Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.mft
File: SFk-QNpaUvMi21oEwg-0htThVQI.mft (raw, json)
Hash identifier: waqY4z1x9UsZWlEPJFDCsqRA1Pon/ctezhrVWU+mF+w=
Subject key identifier: 96:BD:4A:18:B0:CA:AC:B3:82:EF:F3:1A:7F:BB:5B:99:2B:3E:C5:FF
Authority key identifier: 48:59:3E:40:DA:5A:52:F3:22:DB:5A:04:C2:0F:B4:86:D4:E1:55:02
Certificate issuer: /CN=48593e40da5a52f322db5a04c20fb486d4e15502
Certificate serial: 01974A7A4D0547D5115BBFAF172AE5003038
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SFk-QNpaUvMi21oEwg-0htThVQI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.mft
Manifest number: 1238
Signing time: Sat 07 Jun 2025 13:00:18 +0000
Manifest this update: Sat 07 Jun 2025 13:00:18 +0000
Manifest next update: Sun 08 Jun 2025 13:00:18 +0000
Files and hashes: 1: SFk-QNpaUvMi21oEwg-0htThVQI.crl (hash: Z8MYQOYZD6TCKIZvpxn7dkTYCF5MjmKiCmLaZNHRiJA=)
2: Xe1gxuRIIOL95lwNFDlJJ4LeD98.roa (hash: E3ThdKoNF/zSVQO/0Rh8O4e1tJqwTsPdKIVV0WmD0l8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.mft
rsync://rpki.ripe.net/repository/DEFAULT/SFk-QNpaUvMi21oEwg-0htThVQI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7a:4d:05:47:d5:11:5b:bf:af:17:2a:e5:00:30:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48593e40da5a52f322db5a04c20fb486d4e15502
Validity
Not Before: Jun 7 13:00:18 2025 GMT
Not After : Jun 8 13:00:18 2025 GMT
Subject: CN=96bd4a18b0caacb382eff31a7fbb5b992b3ec5ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:a0:8e:f7:65:b6:94:0e:d7:57:b0:00:b1:bc:
9e:ef:13:c4:6d:1e:f6:17:2b:0a:0b:60:07:73:19:
0e:4c:b1:7e:0f:ff:66:7f:ff:2f:5a:39:5f:77:52:
a1:a9:20:14:8b:f1:e7:51:06:02:6d:eb:d6:73:83:
8a:52:6d:fb:4a:b6:4e:8d:cf:e5:16:49:ab:7a:d7:
09:e4:e5:9c:92:43:94:9b:d5:fc:ba:c6:c6:5a:00:
50:bc:fc:d1:be:69:bf:ad:64:64:d9:49:6d:af:2a:
c6:48:bf:6b:26:b0:5b:b0:ea:16:46:38:8d:ed:00:
f9:b3:f2:26:16:7e:86:c2:c9:85:bb:01:5e:ee:e7:
25:3a:ee:6d:63:41:4c:48:99:c5:94:a0:d2:9a:56:
71:a0:f0:0b:52:40:4a:d6:45:d7:79:83:e4:08:e6:
c5:82:f3:cf:03:56:5b:d6:8a:01:5d:73:14:ec:63:
90:59:54:91:02:c5:58:e7:fb:f2:a5:a7:5f:cc:05:
83:0f:53:97:ca:20:a6:9d:07:52:2d:b6:7d:02:01:
35:bb:18:19:eb:9d:d6:2a:c6:35:33:2a:2e:03:b8:
a7:02:98:f4:04:5c:86:5d:e5:86:4b:61:25:23:0f:
76:ca:c9:4d:6a:d5:92:ef:30:1f:b5:e9:7a:74:2d:
64:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:BD:4A:18:B0:CA:AC:B3:82:EF:F3:1A:7F:BB:5B:99:2B:3E:C5:FF
X509v3 Authority Key Identifier:
keyid:48:59:3E:40:DA:5A:52:F3:22:DB:5A:04:C2:0F:B4:86:D4:E1:55:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SFk-QNpaUvMi21oEwg-0htThVQI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:41:3d:ed:31:7d:e5:55:91:18:1c:43:36:b7:a7:83:be:91:
c3:df:ee:f0:bc:b3:c2:4d:07:9a:80:84:ad:2a:c3:7c:aa:68:
87:bb:3c:db:51:15:a8:ea:ec:10:e6:12:e7:f6:e5:30:45:a7:
8d:d8:0b:a2:8e:98:8f:a3:f5:ad:53:38:96:c0:24:84:65:4f:
be:dc:12:4c:87:38:e3:0e:b6:2a:87:c2:c7:65:e7:96:7f:2d:
5d:59:6c:de:62:90:e9:a2:d7:6a:29:b9:5b:aa:37:d8:9c:40:
5a:d6:2d:03:3f:5c:94:f6:e4:40:0a:e3:1d:dd:10:14:cb:29:
e3:b0:93:2e:a2:25:da:98:a0:7c:2e:40:f2:05:f4:db:e4:94:
b9:1f:1c:95:b1:ea:b6:d5:f2:bc:12:43:34:e2:9b:d3:b7:aa:
9f:95:d9:fc:26:5d:c9:fa:d9:d2:be:27:ab:74:c7:25:96:9d:
bd:de:bc:83:9f:68:f2:ed:c0:f5:f6:49:9b:f5:a1:33:75:dc:
2e:fd:8c:e7:d7:79:2e:70:78:f3:ac:2f:d0:eb:0d:bc:f7:3e:
df:b0:c2:8f:c4:7e:8c:55:4e:d5:3e:c8:f1:7e:99:2a:cd:2d:
bd:58:79:7b:9a:8c:7e:4d:a2:05:e7:4f:94:9b:b2:b3:a5:54:
fa:15:e8:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:06:33 2025 by rpki-client