Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.mft
File: SQsh95ueovPQQjdHFIZ9EkAZlds.mft (raw, json)
Hash identifier: cpM8xkJHkDxNHjas7gtwAIs0D2zb9HIJC4cjeWrvq7k=
Subject key identifier: D7:73:14:CC:91:CD:60:52:F3:37:5B:E3:7B:AC:85:F5:5A:9D:48:96
Authority key identifier: 49:0B:21:F7:9B:9E:A2:F3:D0:42:37:47:14:86:7D:12:40:19:95:DB
Certificate issuer: /CN=490b21f79b9ea2f3d042374714867d12401995db
Certificate serial: 019746670961F7DF2BD97C575D21C7ACB4F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SQsh95ueovPQQjdHFIZ9EkAZlds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.mft
Manifest number: 157F
Signing time: Fri 06 Jun 2025 18:00:47 +0000
Manifest this update: Fri 06 Jun 2025 18:00:47 +0000
Manifest next update: Sat 07 Jun 2025 18:00:47 +0000
Files and hashes: 1: NApugC31V5WK63Ny4-racw1twJY.roa (hash: bVtlfHYisvNWIzitGovNgNsC2+/TaBl7fpGIvEq6gaQ=)
2: OI4m2d90B9xfmwLaDwu0RLIhyHI.roa (hash: 1tPpSMdOXEc4uC4QEVA58ahEFZcfSMXztb+GTkRhAk8=)
3: SQsh95ueovPQQjdHFIZ9EkAZlds.crl (hash: z7j+P6QBDzaf5jdux/ea4kMprBrZJPVMUGshr3Bshs4=)
4: i4v6AZ8AjCY-DaijxXBLxpCWr-o.roa (hash: IzqUiUJUiq+h6Lhm9373nMFr5yy8oOrsxUoRI4smlK0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.mft
rsync://rpki.ripe.net/repository/DEFAULT/SQsh95ueovPQQjdHFIZ9EkAZlds.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 18:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:67:09:61:f7:df:2b:d9:7c:57:5d:21:c7:ac:b4:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=490b21f79b9ea2f3d042374714867d12401995db
Validity
Not Before: Jun 6 18:00:47 2025 GMT
Not After : Jun 7 18:00:47 2025 GMT
Subject: CN=d77314cc91cd6052f3375be37bac85f55a9d4896
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:ee:5e:6b:97:39:7b:7c:ea:d3:9e:7a:27:b0:
d3:28:38:ea:9d:af:48:5d:6c:47:52:e9:e3:8a:6f:
7e:03:b9:c7:8a:bc:5b:1f:c9:76:31:2e:83:7f:c3:
04:07:82:36:92:2b:f9:46:2f:05:cc:f4:de:96:b8:
8e:93:4a:64:dc:65:03:4e:29:64:3c:5d:c2:c6:b0:
c1:70:b9:9f:0f:aa:45:b7:7e:63:54:03:ec:d1:b0:
fa:53:0d:4c:46:8e:ef:3c:06:0e:36:8a:f9:f3:7a:
70:47:2d:0b:7c:b6:07:6b:44:5d:aa:81:84:07:67:
ca:f7:ad:94:eb:39:26:cd:cd:ee:b8:84:c8:85:3a:
b2:b2:4d:d1:07:2a:91:82:fc:f0:e0:9f:08:ca:24:
7e:d8:2e:d8:ab:d9:91:ce:41:de:72:de:09:05:82:
c2:2f:f1:46:d4:e9:32:57:2b:e3:a2:f3:8c:9c:67:
5c:92:9b:20:f1:ca:a3:82:d0:53:29:5f:86:f8:00:
cb:95:e1:ab:5f:ed:0b:ba:e7:89:ad:f5:71:28:1a:
1b:37:dc:ec:2e:99:ed:e9:50:d7:24:0b:db:57:44:
d0:58:54:60:f9:3e:a3:5e:f5:36:f0:44:d0:7c:aa:
a9:15:b1:2b:85:ae:a4:d3:32:89:27:83:d5:7e:3f:
d3:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:73:14:CC:91:CD:60:52:F3:37:5B:E3:7B:AC:85:F5:5A:9D:48:96
X509v3 Authority Key Identifier:
keyid:49:0B:21:F7:9B:9E:A2:F3:D0:42:37:47:14:86:7D:12:40:19:95:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SQsh95ueovPQQjdHFIZ9EkAZlds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:b4:7e:4b:01:d0:60:b5:e4:41:1c:1a:13:73:af:c1:7b:86:
09:d9:73:8b:91:0d:2b:5a:74:02:d3:a0:bd:7f:59:f6:03:56:
1b:a0:64:27:d0:92:e4:f4:b6:60:9b:6a:15:b7:44:e9:0e:5e:
aa:82:af:2b:d4:d5:63:4d:89:d3:51:89:ca:13:16:4e:0a:3c:
b8:da:6e:f3:14:44:2c:40:23:ca:7b:b1:30:27:4f:7a:75:10:
45:71:c4:6d:20:9b:68:17:e3:12:87:51:51:4d:1f:05:a1:f3:
e5:e7:0d:60:e5:3b:a2:2d:3a:ca:f4:ef:5a:4a:31:a0:2e:e5:
e6:93:c2:ee:d7:7e:07:13:d9:94:24:68:8d:6f:f5:a0:0c:63:
07:40:d1:9b:10:92:7f:78:6c:78:a9:ca:9c:92:08:5d:b2:29:
f7:c0:65:5e:7d:86:e1:00:dc:11:67:5e:a1:c2:bc:23:eb:0e:
a7:e9:d7:31:d1:7b:b9:23:2f:84:68:bb:aa:5a:31:26:22:77:
89:84:cf:e1:9d:ad:58:d0:79:c9:95:69:04:27:1c:2e:a2:bf:
cb:c6:53:8a:f3:0d:b7:01:12:12:a7:aa:c4:36:70:b2:28:64:
72:a7:65:7d:64:f1:dd:d5:c0:91:9e:d2:2a:26:78:c6:f6:96:
fb:d2:fc:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 03:36:14 2025 by rpki-client