Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/f5d730-f8eb-4f80-9a9c-9abe4e6c2be1/1/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.mft
File: sqhTcekvOaK-QkdgsE5HrZ2j7Ts.mft (raw, json)
Hash identifier: oy6JdcoBR08keqpKH9T1IRYcAZIDKz1kIgW6n6rEkmQ=
Subject key identifier: C1:5F:AB:1B:15:DD:66:DF:90:21:06:46:4C:68:09:E0:AE:E3:97:B8
Authority key identifier: B2:A8:53:71:E9:2F:39:A2:BE:42:47:60:B0:4E:47:AD:9D:A3:ED:3B
Certificate issuer: /CN=b2a85371e92f39a2be424760b04e47ad9da3ed3b
Certificate serial: 019A71EE6DEA724DC7806089A2CFFBA07090
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/f5d730-f8eb-4f80-9a9c-9abe4e6c2be1/1/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.mft
Manifest number: 03BD
Signing time: Tue 11 Nov 2025 08:00:42 +0000
Manifest this update: Tue 11 Nov 2025 08:00:42 +0000
Manifest next update: Wed 12 Nov 2025 08:00:42 +0000
Files and hashes: 1: sqhTcekvOaK-QkdgsE5HrZ2j7Ts.crl (hash: 16FYOz2XaUEfGTml3hHehxnkm0XpD/MG6t542F+f6/8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/f5d730-f8eb-4f80-9a9c-9abe4e6c2be1/1/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/f5d730-f8eb-4f80-9a9c-9abe4e6c2be1/1/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.mft
rsync://rpki.ripe.net/repository/DEFAULT/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 08:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:ee:6d:ea:72:4d:c7:80:60:89:a2:cf:fb:a0:70:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2a85371e92f39a2be424760b04e47ad9da3ed3b
Validity
Not Before: Nov 11 08:00:42 2025 GMT
Not After : Nov 12 08:00:42 2025 GMT
Subject: CN=c15fab1b15dd66df902106464c6809e0aee397b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:bc:71:d0:c8:8f:36:67:62:ea:ac:95:de:2e:
bc:d6:ee:ce:48:27:5f:6d:dc:a7:ba:f4:d6:ae:0c:
61:ce:e1:03:bb:6b:ab:d8:43:a8:77:d7:e4:1d:e4:
1d:ba:08:a2:cc:eb:d3:2b:52:0d:26:1c:50:fe:ce:
36:c1:3e:68:42:af:5b:ee:fb:1a:b3:64:da:b2:56:
25:56:a2:ed:b7:d9:08:a9:f6:06:6d:95:3b:70:3f:
55:6f:2c:30:63:1d:fd:e4:99:8e:02:2a:3c:f4:7d:
63:71:09:1f:4d:8f:9d:5e:c2:a7:0c:93:12:9d:a5:
ef:2f:8f:97:4d:b5:94:46:a6:18:66:a1:2c:e3:d5:
5c:c7:d5:80:4a:3f:55:c7:16:0b:e1:1a:1a:35:ec:
c2:6d:f3:e3:1a:65:f6:11:6d:11:54:b8:95:53:12:
79:06:ad:e0:1a:2a:ed:12:4b:81:08:d6:6d:00:e8:
97:94:45:83:09:3d:62:fa:f4:50:3e:2a:a4:9c:98:
54:05:67:de:c4:52:44:b8:e6:c6:76:c2:1f:bb:23:
9d:89:5d:7d:c7:78:3f:e3:79:45:17:9a:21:d6:7f:
87:0e:8c:c4:9c:3e:0e:cc:53:7f:cf:f4:8c:41:91:
a9:e8:87:00:d8:65:de:2f:8c:82:e4:47:4b:39:c1:
39:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:5F:AB:1B:15:DD:66:DF:90:21:06:46:4C:68:09:E0:AE:E3:97:B8
X509v3 Authority Key Identifier:
keyid:B2:A8:53:71:E9:2F:39:A2:BE:42:47:60:B0:4E:47:AD:9D:A3:ED:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/f5d730-f8eb-4f80-9a9c-9abe4e6c2be1/1/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/f5d730-f8eb-4f80-9a9c-9abe4e6c2be1/1/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c1:e1:3e:98:4f:c3:23:cf:91:7f:b5:84:50:e2:bc:c0:2c:ba:
36:dc:d5:40:b6:f1:0b:e0:e5:45:6f:37:f2:2f:f6:6e:07:b1:
61:a3:a0:e8:54:e1:a3:9a:3c:69:45:99:26:63:b5:6d:4a:7e:
4b:31:a2:d2:96:7a:36:e5:38:05:5b:54:68:b8:89:56:d7:a3:
a5:a1:9c:33:bd:e3:9a:48:fb:58:07:b8:87:e9:32:15:25:80:
ed:79:73:48:f4:ab:34:11:68:73:cf:bc:6c:58:97:ce:03:46:
9c:77:ad:5d:d8:94:13:6e:8b:b0:39:8e:cb:01:91:1c:11:a4:
af:79:18:2a:01:30:f8:fa:73:5e:70:57:bf:ab:70:8b:c9:89:
61:01:77:4b:70:05:29:58:b5:b2:59:26:45:eb:dc:c4:59:dc:
e7:07:4d:d5:a9:10:77:33:ec:75:1b:a9:a8:97:ed:87:0d:0b:
3c:46:b8:70:b4:18:e9:5f:8c:9b:5e:b4:e3:94:53:f8:89:ee:
64:9c:ab:d3:f2:ec:60:f5:57:28:52:43:a2:77:3c:d8:84:08:
53:9a:cc:01:12:10:22:fc:bc:72:c3:6f:c3:5e:51:f1:a2:9e:
70:7b:a0:15:08:d2:54:c6:3b:bc:53:cb:eb:97:9e:8c:de:b4:
53:ac:0e:96
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpx7m3qck3HgGCJos/7oHCQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyYTg1MzcxZTkyZjM5YTJiZTQyNDc2MGIwNGU0N2FkOWRh
M2VkM2IwHhcNMjUxMTExMDgwMDQyWhcNMjUxMTEyMDgwMDQyWjAzMTEwLwYDVQQD
EyhjMTVmYWIxYjE1ZGQ2NmRmOTAyMTA2NDY0YzY4MDllMGFlZTM5N2I4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz7xx0MiPNmdi6qyV3i681u7OSCdf
bdynuvTWrgxhzuEDu2ur2EOod9fkHeQdugiizOvTK1INJhxQ/s42wT5oQq9b7vsa
s2TaslYlVqLtt9kIqfYGbZU7cD9VbywwYx395JmOAio89H1jcQkfTY+dXsKnDJMS
naXvL4+XTbWURqYYZqEs49Vcx9WASj9VxxYL4RoaNezCbfPjGmX2EW0RVLiVUxJ5
Bq3gGirtEkuBCNZtAOiXlEWDCT1i+vRQPiqknJhUBWfexFJEuObGdsIfuyOdiV19
x3g/43lFF5oh1n+HDozEnD4OzFN/z/SMQZGp6IcA2GXeL4yC5EdLOcE5PwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMFfqxsV3WbfkCEGRkxoCeCu45e4MB8GA1UdIwQY
MBaAFLKoU3HpLzmivkJHYLBOR62do+07MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3FoVGNla3ZPYUstUWtkZ3NFNUhyWjJqN1RzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi9mNWQ3MzAtZjhlYi00ZjgwLTlhOWMt
OWFiZTRlNmMyYmUxLzEvc3FoVGNla3ZPYUstUWtkZ3NFNUhyWjJqN1RzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZi9mNWQ3MzAtZjhlYi00ZjgwLTlhOWMtOWFiZTRlNmMyYmUx
LzEvc3FoVGNla3ZPYUstUWtkZ3NFNUhyWjJqN1RzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAweE+mE/D
I8+Rf7WEUOK8wCy6NtzVQLbxC+DlRW838i/2bgexYaOg6FTho5o8aUWZJmO1bUp+
SzGi0pZ6NuU4BVtUaLiJVtejpaGcM73jmkj7WAe4h+kyFSWA7XlzSPSrNBFoc8+8
bFiXzgNGnHetXdiUE26LsDmOywGRHBGkr3kYKgEw+PpzXnBXv6twi8mJYQF3S3AF
KVi1slkmRevcxFnc5wdN1akQdzPsdRupqJfthw0LPEa4cLQY6V+Mm16045RT+Inu
ZJyr0/LsYPVXKFJDonc82IQIU5rMARIQIvy8csNvw15R8aKecHugFQjSVMY7vFPL
65eejN60U6wOlg==
-----END CERTIFICATE-----
Generated at Tue Nov 11 12:43:17 2025 by rpki-client