Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
File: sgTq-NsT70M8-YIp0jLTMKX14lY.mft (raw, json)
Hash identifier: fHmivIqbhvD1SScO3mXgtFBsXdeQy1hWh9lkMzZxZ+k=
Subject key identifier: E0:E9:EA:A1:4A:A3:F7:AB:42:49:37:2F:79:D4:11:12:D5:18:CA:AC
Authority key identifier: B2:04:EA:F8:DB:13:EF:43:3C:F9:82:29:D2:32:D3:30:A5:F5:E2:56
Certificate issuer: /CN=b204eaf8db13ef433cf98229d232d330a5f5e256
Certificate serial: 019685B6368A1DB9D9F030536EA7298F17AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
Manifest number: 1517
Signing time: Wed 30 Apr 2025 08:00:33 +0000
Manifest this update: Wed 30 Apr 2025 08:00:33 +0000
Manifest next update: Thu 01 May 2025 08:00:33 +0000
Files and hashes: 1: sgTq-NsT70M8-YIp0jLTMKX14lY.crl (hash: ioZIP9ZAPVlkBFrm+YVgEiLqz6poUfNdzeByY/n/afQ=)
2: xgKcu0KPsxc8M315Trs0GW1UUwk.roa (hash: ICZ6+2Jz2veLFc1cLdSpid822PA3P/5mVBK8JthGSW0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 08:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:85:b6:36:8a:1d:b9:d9:f0:30:53:6e:a7:29:8f:17:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b204eaf8db13ef433cf98229d232d330a5f5e256
Validity
Not Before: Apr 30 08:00:33 2025 GMT
Not After : May 1 08:00:33 2025 GMT
Subject: CN=e0e9eaa14aa3f7ab4249372f79d41112d518caac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:e0:20:95:89:ad:80:94:8a:91:cd:5d:f6:49:
a9:de:86:6c:42:24:c3:27:99:e2:36:60:de:bd:6c:
72:71:42:cd:4b:18:f7:62:bc:04:8d:d6:cc:fc:94:
78:97:05:a1:cd:98:b5:b5:f1:38:1b:b5:7a:cc:d3:
1a:c8:ee:33:ef:5b:43:5b:b2:22:ba:ba:34:07:1c:
3e:93:04:6c:bb:84:22:29:3a:58:28:7e:8d:21:a0:
ba:11:6f:68:00:48:85:30:7d:65:33:9e:b4:0c:91:
b9:c4:3b:5d:40:b4:5a:0b:be:0e:a7:32:0f:52:63:
31:af:41:3a:ab:f1:2a:0e:87:dc:4e:c2:84:b7:63:
b7:95:6c:43:42:e7:4e:08:83:d7:8f:b8:a8:7d:6e:
8b:01:9d:83:6d:e6:7e:70:cf:29:bb:38:b0:33:bc:
31:b4:dd:58:a9:be:f9:94:4a:c5:ff:92:1d:8c:94:
e0:b6:90:3a:76:16:99:5a:26:d8:83:98:32:73:87:
67:1c:fe:52:3c:c1:82:8b:36:ba:af:b3:26:e5:a3:
60:5a:bc:ea:ae:23:06:e9:18:1b:46:20:e4:b5:fe:
d7:62:23:74:ae:9a:1c:0b:a6:e4:33:d1:9e:d1:40:
1e:c2:4d:b3:e0:24:08:54:66:69:2f:92:e3:a7:c2:
8b:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:E9:EA:A1:4A:A3:F7:AB:42:49:37:2F:79:D4:11:12:D5:18:CA:AC
X509v3 Authority Key Identifier:
keyid:B2:04:EA:F8:DB:13:EF:43:3C:F9:82:29:D2:32:D3:30:A5:F5:E2:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:6c:33:34:71:e5:ef:cb:50:0a:ba:c6:1e:52:a2:93:9c:21:
90:c6:e1:84:4c:0c:fd:01:92:f0:23:e4:94:30:d1:f3:e8:62:
11:f9:60:24:dd:9e:a1:9d:fa:aa:0a:50:c9:f8:44:a6:80:06:
73:b8:1b:b8:80:fb:65:71:d0:9e:c1:46:8a:84:e2:cb:4c:0c:
07:19:fb:af:38:75:42:ac:c5:6f:82:dd:f8:2d:84:1c:26:a3:
58:a6:65:f5:b9:11:44:a7:61:46:b6:03:69:20:74:00:14:1e:
61:8b:01:27:85:23:62:b6:e1:20:8f:95:b7:e5:50:ed:7e:3c:
70:c2:0b:61:ca:a8:b5:05:12:9b:c8:2b:c1:b4:bd:89:da:3c:
be:27:99:a4:73:4b:4b:d2:13:d5:8b:79:7b:96:24:14:89:a5:
48:aa:a6:0c:a3:4e:05:5d:03:7a:02:0f:ab:da:d6:61:fc:d9:
72:d3:3d:2f:cf:d3:8b:50:d8:cc:3e:a3:05:89:61:6b:b3:05:
81:5b:2d:c8:9a:8b:6e:55:c7:ee:8a:6b:47:92:11:be:67:a3:
03:0d:05:0d:09:d4:f7:18:37:46:cb:f2:ed:db:24:2a:bf:1a:
f1:9b:f9:c4:69:46:9c:9d:b7:d5:6f:a0:c5:40:1a:b1:09:ef:
85:33:ec:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 14:43:12 2025 by rpki-client