Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.mft
File: SQ25mcpM4ofFySqxZ6UAkCJZuwU.mft (raw, json)
Hash identifier: VvGMd7Efv78DgSdohFvNWxIzQ5Sl+sIebgS2T3qH3aM=
Subject key identifier: 75:D4:78:AA:D0:8A:9F:56:0F:36:D7:D5:40:6D:25:F2:55:1A:22:C4
Authority key identifier: 49:0D:B9:99:CA:4C:E2:87:C5:C9:2A:B1:67:A5:00:90:22:59:BB:05
Certificate issuer: /CN=490db999ca4ce287c5c92ab167a500902259bb05
Certificate serial: 019874F52F6ED7B7BCB06718298D3CB0A5D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SQ25mcpM4ofFySqxZ6UAkCJZuwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.mft
Manifest number: 1619
Signing time: Mon 04 Aug 2025 12:01:22 +0000
Manifest this update: Mon 04 Aug 2025 12:01:22 +0000
Manifest next update: Tue 05 Aug 2025 12:01:22 +0000
Files and hashes: 1: CqiCeQuNX5qYQWUphyM9iUBKOh4.roa (hash: RxNADbHHkDaXqyxPAae3UN8wvqfkoDaWlyxd0mzE4zw=)
2: SQ25mcpM4ofFySqxZ6UAkCJZuwU.crl (hash: CXRqm0w+zOowudPrmUnsFN0lEBwhRe11jhKPoYNzSpA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.mft
rsync://rpki.ripe.net/repository/DEFAULT/SQ25mcpM4ofFySqxZ6UAkCJZuwU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 12:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:f5:2f:6e:d7:b7:bc:b0:67:18:29:8d:3c:b0:a5:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=490db999ca4ce287c5c92ab167a500902259bb05
Validity
Not Before: Aug 4 12:01:22 2025 GMT
Not After : Aug 5 12:01:22 2025 GMT
Subject: CN=75d478aad08a9f560f36d7d5406d25f2551a22c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:08:4d:ca:e4:bc:87:0b:0d:ed:08:5c:c9:05:
ba:26:4d:c8:83:e3:50:2a:13:f4:62:a5:d3:ca:34:
28:38:18:e7:2c:6e:34:77:30:12:47:3e:de:71:a8:
70:88:d0:3e:82:f7:59:00:46:c1:ac:ca:53:e8:36:
ec:fd:4f:f5:9b:8b:48:24:10:81:1a:d6:fa:16:ad:
c8:34:8c:8a:a4:d1:77:21:23:04:39:fa:5c:d4:b1:
a3:ca:3c:1d:8d:41:39:16:c4:bb:02:60:c9:6d:a7:
d0:7e:8c:42:d9:ee:f3:d5:4c:5d:9c:90:78:62:99:
04:aa:55:29:81:19:e1:48:b7:c9:02:4d:7d:33:47:
66:b8:53:7b:6c:d7:2b:b0:db:2b:5c:ee:2f:94:42:
b8:bb:14:fa:e2:59:1e:54:82:07:29:96:e1:f7:14:
ae:d1:49:69:85:ea:c1:bb:b7:59:4d:38:19:5f:61:
92:03:61:b5:1e:43:6c:8d:11:ee:8c:3e:7d:cf:03:
78:7b:65:a4:8d:fe:ca:0e:53:9c:fd:63:aa:24:8a:
96:2a:ce:83:37:65:37:3f:48:42:54:6d:7e:3a:ed:
b1:d0:8e:59:9f:a1:5f:c0:12:19:ba:fb:68:1b:e0:
5c:96:f5:c7:e9:0c:9f:1e:47:6f:eb:5a:92:98:01:
62:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:D4:78:AA:D0:8A:9F:56:0F:36:D7:D5:40:6D:25:F2:55:1A:22:C4
X509v3 Authority Key Identifier:
keyid:49:0D:B9:99:CA:4C:E2:87:C5:C9:2A:B1:67:A5:00:90:22:59:BB:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SQ25mcpM4ofFySqxZ6UAkCJZuwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:ef:58:b6:c9:d3:d0:ee:a1:08:23:cd:a2:5f:69:21:45:d5:
55:92:84:ae:11:0f:3d:ea:c7:98:be:9d:d6:55:61:5b:02:1a:
11:11:89:67:f8:b2:01:b5:98:14:48:60:60:8e:24:b5:6e:a3:
e8:3f:ae:fc:38:84:2b:d2:6c:a4:26:f7:b9:15:ab:5f:0a:2c:
f4:bc:0d:ea:ce:f7:98:77:63:bc:38:3c:7b:74:f3:b5:3e:e3:
e7:aa:28:83:b1:10:54:ec:e7:2d:b9:06:ee:19:69:d5:06:29:
f1:dc:48:0e:73:c1:71:75:f8:e1:ee:cb:6a:8a:9f:16:b1:20:
87:c1:3e:f7:82:c5:34:f9:77:b5:f5:d1:f6:44:af:95:0b:2c:
38:8c:76:07:ff:4a:de:50:1d:9b:f7:1b:cb:10:aa:65:ba:16:
9b:f7:8d:a5:a9:cb:8c:85:4e:e6:18:32:c4:82:4d:79:0f:84:
f6:04:29:8b:cc:1f:a0:35:ec:74:1d:68:af:75:fb:e0:97:bd:
9a:cb:88:f7:68:07:c5:0e:fa:88:83:af:18:57:01:8a:82:92:
b5:e4:48:ea:47:c7:63:26:35:e1:59:48:9d:48:05:02:ac:5d:
5e:5d:6c:f4:21:c2:c9:fe:59:f1:cf:a8:b0:f8:03:db:47:b3:
0d:cf:b7:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 16:09:03 2025 by rpki-client