Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/48b42c-c9ef-4e0e-86b4-a2eebb166fc8/1/sq89ZYtJTLFxUgbFzXbnkuckfvc.mft
File: sq89ZYtJTLFxUgbFzXbnkuckfvc.mft (raw, json)
Hash identifier: ErvSTeeaSjiMmM31Trs8SQXJ4GNCwsGSifyvmh1RODA=
Subject key identifier: DE:CF:DF:97:10:C9:0D:82:FF:61:4E:62:D0:8C:3E:65:DA:DF:E6:7B
Authority key identifier: B2:AF:3D:65:8B:49:4C:B1:71:52:06:C5:CD:76:E7:92:E7:24:7E:F7
Certificate issuer: /CN=b2af3d658b494cb1715206c5cd76e792e7247ef7
Certificate serial: 019D38D2FD0E36CBE39517A41C5D81C888A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sq89ZYtJTLFxUgbFzXbnkuckfvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/48b42c-c9ef-4e0e-86b4-a2eebb166fc8/1/sq89ZYtJTLFxUgbFzXbnkuckfvc.mft
Manifest number: 071D
Signing time: Sun 29 Mar 2026 09:00:44 +0000
Manifest this update: Sun 29 Mar 2026 09:00:44 +0000
Manifest next update: Mon 30 Mar 2026 09:00:44 +0000
Files and hashes: 1: ZoA4ZVqC0ZLffn6V-FB9F10l7pU.roa (hash: aHUNwJ+YvxKRTJDaD0sMuoyAC4QGr+TPQfR1XTwxQGw=)
2: sq89ZYtJTLFxUgbFzXbnkuckfvc.crl (hash: DqOVxdcS8bqfh4e34UxaR5kha4b3dd8baIW3O9ibRio=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/48b42c-c9ef-4e0e-86b4-a2eebb166fc8/1/sq89ZYtJTLFxUgbFzXbnkuckfvc.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/48b42c-c9ef-4e0e-86b4-a2eebb166fc8/1/sq89ZYtJTLFxUgbFzXbnkuckfvc.mft
rsync://rpki.ripe.net/repository/DEFAULT/sq89ZYtJTLFxUgbFzXbnkuckfvc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:fd:0e:36:cb:e3:95:17:a4:1c:5d:81:c8:88:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2af3d658b494cb1715206c5cd76e792e7247ef7
Validity
Not Before: Mar 29 09:00:44 2026 GMT
Not After : Mar 30 09:00:44 2026 GMT
Subject: CN=decfdf9710c90d82ff614e62d08c3e65dadfe67b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:7e:86:dc:87:f9:98:4e:7b:c6:ab:15:9a:01:
83:ed:44:fc:62:2d:ec:1c:b8:5b:d6:0e:c8:a1:96:
fc:71:cc:9b:4e:bc:98:da:68:09:4a:aa:1a:7e:e4:
52:b4:a0:be:40:4c:5f:16:ee:5f:d9:22:74:c1:68:
42:bd:e5:2d:0a:e0:ea:6c:e9:39:4c:84:28:a0:9e:
7a:39:fe:c4:40:f0:6b:1f:8c:14:a3:71:a4:22:7d:
8c:e6:3a:a8:6c:42:35:9d:69:96:64:09:12:8d:e4:
15:3f:f6:ed:73:73:da:de:89:bd:e4:60:cc:69:6a:
39:e8:24:98:fc:24:b9:6d:70:23:5e:b8:1c:66:63:
ec:24:8d:49:38:3f:eb:61:1e:fb:dc:c7:44:cb:77:
05:ba:7b:bf:ac:7f:77:f8:ac:3c:b2:f9:b2:f0:67:
97:a1:89:24:10:65:07:16:02:4f:8d:47:c5:fe:25:
26:32:3d:1f:0d:c2:8e:6e:9f:32:e3:c9:91:2d:b9:
25:b9:60:06:94:17:a3:10:15:7e:3c:cf:0d:69:37:
b4:1c:f0:16:c3:4f:b9:d5:36:55:a9:ea:61:1e:14:
e6:5c:b7:c9:d3:f0:3c:3a:a3:2a:08:0e:26:83:ba:
65:6f:c4:78:46:f0:b5:a6:37:86:15:35:bf:a7:60:
1d:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:CF:DF:97:10:C9:0D:82:FF:61:4E:62:D0:8C:3E:65:DA:DF:E6:7B
X509v3 Authority Key Identifier:
keyid:B2:AF:3D:65:8B:49:4C:B1:71:52:06:C5:CD:76:E7:92:E7:24:7E:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sq89ZYtJTLFxUgbFzXbnkuckfvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/48b42c-c9ef-4e0e-86b4-a2eebb166fc8/1/sq89ZYtJTLFxUgbFzXbnkuckfvc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/48b42c-c9ef-4e0e-86b4-a2eebb166fc8/1/sq89ZYtJTLFxUgbFzXbnkuckfvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:69:54:37:fc:4d:2c:a8:48:68:1b:9e:68:86:95:1c:35:2f:
4d:ac:ab:31:3f:6a:41:ee:ab:a0:63:e3:35:d7:46:30:ea:cf:
7f:24:f5:a1:bc:a4:d4:5b:8c:1c:55:42:52:1b:29:77:79:40:
cb:cb:b2:13:11:1e:e3:ad:30:f1:5a:0b:a5:09:5e:2e:fd:db:
4a:84:1f:18:d3:c8:b2:ed:65:4c:d8:06:53:e2:12:4c:a3:75:
24:97:3d:7a:d8:fd:b2:fc:17:a1:ac:ec:42:09:cf:8f:36:08:
17:5c:b8:b8:69:98:07:2a:9f:79:19:11:ab:a8:5b:a2:92:bb:
83:4e:ae:07:da:fe:04:b0:ea:e9:c6:27:bc:2f:2c:30:3d:a5:
9a:33:64:19:d6:3e:27:3c:97:b9:3f:20:43:68:ce:52:52:d5:
ae:17:e2:bd:fd:c3:2b:c4:b5:70:02:a9:f0:82:67:d2:23:b0:
ba:35:da:47:08:22:4c:41:48:c0:89:32:ad:60:d0:b7:f1:bd:
cc:e8:64:9d:e4:8a:f0:aa:1f:6b:66:49:e7:08:da:50:01:ea:
bd:a6:f9:8e:08:55:cf:15:13:59:ea:14:64:47:8d:8a:ad:82:
c4:54:19:17:54:e7:f3:51:84:e7:aa:35:e5:dd:62:1a:77:c2:
1e:bb:60:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:54:38 2026 by rpki-client