Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
File: sgTq-NsT70M8-YIp0jLTMKX14lY.mft (raw, json)
Hash identifier: bbnaS6KvromiO9ezhvbITylkVnagPIiYQ9ftDtZTGo8=
Subject key identifier: AE:86:1C:88:30:93:07:57:C3:26:71:90:8B:2D:07:8A:3B:1A:86:D6
Authority key identifier: B2:04:EA:F8:DB:13:EF:43:3C:F9:82:29:D2:32:D3:30:A5:F5:E2:56
Certificate issuer: /CN=b204eaf8db13ef433cf98229d232d330a5f5e256
Certificate serial: 019780C468A1687C7BB3DBF1D53CAAA3C707
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
Manifest number: 1599
Signing time: Wed 18 Jun 2025 02:00:44 +0000
Manifest this update: Wed 18 Jun 2025 02:00:44 +0000
Manifest next update: Thu 19 Jun 2025 02:00:44 +0000
Files and hashes: 1: sgTq-NsT70M8-YIp0jLTMKX14lY.crl (hash: SafltSitYXVewvfjLaPqDP7QRntklYrSqaGqKNhaxG8=)
2: xgKcu0KPsxc8M315Trs0GW1UUwk.roa (hash: ICZ6+2Jz2veLFc1cLdSpid822PA3P/5mVBK8JthGSW0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Jun 2025 22:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:80:c4:68:a1:68:7c:7b:b3:db:f1:d5:3c:aa:a3:c7:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b204eaf8db13ef433cf98229d232d330a5f5e256
Validity
Not Before: Jun 18 02:00:44 2025 GMT
Not After : Jun 19 02:00:44 2025 GMT
Subject: CN=ae861c8830930757c32671908b2d078a3b1a86d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:ec:0d:70:01:7b:b4:9e:e7:73:43:a1:a7:26:
b1:56:90:1c:04:85:5d:1c:ae:fa:9d:53:e1:fd:30:
69:57:58:d6:d7:94:7f:4e:b1:fb:02:b7:9a:60:59:
59:44:1f:a9:c9:ae:03:e1:ee:87:66:a8:7d:8b:28:
9b:0d:35:cd:e5:ec:3f:29:78:8f:76:4b:4f:b8:47:
ef:1e:56:91:aa:f7:3b:1f:89:e1:e8:d9:44:c1:68:
68:0e:97:d4:ac:35:9e:7c:3f:bd:76:22:22:5c:4d:
d8:50:ac:8f:32:55:5d:e9:8b:87:71:03:5f:7f:e8:
0d:15:71:12:55:ea:48:3a:ab:cb:98:14:92:78:cd:
f6:03:74:7a:32:5c:18:57:b4:c4:b5:6b:a3:da:ef:
bc:b8:8b:c1:63:2e:8e:6c:30:ca:8e:94:ec:8a:50:
d0:01:d3:82:f4:bd:be:9e:0e:cd:d7:5e:b3:d4:9f:
3d:b8:f9:8c:80:44:16:62:31:7c:cf:e7:70:dd:d3:
d1:a4:f4:f2:82:4e:01:40:83:d3:b1:78:26:76:d2:
2a:75:5b:95:a3:4d:31:fe:41:e2:d5:2a:0a:a6:4c:
71:db:d5:17:f2:55:d2:9a:41:f1:63:8a:0c:58:ee:
ba:25:11:00:e5:32:dc:a8:e9:9b:46:cc:4d:8b:57:
ed:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:86:1C:88:30:93:07:57:C3:26:71:90:8B:2D:07:8A:3B:1A:86:D6
X509v3 Authority Key Identifier:
keyid:B2:04:EA:F8:DB:13:EF:43:3C:F9:82:29:D2:32:D3:30:A5:F5:E2:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:ac:53:1b:01:e0:6a:0e:f8:1e:2d:4d:c8:7f:e5:3c:35:15:
9e:d0:1f:fe:ee:25:44:5b:8b:ab:95:8c:ce:16:94:9d:9a:77:
4d:0c:f9:74:b7:df:cc:3e:64:8a:ec:eb:31:30:7a:80:c9:38:
58:07:45:c5:79:88:7f:55:89:9a:51:3f:78:1a:80:1b:58:19:
8c:26:3b:0e:e7:86:4e:ed:91:10:65:76:ee:52:ec:9e:ac:f8:
d4:be:f4:50:65:f7:4e:86:4b:f3:00:50:fd:90:a3:0e:fa:c4:
21:c4:36:99:77:c4:51:ab:ed:ba:58:67:07:a6:f8:32:d5:e7:
17:d7:b9:91:35:4d:3f:68:4c:3c:7f:64:65:49:7c:c4:82:be:
a7:b3:6d:0a:57:52:8d:a9:0e:1a:ec:a7:92:51:95:91:f9:5e:
9d:cf:7b:c9:f9:ff:a4:ac:26:ca:75:1a:3b:c8:b9:0a:35:84:
3d:05:a3:15:68:4a:1f:6b:4a:13:ea:13:2c:3c:5e:bf:37:51:
a4:dd:5c:7c:12:3d:9e:e6:40:0a:20:fa:57:76:44:49:c6:10:
70:c5:f0:42:45:93:b4:2d:36:ac:98:05:8f:cd:af:c8:7d:f2:
b0:f8:78:05:60:ee:55:5a:f1:91:a5:91:c1:99:c4:c2:aa:41:
7d:aa:0c:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 18 08:22:05 2025 by rpki-client