:b6:16:99:f3:51:
d7:8b:25:81:79:19:58:96:34:6e:d3:ff:8e:e7:e9:
33:cd:cd:7b:a1:41:11:92:92:01:3c:57:b9:22:e4:
d8:15:0e:28:da:c0:88:85:2f:b2:7b:34:47:f1:06:
c0:0a:5a:7b:ef:a5:f1:3b:98:be:ac:52:e9:7c:d2:
aa:71:85:fa:32:28:6e:7c:f7:ed:96:72:43:f7:62:
8e:70:76:f1:35:0d:37:6f:f4:0f:15:23:3b:35:1d:
5d:b6:fa:03:88:76:00:c3:84:0a:7a:9b:26:09:6f:
68:8a:1c:16:b6:cc:49:c9:23:8c:28:e9:b2:7a:99:
66:ff:c2:c4:ee:9d:3d:58:17:0b:e5:6e:02:77:4e:
85:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:BB:D3:DB:81:11:DD:91:EA:67:F0:C8:17:1B:31:4B:18:D4:8B:B3
X509v3 Authority Key Identifier:
keyid:B2:AF:3D:65:8B:49:4C:B1:71:52:06:C5:CD:76:E7:92:E7:24:7E:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sq89ZYtJTLFxUgbFzXbnkuckfvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/48b42c-c9ef-4e0e-86b4-a2eebb166fc8/1/sq89ZYtJTLFxUgbFzXbnkuckfvc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/48b42c-c9ef-4e0e-86b4-a2eebb166fc8/1/sq89ZYtJTLFxUgbFzXbnkuckfvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:c7:b8:4a:f2:90:bb:65:de:c2:2a:2b:6d:01:a5:3c:f6:87:
85:f4:b0:c9:65:fc:13:58:ea:c6:81:3d:4f:1a:43:b2:10:f0:
d4:0f:44:6d:60:94:06:64:d7:15:86:40:ac:ab:bc:58:49:11:
fe:35:09:6e:af:f9:81:3f:de:b5:e2:c9:43:5b:3d:98:46:c5:
0a:1b:a6:6d:8e:62:c7:08:72:6a:d9:a2:d9:3a:1a:53:5a:e0:
22:28:e7:86:00:58:3e:f8:20:37:a8:6d:21:df:55:3b:f6:b9:
23:e6:da:a7:93:ec:0a:55:f3:e2:28:cf:d8:18:93:e2:88:7b:
8d:ac:ef:0a:11:25:c3:42:78:72:f5:84:2e:f2:25:51:f6:fb:
3a:91:5e:75:30:b8:00:4b:10:d9:23:f4:4a:84:c8:d2:74:70:
9d:09:19:3d:d2:9e:4a:17:cb:70:52:1c:20:03:24:14:11:b0:
11:83:b2:3c:03:b2:6c:07:df:6a:5c:c8:e8:b9:be:b8:bb:4e:
fc:b2:42:1a:05:ed:ca:ec:6a:cb:e7:c4:5b:79:b9:61:b5:38:
5d:27:b9:48:60:57:9c:dc:55:eb:c2:d6:1c:9c:3d:72:e4:e2:
5c:e2:3e:31:7a:71:16:7e:a6:31:5f:e1:db:b2:64:72:af:5d:
9b:20:83:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:10:30 2025 by rpki-client