Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/f5d730-f8eb-4f80-9a9c-9abe4e6c2be1/1/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.mft
File: sqhTcekvOaK-QkdgsE5HrZ2j7Ts.mft (raw, json)
Hash identifier: 4WkpSI4g/Nh8x5Jp8KFuKJT/PxGX17l/YKx03GnJFxQ=
Subject key identifier: A2:72:BC:94:77:2B:47:7A:00:BA:E7:18:66:B3:D5:2F:09:9F:9E:E1
Authority key identifier: B2:A8:53:71:E9:2F:39:A2:BE:42:47:60:B0:4E:47:AD:9D:A3:ED:3B
Certificate issuer: /CN=b2a85371e92f39a2be424760b04e47ad9da3ed3b
Certificate serial: 0196556E89E610C674C091E3B6AD80F5EDF9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/f5d730-f8eb-4f80-9a9c-9abe4e6c2be1/1/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.mft
Manifest number: 019C
Signing time: Sun 20 Apr 2025 23:00:29 +0000
Manifest this update: Sun 20 Apr 2025 23:00:29 +0000
Manifest next update: Mon 21 Apr 2025 23:00:29 +0000
Files and hashes: 1: sqhTcekvOaK-QkdgsE5HrZ2j7Ts.crl (hash: SeA05OUJTKmOjs3UOgNK1lAKJRYZZLMZXwG2sH/Al9I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/f5d730-f8eb-4f80-9a9c-9abe4e6c2be1/1/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/f5d730-f8eb-4f80-9a9c-9abe4e6c2be1/1/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.mft
rsync://rpki.ripe.net/repository/DEFAULT/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:6e:89:e6:10:c6:74:c0:91:e3:b6:ad:80:f5:ed:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2a85371e92f39a2be424760b04e47ad9da3ed3b
Validity
Not Before: Apr 20 23:00:29 2025 GMT
Not After : Apr 21 23:00:29 2025 GMT
Subject: CN=a272bc94772b477a00bae71866b3d52f099f9ee1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:2c:d1:7a:90:9a:79:4d:e8:d5:2c:f4:07:e6:
97:1f:71:6d:72:cb:d8:4f:d2:e0:d0:1f:e8:11:56:
ad:81:e7:88:97:25:22:e1:f9:65:3e:25:f9:c2:8b:
3c:60:81:67:e6:9d:08:2c:a3:be:b2:14:5e:cc:ca:
ef:10:f3:29:e1:cf:a5:2f:8c:d3:20:2c:4b:8a:74:
4a:28:c6:c9:a4:e4:30:1c:5b:e4:a4:ca:fc:f1:2c:
bc:55:8a:01:c9:68:96:9d:78:35:af:d1:8e:b4:76:
0c:57:d3:34:17:45:aa:36:ad:0b:56:66:06:28:60:
0c:de:fa:9e:4e:c6:2d:78:7d:3b:d7:d9:f9:0b:8d:
2a:b7:e1:52:63:57:a7:29:7b:7a:e0:de:3a:66:d7:
ce:ca:a0:a7:8a:fd:0c:92:ce:26:17:84:53:24:90:
a9:f6:55:e5:e5:a9:8a:6c:69:54:b6:93:32:3a:ed:
58:39:c7:48:86:9e:52:94:9a:ff:4e:86:da:01:c1:
12:95:a0:0f:69:e1:41:59:f9:15:43:0b:3b:c5:2b:
35:4b:bb:17:41:d5:83:e2:9d:b9:56:0b:56:87:7b:
44:54:ac:65:9f:db:53:90:4f:f4:ba:2e:b6:f5:55:
ee:48:1d:0c:00:4d:2d:f3:5b:92:f4:66:3f:53:ac:
52:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:72:BC:94:77:2B:47:7A:00:BA:E7:18:66:B3:D5:2F:09:9F:9E:E1
X509v3 Authority Key Identifier:
keyid:B2:A8:53:71:E9:2F:39:A2:BE:42:47:60:B0:4E:47:AD:9D:A3:ED:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/f5d730-f8eb-4f80-9a9c-9abe4e6c2be1/1/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/f5d730-f8eb-4f80-9a9c-9abe4e6c2be1/1/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:bc:cb:63:ad:34:a6:ed:80:04:02:9c:f7:fa:b4:93:23:71:
14:3f:c8:07:a6:c6:fd:72:7d:a9:51:bf:9a:2f:c9:09:b7:98:
73:9e:52:8b:f0:3e:13:aa:fc:d3:ba:2d:16:88:97:65:c4:e5:
bb:08:f1:3d:60:92:9e:53:96:97:61:1d:f2:85:ce:46:05:fd:
74:33:f7:3a:ac:e7:7c:9a:e3:08:34:d5:b6:56:32:ac:ef:05:
88:17:18:54:bc:04:61:43:b1:f3:54:79:70:58:89:9e:bc:3d:
c6:c4:74:4b:c5:4e:a5:3f:8b:42:8c:1a:73:3a:1f:4a:dd:77:
a0:96:02:40:4f:80:33:dd:9a:95:bb:a0:86:96:b5:2e:ab:b6:
3b:0f:bf:ca:63:cd:f4:d1:1b:31:54:4d:46:c1:a7:ad:8c:d8:
ff:6e:0f:b0:71:99:16:fa:c7:39:fa:2b:93:20:85:d1:4f:a0:
2b:a6:24:87:8a:78:4b:f9:f5:cb:52:ae:a0:1c:e9:57:67:08:
c6:a9:9c:6b:e1:6f:51:1a:3e:7a:f3:c6:e9:58:ad:e8:02:75:
46:ec:b5:d0:2d:6d:a7:d6:00:aa:26:66:8b:7e:31:bb:6f:03:
1e:0e:06:77:ff:78:12:ac:6b:f8:5d:00:0d:69:4e:b8:97:95:
64:b0:2d:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:19:19 2025 by rpki-client