Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.mft
File: sqvUconMbNnByAJ0KiztUMY0vTs.mft (raw, json)
Hash identifier: sytOTUKtxUWo9MMlye6g3CjuZjZFqBjqPoVvQouT3eo=
Subject key identifier: 00:03:9E:97:2E:99:69:B7:59:9A:B4:EE:7F:4D:02:BC:77:07:F8:5C
Authority key identifier: B2:AB:D4:72:89:CC:6C:D9:C1:C8:02:74:2A:2C:ED:50:C6:34:BD:3B
Certificate issuer: /CN=b2abd47289cc6cd9c1c802742a2ced50c634bd3b
Certificate serial: 0196865B64725CBC08C3982BA447F80BDE16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sqvUconMbNnByAJ0KiztUMY0vTs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.mft
Manifest number: 06EB
Signing time: Wed 30 Apr 2025 11:00:58 +0000
Manifest this update: Wed 30 Apr 2025 11:00:58 +0000
Manifest next update: Thu 01 May 2025 11:00:58 +0000
Files and hashes: 1: sqvUconMbNnByAJ0KiztUMY0vTs.crl (hash: 8gz4HLxdpOavAZ+MwrNux1ov1cViTn+uGZ/XaNoR/48=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.mft
rsync://rpki.ripe.net/repository/DEFAULT/sqvUconMbNnByAJ0KiztUMY0vTs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 11:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:86:5b:64:72:5c:bc:08:c3:98:2b:a4:47:f8:0b:de:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2abd47289cc6cd9c1c802742a2ced50c634bd3b
Validity
Not Before: Apr 30 11:00:58 2025 GMT
Not After : May 1 11:00:58 2025 GMT
Subject: CN=00039e972e9969b7599ab4ee7f4d02bc7707f85c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:7b:43:22:df:1d:9e:fd:62:32:ca:af:61:8e:
a5:f0:31:c3:ab:ce:7b:4f:aa:d0:6d:c6:49:20:1c:
33:05:6d:4b:5c:a5:8f:2f:ab:bf:9a:24:96:72:93:
e8:46:a1:2f:5a:c2:2f:5c:30:cf:9c:a8:ab:1f:77:
d1:87:be:fa:dc:81:51:a2:c8:5d:37:b8:db:04:6f:
15:57:0d:b4:42:e0:4f:4a:a2:f6:42:b6:23:7b:98:
f1:d5:52:a4:85:a7:4b:13:f4:e9:99:bc:1f:37:21:
30:db:b4:3b:96:ec:7c:ab:1e:78:49:1d:cb:49:fd:
be:78:27:e8:03:d0:b1:18:85:df:c2:4e:d0:16:76:
19:9a:83:f9:a2:13:89:19:65:92:1c:9f:89:a2:e0:
22:a4:1e:1d:be:c0:22:ae:fe:c5:28:03:6e:f8:9c:
57:44:a2:56:b8:e6:02:bc:41:54:af:d2:a2:91:1e:
63:b1:71:ec:54:22:b5:6c:1c:20:29:13:92:c4:bb:
c0:ae:94:bb:ca:41:16:9f:22:73:99:ae:19:02:8a:
ae:74:a2:0c:65:2c:1e:95:a7:5c:2c:0b:dc:13:bc:
38:5e:48:d3:22:b2:66:aa:c3:85:ba:89:7f:61:a2:
24:ea:17:87:2a:19:05:b8:c7:c4:12:ae:84:a0:c4:
81:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:03:9E:97:2E:99:69:B7:59:9A:B4:EE:7F:4D:02:BC:77:07:F8:5C
X509v3 Authority Key Identifier:
keyid:B2:AB:D4:72:89:CC:6C:D9:C1:C8:02:74:2A:2C:ED:50:C6:34:BD:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sqvUconMbNnByAJ0KiztUMY0vTs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:2b:1d:40:57:6d:1e:3d:e7:39:e7:8d:fb:80:e3:99:4b:ad:
92:b3:e3:19:19:7f:8c:a9:02:c2:e8:0b:e1:7f:9c:9f:08:a2:
7b:4a:36:cf:ef:30:3e:cb:88:cf:51:2c:42:07:99:61:67:f6:
43:1c:05:95:7f:a4:22:4b:e3:ca:fe:2b:1d:18:eb:fb:d1:e4:
7a:b8:54:d7:27:49:3c:a9:f3:2a:2e:5a:83:d9:9c:84:2a:4f:
c7:b3:8a:8e:49:dc:bf:1f:d0:c8:aa:66:d5:a7:8c:ba:15:8e:
85:c8:fe:34:d7:aa:f2:62:dd:8d:62:46:f7:ba:04:9d:86:65:
e2:12:7e:1d:3f:34:57:ed:a4:b5:79:80:a0:ef:4c:35:5a:56:
78:f7:56:9d:d1:41:f2:12:fa:b4:62:0e:0d:37:9e:87:c8:16:
97:03:dd:d2:d9:79:c9:ae:ac:ed:cc:9b:00:30:68:3a:c1:bc:
23:a5:10:06:e8:95:f1:de:d1:2b:ef:36:25:8d:84:1f:35:fb:
53:c7:99:69:77:5e:bd:04:b1:1f:bd:7b:04:19:d3:b9:73:5f:
f8:5d:4b:33:f9:36:a4:90:1b:49:83:6c:e0:6f:99:da:de:cd:
9a:10:4d:8d:dd:00:96:48:dc:6f:fc:ce:6d:d5:9d:27:7f:42:
8f:8b:6f:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 16:31:00 2025 by rpki-client