Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.mft
File: SQsh95ueovPQQjdHFIZ9EkAZlds.mft (raw, json)
Hash identifier: UUpEJX8+AIlpAIkFaC5XxedI3A4OpD+X+Y4cHYLfHo8=
Subject key identifier: 2E:8D:42:B0:95:03:95:E3:90:24:55:37:09:06:E5:EE:02:BE:11:FF
Authority key identifier: 49:0B:21:F7:9B:9E:A2:F3:D0:42:37:47:14:86:7D:12:40:19:95:DB
Certificate issuer: /CN=490b21f79b9ea2f3d042374714867d12401995db
Certificate serial: 019658DDA1CBEE9F04290427DADC673FA4F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SQsh95ueovPQQjdHFIZ9EkAZlds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.mft
Manifest number: 1504
Signing time: Mon 21 Apr 2025 15:00:41 +0000
Manifest this update: Mon 21 Apr 2025 15:00:41 +0000
Manifest next update: Tue 22 Apr 2025 15:00:41 +0000
Files and hashes: 1: NApugC31V5WK63Ny4-racw1twJY.roa (hash: bVtlfHYisvNWIzitGovNgNsC2+/TaBl7fpGIvEq6gaQ=)
2: OI4m2d90B9xfmwLaDwu0RLIhyHI.roa (hash: 1tPpSMdOXEc4uC4QEVA58ahEFZcfSMXztb+GTkRhAk8=)
3: SQsh95ueovPQQjdHFIZ9EkAZlds.crl (hash: 8brsul8Rr+v5B+ynG2qrFi+XSTP1LHUiFgyueZ37UnQ=)
4: i4v6AZ8AjCY-DaijxXBLxpCWr-o.roa (hash: IzqUiUJUiq+h6Lhm9373nMFr5yy8oOrsxUoRI4smlK0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.mft
rsync://rpki.ripe.net/repository/DEFAULT/SQsh95ueovPQQjdHFIZ9EkAZlds.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:58:dd:a1:cb:ee:9f:04:29:04:27:da:dc:67:3f:a4:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=490b21f79b9ea2f3d042374714867d12401995db
Validity
Not Before: Apr 21 15:00:41 2025 GMT
Not After : Apr 22 15:00:41 2025 GMT
Subject: CN=2e8d42b0950395e3902455370906e5ee02be11ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:0f:f1:07:eb:d1:d6:f0:38:a2:c9:bf:f6:4c:
3f:4f:2c:0b:88:78:8a:c9:a2:82:e1:17:f6:6b:5f:
61:c7:c7:4e:df:29:92:05:9f:2e:9e:0a:f1:8e:3c:
e0:66:d7:14:e8:c5:de:76:69:9b:f4:a3:bc:d0:07:
c4:ea:b3:12:51:db:52:ca:03:c2:a0:e0:f0:09:cf:
17:07:2c:2c:18:9e:3b:c0:26:d5:7f:96:2a:4a:27:
54:57:ff:61:c2:64:9d:8d:a9:b6:f0:c9:19:58:97:
9c:6f:ca:3a:72:6e:57:f5:e1:62:fb:de:00:3d:3f:
92:ef:60:b6:2d:47:b9:9c:9a:6b:7a:21:49:37:af:
58:1b:09:a0:63:63:30:d3:0f:08:1d:89:64:8a:ac:
a2:ca:cf:1b:62:98:03:09:34:72:97:4f:87:84:d8:
b6:48:d7:25:fc:ef:3a:7c:cf:c5:24:78:b8:d8:9d:
83:9c:96:b4:5c:95:b3:9f:96:d9:70:8f:b8:8e:b1:
1b:e4:47:d5:3c:ef:10:c3:bc:7e:aa:8f:d2:90:45:
f4:c0:9c:8b:79:94:59:42:2b:71:53:f6:34:1f:cd:
b5:1c:2f:21:0b:a7:94:66:ae:b6:e7:b2:fc:2a:4c:
c8:ed:53:b8:e4:97:f6:41:bf:ee:de:6f:93:fe:74:
ed:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:8D:42:B0:95:03:95:E3:90:24:55:37:09:06:E5:EE:02:BE:11:FF
X509v3 Authority Key Identifier:
keyid:49:0B:21:F7:9B:9E:A2:F3:D0:42:37:47:14:86:7D:12:40:19:95:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SQsh95ueovPQQjdHFIZ9EkAZlds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/e10165-b4cd-4321-bf3c-480c32f400e1/1/SQsh95ueovPQQjdHFIZ9EkAZlds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:3b:56:51:47:cb:a6:83:3b:f7:89:2b:67:9a:a7:e1:8c:0d:
c3:c0:c7:65:e8:ec:ba:7c:ec:81:2c:65:1a:a0:d5:9a:35:f6:
5b:d7:f7:83:a9:df:e9:66:9f:19:23:9b:d7:3a:d4:16:c6:21:
5c:57:59:58:72:1f:d7:99:16:b5:e0:8c:30:87:40:29:07:c8:
86:81:fc:fe:0a:88:b5:df:0a:46:fa:72:9d:a3:e7:ce:1f:4c:
f7:56:34:d0:cb:d1:25:2d:a2:8d:f5:f1:36:47:44:a2:7b:26:
73:0e:7e:8d:e9:3c:a0:f1:d4:9d:3f:4d:36:f0:30:0d:d1:36:
29:ec:b0:07:58:44:c8:9d:66:a2:c1:74:c5:9b:8d:c5:5f:68:
a1:3c:bb:a2:55:3d:ae:8a:1b:b1:38:b7:27:af:b6:1f:40:ec:
6a:b4:41:d6:1d:a2:d5:2f:e6:fc:21:41:47:a2:c8:c6:cc:fc:
1d:f2:28:3c:a1:49:0d:99:a7:a6:90:28:28:db:4e:4f:87:b1:
4f:ef:c9:0a:9b:af:b9:ae:6c:d8:26:e5:ec:f9:a6:b4:aa:43:
4f:7a:07:e4:9c:8d:5e:43:99:2e:c9:a7:3d:d2:a3:04:6c:02:
d1:0f:66:f4:ae:26:10:69:e2:89:3b:bd:cc:09:9b:37:a2:3f:
fd:f8:66:8a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZY3aHL7p8EKQQn2txnP6TzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ5MGIyMWY3OWI5ZWEyZjNkMDQyMzc0NzE0ODY3ZDEyNDAx
OTk1ZGIwHhcNMjUwNDIxMTUwMDQxWhcNMjUwNDIyMTUwMDQxWjAzMTEwLwYDVQQD
EygyZThkNDJiMDk1MDM5NWUzOTAyNDU1MzcwOTA2ZTVlZTAyYmUxMWZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6A/xB+vR1vA4osm/9kw/TywLiHiK
yaKC4Rf2a19hx8dO3ymSBZ8ungrxjjzgZtcU6MXedmmb9KO80AfE6rMSUdtSygPC
oODwCc8XBywsGJ47wCbVf5YqSidUV/9hwmSdjam28MkZWJecb8o6cm5X9eFi+94A
PT+S72C2LUe5nJpreiFJN69YGwmgY2Mw0w8IHYlkiqyiys8bYpgDCTRyl0+HhNi2
SNcl/O86fM/FJHi42J2DnJa0XJWzn5bZcI+4jrEb5EfVPO8Qw7x+qo/SkEX0wJyL
eZRZQitxU/Y0H821HC8hC6eUZq6257L8KkzI7VO45Jf2Qb/u3m+T/nTtUwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC6NQrCVA5XjkCRVNwkG5e4CvhH/MB8GA1UdIwQY
MBaAFEkLIfebnqLz0EI3RxSGfRJAGZXbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU1FzaDk1dWVvdlBRUWpkSEZJWjlFa0FabGRzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS9lMTAxNjUtYjRjZC00MzIxLWJmM2Mt
NDgwYzMyZjQwMGUxLzEvU1FzaDk1dWVvdlBRUWpkSEZJWjlFa0FabGRzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZS9lMTAxNjUtYjRjZC00MzIxLWJmM2MtNDgwYzMyZjQwMGUx
LzEvU1FzaDk1dWVvdlBRUWpkSEZJWjlFa0FabGRzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALjtWUUfL
poM794krZ5qn4YwNw8DHZejsunzsgSxlGqDVmjX2W9f3g6nf6WafGSOb1zrUFsYh
XFdZWHIf15kWteCMMIdAKQfIhoH8/gqItd8KRvpynaPnzh9M91Y00MvRJS2ijfXx
NkdEonsmcw5+jek8oPHUnT9NNvAwDdE2KeywB1hEyJ1mosF0xZuNxV9ooTy7olU9
roobsTi3J6+2H0DsarRB1h2i1S/m/CFBR6LIxsz8HfIoPKFJDZmnppAoKNtOT4ex
T+/JCpuvua5s2Cbl7PmmtKpDT3oH5JyNXkOZLsmnPdKjBGwC0Q9m9K4mEGniiTu9
zAmbN6I//fhmig==
-----END CERTIFICATE-----
Generated at Mon Apr 21 20:07:13 2025 by rpki-client