Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.mft
File: SQsh95ueovPQQjdHFIZ9EkAZlds.mft (raw, json)
Hash identifier: O/ELd0SD0+jfYPffokV3VVi9wpiSHIsv85otf4Yuraw=
Subject key identifier: F7:AD:69:D8:31:65:2F:84:2D:17:4A:8F:05:F9:31:51:E2:BA:37:E7
Authority key identifier: 49:0B:21:F7:9B:9E:A2:F3:D0:42:37:47:14:86:7D:12:40:19:95:DB
Certificate issuer: /CN=490b21f79b9ea2f3d042374714867d12401995db
Certificate serial: 0199277C57224829572CFE4F2147628510E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SQsh95ueovPQQjdHFIZ9EkAZlds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.mft
Manifest number: 1678
Signing time: Mon 08 Sep 2025 04:01:24 +0000
Manifest this update: Mon 08 Sep 2025 04:01:24 +0000
Manifest next update: Tue 09 Sep 2025 04:01:24 +0000
Files and hashes: 1: NApugC31V5WK63Ny4-racw1twJY.roa (hash: bVtlfHYisvNWIzitGovNgNsC2+/TaBl7fpGIvEq6gaQ=)
2: OI4m2d90B9xfmwLaDwu0RLIhyHI.roa (hash: 1tPpSMdOXEc4uC4QEVA58ahEFZcfSMXztb+GTkRhAk8=)
3: SQsh95ueovPQQjdHFIZ9EkAZlds.crl (hash: Ij+mOkIh1E603MI5mllTC84/rlMdmeQGfAYDMjj7kJ8=)
4: i4v6AZ8AjCY-DaijxXBLxpCWr-o.roa (hash: IzqUiUJUiq+h6Lhm9373nMFr5yy8oOrsxUoRI4smlK0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.mft
rsync://rpki.ripe.net/repository/DEFAULT/SQsh95ueovPQQjdHFIZ9EkAZlds.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Sep 2025 01:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:27:7c:57:22:48:29:57:2c:fe:4f:21:47:62:85:10:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=490b21f79b9ea2f3d042374714867d12401995db
Validity
Not Before: Sep 8 04:01:24 2025 GMT
Not After : Sep 9 04:01:24 2025 GMT
Subject: CN=f7ad69d831652f842d174a8f05f93151e2ba37e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:39:22:9f:ae:c5:94:4d:fb:20:e4:98:77:08:
44:07:c5:e3:20:f4:19:7f:46:48:d9:1c:3c:d8:75:
09:67:92:2a:ea:f6:67:f2:38:e6:ea:3e:93:15:75:
9e:9a:e2:50:2d:5e:c2:f5:f0:fd:69:52:68:c5:33:
2c:97:75:e2:36:38:fb:6d:e8:b1:6b:b2:50:c7:b9:
c6:89:0b:64:50:a3:ff:58:fa:a3:5e:8c:11:21:d6:
46:ef:0a:f5:8d:77:48:f6:cd:8f:98:6b:c6:cf:43:
50:3f:76:43:71:f5:e9:f0:0a:23:49:5b:a0:ed:c2:
d3:af:b6:10:34:c5:aa:31:46:2b:c9:4f:fb:02:69:
22:98:eb:67:b0:c7:1a:76:84:25:c4:b9:e2:cc:17:
67:6e:20:05:fb:b2:0e:57:eb:92:62:7b:a7:46:fc:
36:32:4a:6f:b4:9b:51:0c:36:05:5e:b2:04:d5:3d:
4f:a8:99:8c:3f:36:a7:7d:e7:ec:8a:12:34:42:6d:
e2:7f:01:3e:67:fd:26:25:5f:70:87:6f:c3:d8:79:
b6:d9:cb:e7:16:93:38:70:23:63:97:1a:27:42:5c:
28:b9:6c:35:2b:9c:d9:91:e6:8f:9a:2a:da:82:6c:
ad:bd:ce:b8:8f:4a:51:dc:4f:e4:31:b0:ca:36:88:
c8:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:AD:69:D8:31:65:2F:84:2D:17:4A:8F:05:F9:31:51:E2:BA:37:E7
X509v3 Authority Key Identifier:
keyid:49:0B:21:F7:9B:9E:A2:F3:D0:42:37:47:14:86:7D:12:40:19:95:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SQsh95ueovPQQjdHFIZ9EkAZlds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:34:5b:74:7b:ee:51:4b:d1:3c:81:66:e4:2c:68:5d:18:ba:
77:9c:00:9f:82:62:56:63:90:3e:8f:d3:36:ea:53:be:9a:9d:
26:00:2c:2b:e3:23:37:c5:14:8a:a3:15:f8:44:8a:c9:85:59:
f7:2c:06:2f:ff:86:37:64:58:d4:dd:3c:5a:72:e7:53:ae:02:
8a:02:b1:7e:3a:d1:b0:c4:d6:51:c4:d1:18:11:0b:8b:03:37:
5d:92:eb:17:4f:7d:5a:9d:56:a0:dd:10:56:37:fe:f2:a8:2a:
ad:c5:ca:8d:8f:a0:72:3d:26:29:6b:a0:f7:53:5d:cd:82:81:
51:7c:87:32:84:67:43:52:0c:c2:b7:c1:27:a6:13:fe:1e:ae:
7f:fd:20:02:b3:cb:99:1a:91:36:53:2a:d0:25:13:c8:62:07:
52:0a:c9:f0:ce:4c:e1:e1:29:ef:05:18:68:5a:87:e6:66:38:
14:3e:bc:22:c7:81:35:a0:4e:9d:83:d5:34:cb:d7:fc:eb:0d:
31:fb:7f:71:21:c7:14:7b:c9:f7:a1:93:85:ef:0e:98:23:9a:
83:0f:b3:ac:43:b2:35:a9:cc:9e:68:a6:e0:37:ab:cb:7e:d3:
4c:ca:fd:f9:2c:9f:4e:d3:23:62:6f:af:4a:77:f5:7a:84:6b:
97:fd:cf:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 8 08:14:32 2025 by rpki-client