Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
File: sgTq-NsT70M8-YIp0jLTMKX14lY.mft (raw, json)
Hash identifier: xSt8X3OhKzMIk5F7cqTqlrIylbQQfjfuqqoi+LhLOVA=
Subject key identifier: 30:5C:C4:DE:4E:17:91:8E:51:2A:6E:FB:8F:98:A1:F7:62:AB:C1:63
Authority key identifier: B2:04:EA:F8:DB:13:EF:43:3C:F9:82:29:D2:32:D3:30:A5:F5:E2:56
Certificate issuer: /CN=b204eaf8db13ef433cf98229d232d330a5f5e256
Certificate serial: 0197526B8ED5D1783837711536F204D2C200
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
Manifest number: 1581
Signing time: Mon 09 Jun 2025 02:01:09 +0000
Manifest this update: Mon 09 Jun 2025 02:01:09 +0000
Manifest next update: Tue 10 Jun 2025 02:01:09 +0000
Files and hashes: 1: sgTq-NsT70M8-YIp0jLTMKX14lY.crl (hash: i+HJF661OegoZQTe/wkylkVo5WV3EGnxSHlPW+VY/mo=)
2: xgKcu0KPsxc8M315Trs0GW1UUwk.roa (hash: ICZ6+2Jz2veLFc1cLdSpid822PA3P/5mVBK8JthGSW0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 21:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:52:6b:8e:d5:d1:78:38:37:71:15:36:f2:04:d2:c2:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b204eaf8db13ef433cf98229d232d330a5f5e256
Validity
Not Before: Jun 9 02:01:09 2025 GMT
Not After : Jun 10 02:01:09 2025 GMT
Subject: CN=305cc4de4e17918e512a6efb8f98a1f762abc163
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:86:39:0c:ab:e3:98:30:86:0e:64:dd:7e:fb:
0f:ea:1b:d2:25:54:5a:7c:9c:eb:d8:81:0f:00:18:
80:2b:b9:d1:0a:36:f8:31:f1:13:51:a4:f3:29:08:
70:ec:9d:38:f0:0e:61:69:bf:d1:08:11:0a:0f:9b:
30:bb:0c:e6:cc:6a:5f:bf:9e:96:65:e0:74:7d:85:
bf:b9:c2:5f:82:1f:cc:39:27:c8:55:63:5e:fb:6f:
96:94:c5:65:c7:2f:4a:a5:fb:13:04:13:cc:a7:d1:
aa:2b:7d:41:1b:0e:29:cb:6f:ce:e8:9b:e2:9d:6b:
6c:0d:5e:e7:98:40:26:4f:62:65:66:52:af:ed:2f:
bb:5b:b6:44:d6:66:6b:0b:1d:3f:2d:1e:a6:c9:0d:
e5:59:e9:a5:c6:4b:99:d7:82:96:90:9e:87:38:53:
f7:3e:85:aa:23:0f:f8:01:21:03:ed:b8:7f:98:17:
0d:5a:31:2b:81:0a:70:c7:d0:97:88:b6:57:81:59:
ba:3c:3f:e2:9d:57:2f:5a:b8:50:a5:03:9a:1b:c0:
65:0a:9c:99:cb:16:a4:85:4e:c6:a2:90:8d:65:25:
7e:fe:b9:8d:61:ef:5e:af:cf:5a:23:c8:5a:ac:46:
f3:ae:0e:01:39:98:1f:c0:90:51:29:3b:aa:67:96:
c8:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:5C:C4:DE:4E:17:91:8E:51:2A:6E:FB:8F:98:A1:F7:62:AB:C1:63
X509v3 Authority Key Identifier:
keyid:B2:04:EA:F8:DB:13:EF:43:3C:F9:82:29:D2:32:D3:30:A5:F5:E2:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:85:bc:c6:89:4e:d7:3d:b7:20:fe:8b:d8:f3:51:4d:26:36:
13:a5:67:cf:36:f3:94:cd:07:c5:81:a4:11:79:73:c2:4f:c8:
a1:9a:c9:6c:52:cf:f0:10:41:80:d3:16:2c:b4:2f:e4:8a:be:
66:03:4a:db:21:98:ce:9d:93:b2:9c:57:13:a7:37:4f:76:88:
ba:f0:4b:c6:3a:89:fc:e9:0a:98:69:7d:52:db:9f:3b:a6:09:
cf:fd:b8:fc:57:a7:94:ec:e1:80:1a:53:ec:03:cb:64:87:02:
8b:7b:f7:78:f8:99:65:2b:ef:ee:5e:74:02:d4:5a:b4:da:cc:
2d:fa:bf:a7:45:48:1e:ba:19:22:2c:19:c3:83:51:eb:69:36:
e1:27:c9:a2:62:89:2f:cd:bc:ef:0d:c0:02:ce:2d:db:1c:d9:
a8:40:65:ef:ff:0c:9a:34:04:eb:1c:3d:55:c8:91:e9:2c:8d:
60:01:22:50:5f:80:b5:ae:5b:51:c7:a3:29:0e:8d:18:cf:ac:
55:de:ba:35:a9:26:43:a2:ea:16:93:5d:6f:28:81:f9:93:80:
f0:d4:7f:21:97:a2:4c:c2:4d:2d:4a:ce:69:7d:38:ba:7a:34:
9f:d2:09:e2:6c:4e:15:a2:23:b1:76:7f:f0:54:33:cc:43:89:
d8:ce:8e:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 07:09:48 2025 by rpki-client