Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.mft
File: SFk-QNpaUvMi21oEwg-0htThVQI.mft (raw, json)
Hash identifier: Ly4pp7go10cmn9a9XhGv5+hHLO5EpsdO4tiGweSTTXA=
Subject key identifier: 24:B7:91:59:AE:BA:28:99:60:2C:D5:AE:85:73:B0:47:63:48:3D:79
Authority key identifier: 48:59:3E:40:DA:5A:52:F3:22:DB:5A:04:C2:0F:B4:86:D4:E1:55:02
Certificate issuer: /CN=48593e40da5a52f322db5a04c20fb486d4e15502
Certificate serial: 019776E54E065420662BCDC6E236721EF4A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SFk-QNpaUvMi21oEwg-0htThVQI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.mft
Manifest number: 124F
Signing time: Mon 16 Jun 2025 04:00:28 +0000
Manifest this update: Mon 16 Jun 2025 04:00:28 +0000
Manifest next update: Tue 17 Jun 2025 04:00:28 +0000
Files and hashes: 1: SFk-QNpaUvMi21oEwg-0htThVQI.crl (hash: uwIn/VTD+1j6Jn6sNQAjSYsuca2fcXOO3H9F/4c/a3M=)
2: Xe1gxuRIIOL95lwNFDlJJ4LeD98.roa (hash: E3ThdKoNF/zSVQO/0Rh8O4e1tJqwTsPdKIVV0WmD0l8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.mft
rsync://rpki.ripe.net/repository/DEFAULT/SFk-QNpaUvMi21oEwg-0htThVQI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 04:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:76:e5:4e:06:54:20:66:2b:cd:c6:e2:36:72:1e:f4:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48593e40da5a52f322db5a04c20fb486d4e15502
Validity
Not Before: Jun 16 04:00:28 2025 GMT
Not After : Jun 17 04:00:28 2025 GMT
Subject: CN=24b79159aeba2899602cd5ae8573b04763483d79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:e4:81:33:e9:3f:91:c7:27:1e:74:61:a6:dc:
1b:b0:3c:fa:9d:01:5a:78:85:3c:e7:59:9c:79:3d:
13:03:71:08:24:9f:94:b3:c5:94:78:16:58:89:e5:
dc:6d:74:09:1b:a1:dd:bc:2a:78:b4:d7:73:6d:b6:
56:93:f8:df:b3:8a:38:11:44:eb:01:c5:a0:83:6c:
90:6b:7a:e4:78:d3:47:8a:db:16:e5:59:1b:6b:b3:
21:3c:04:7f:2e:1b:a4:c7:7c:84:ba:f0:ea:cd:db:
1d:5b:1d:85:ff:0d:b2:13:f7:f2:ed:cf:50:87:08:
d6:50:4e:e2:23:1e:72:12:b1:16:39:3a:16:98:b6:
99:84:ab:53:0b:0a:65:c5:10:8a:8b:25:09:f7:1e:
a3:f5:34:b5:ea:5f:1f:cd:9a:9b:23:86:6f:d8:5a:
ec:97:f5:10:40:b4:67:11:09:26:b9:23:48:fc:b6:
e6:ba:7f:a5:41:57:00:84:1e:18:4b:df:3c:ae:2e:
56:9c:4b:fc:18:51:83:03:5d:27:f5:b1:e3:9f:88:
99:ee:ca:ff:92:27:35:a7:4f:2f:d2:98:e1:29:2b:
9d:20:ce:07:0b:4f:dd:4f:51:37:dc:99:d6:72:5b:
66:7c:0f:c6:b1:02:59:e3:93:81:6e:a2:16:ca:90:
05:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:B7:91:59:AE:BA:28:99:60:2C:D5:AE:85:73:B0:47:63:48:3D:79
X509v3 Authority Key Identifier:
keyid:48:59:3E:40:DA:5A:52:F3:22:DB:5A:04:C2:0F:B4:86:D4:E1:55:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SFk-QNpaUvMi21oEwg-0htThVQI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:39:62:36:c5:2b:dd:9b:80:9e:d6:27:93:8e:76:e0:76:89:
e4:51:8b:a2:4e:de:1a:41:47:68:09:ed:a9:b2:b9:dd:0c:7b:
9b:dc:66:c4:21:44:1d:a5:d2:a4:19:ef:53:b3:54:fb:85:55:
30:c7:0e:18:f7:27:71:1e:43:7f:12:bc:8c:8f:66:59:cc:ea:
e7:8a:90:f7:e2:f6:51:e5:31:84:2a:36:bc:35:45:33:34:d4:
5b:72:12:a3:e2:5e:65:a6:92:3c:6b:d6:ef:ee:ca:ae:62:0f:
30:5e:a7:84:81:b5:fd:f6:42:69:bc:e3:fd:d0:e7:75:db:96:
eb:63:6c:01:94:88:f3:b7:df:99:94:34:5a:4c:ef:17:45:b2:
a8:c7:37:fa:d2:39:76:26:ec:ce:02:6f:66:9f:8a:12:33:22:
b8:43:cd:8e:09:4f:4d:1b:58:55:f2:e1:c5:93:b0:51:2b:55:
24:58:82:46:fa:f3:ef:f0:74:2e:b3:27:92:98:7c:41:0e:de:
82:aa:79:3f:ee:27:6d:b8:92:dc:df:38:ec:30:76:02:72:c7:
a2:da:6d:e4:bd:37:79:e2:68:a6:17:e8:d6:0f:de:f6:3f:f4:
8d:99:ac:ba:7a:06:a3:d1:da:d2:60:cd:e0:23:ce:53:b9:65:
f5:24:02:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 10:43:52 2025 by rpki-client