Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.mft
File: SQ25mcpM4ofFySqxZ6UAkCJZuwU.mft (raw, json)
Hash identifier: jihB1DdTOwbVGDqojNatmcT2beGePpIJQ0/8zLKP/k0=
Subject key identifier: F5:58:B2:DD:BC:29:FF:A0:38:70:F0:6E:31:A0:D6:14:CE:21:E3:61
Authority key identifier: 49:0D:B9:99:CA:4C:E2:87:C5:C9:2A:B1:67:A5:00:90:22:59:BB:05
Certificate issuer: /CN=490db999ca4ce287c5c92ab167a500902259bb05
Certificate serial: 01968880760433022245017B0CE54F011B72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SQ25mcpM4ofFySqxZ6UAkCJZuwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.mft
Manifest number: 151A
Signing time: Wed 30 Apr 2025 21:00:42 +0000
Manifest this update: Wed 30 Apr 2025 21:00:42 +0000
Manifest next update: Thu 01 May 2025 21:00:42 +0000
Files and hashes: 1: CqiCeQuNX5qYQWUphyM9iUBKOh4.roa (hash: RxNADbHHkDaXqyxPAae3UN8wvqfkoDaWlyxd0mzE4zw=)
2: SQ25mcpM4ofFySqxZ6UAkCJZuwU.crl (hash: PcYtzSDmIJKwQucaIxejyTdErFPSB5K7tAbHTBtT3LI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.mft
rsync://rpki.ripe.net/repository/DEFAULT/SQ25mcpM4ofFySqxZ6UAkCJZuwU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 21:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:88:80:76:04:33:02:22:45:01:7b:0c:e5:4f:01:1b:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=490db999ca4ce287c5c92ab167a500902259bb05
Validity
Not Before: Apr 30 21:00:42 2025 GMT
Not After : May 1 21:00:42 2025 GMT
Subject: CN=f558b2ddbc29ffa03870f06e31a0d614ce21e361
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:80:af:cd:de:55:44:84:ec:40:cf:fa:29:1d:
6c:5c:83:72:ca:6f:c1:c2:48:3b:aa:03:23:4d:34:
7a:14:a1:3f:92:a6:9e:6d:40:19:bb:1e:9c:29:37:
42:6a:1e:fa:eb:de:33:71:b8:06:78:55:e4:6e:67:
89:77:b6:63:38:e7:8b:f5:7c:33:9f:37:a4:e4:ef:
2d:23:57:99:ff:a5:2b:c7:73:86:32:70:7e:4b:6f:
99:2e:29:78:7e:ae:ca:22:a5:79:a4:3c:e4:67:2b:
7a:e8:58:60:db:9e:87:9e:f5:6a:a3:c8:e2:1c:5c:
87:c7:50:9d:2c:d6:a3:07:e5:c0:b8:f8:24:e9:8b:
32:1b:fd:08:c8:51:b2:62:07:35:a5:66:3b:e3:31:
89:3c:22:15:2c:b0:86:7e:79:d3:de:68:8d:7b:b0:
e9:f5:33:fb:89:97:c2:59:e5:8e:b4:8e:12:88:f9:
49:c8:ea:55:c4:61:d8:fe:34:dd:68:f3:22:f5:63:
d3:c7:17:f2:b4:2a:a9:4f:d5:16:3c:ca:48:fc:ae:
dd:28:b2:8f:c7:2e:5c:f2:60:2d:cd:c0:93:7f:d4:
9a:33:01:a0:58:90:b5:94:a2:ed:e5:67:d6:cd:2c:
af:0a:74:81:45:d5:86:6b:69:5c:12:4a:d3:c0:c8:
e8:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:58:B2:DD:BC:29:FF:A0:38:70:F0:6E:31:A0:D6:14:CE:21:E3:61
X509v3 Authority Key Identifier:
keyid:49:0D:B9:99:CA:4C:E2:87:C5:C9:2A:B1:67:A5:00:90:22:59:BB:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SQ25mcpM4ofFySqxZ6UAkCJZuwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:30:10:ae:7d:b2:32:59:d1:7b:1d:5c:5d:61:cb:0f:c6:07:
35:91:75:ac:00:6b:16:3a:ae:91:15:c6:5f:e5:e7:1d:37:4d:
ae:65:b5:c1:e8:83:cd:e6:2c:5d:d9:07:6b:a1:ba:98:e2:2f:
df:4e:27:cd:88:8e:8d:af:18:79:7e:b6:fe:d2:81:c7:83:94:
8a:93:49:5e:4d:c8:9e:42:db:7f:0e:d5:9d:3e:70:54:45:e6:
8f:6c:1a:f9:4e:fe:ae:c5:52:a6:df:15:e3:02:c7:39:fa:dd:
c0:32:40:24:d0:08:f7:53:47:4a:11:75:cb:3a:d1:67:ec:92:
e1:3d:b2:0a:29:07:89:87:be:83:cd:59:bf:dd:23:a8:d7:f4:
ec:3b:a4:c4:b6:b8:c8:5d:0a:89:81:06:94:6b:c8:87:4c:ab:
1d:63:69:06:bf:14:c2:8d:91:87:da:36:e7:f9:35:a1:84:36:
01:16:85:da:40:f5:8c:26:9e:13:57:c2:82:c2:aa:89:7c:87:
3f:ac:de:5b:e0:a8:52:34:2a:8a:98:ed:3a:7f:27:de:61:d5:
89:e5:a8:55:b8:bf:23:e0:2a:f0:d3:aa:dc:e5:da:03:fa:29:
75:9b:f9:07:8f:5d:76:24:a6:c8:12:4d:09:5f:7a:ea:f5:72:
95:4c:77:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 00:08:31 2025 by rpki-client