Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/aeae3f-af4d-4eee-b284-a5f6c0aa11de/1/SGUQoxFpcvztleiova_W5FXe0Lo.mft
File: SGUQoxFpcvztleiova_W5FXe0Lo.mft (raw, json)
Hash identifier: kEYc4R+Ckgri2ctBLilFmlcyxTChJjIGh/pFVIGrnDA=
Subject key identifier: DE:64:FC:0C:59:26:18:93:92:7D:1D:5F:8D:82:17:D8:C3:74:6B:4F
Authority key identifier: 48:65:10:A3:11:69:72:FC:ED:95:E8:A8:BD:AF:D6:E4:55:DE:D0:BA
Certificate issuer: /CN=486510a3116972fced95e8a8bdafd6e455ded0ba
Certificate serial: 01974AE887A70F1C6F5347EAD0EE4E0ADCFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SGUQoxFpcvztleiova_W5FXe0Lo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/aeae3f-af4d-4eee-b284-a5f6c0aa11de/1/SGUQoxFpcvztleiova_W5FXe0Lo.mft
Manifest number: 1580
Signing time: Sat 07 Jun 2025 15:00:42 +0000
Manifest this update: Sat 07 Jun 2025 15:00:42 +0000
Manifest next update: Sun 08 Jun 2025 15:00:42 +0000
Files and hashes: 1: SGUQoxFpcvztleiova_W5FXe0Lo.crl (hash: qY/Lbnt0j/xWDhpqW0B1d5CKvvugNQn30412M5W+dwo=)
2: lQwR3y5IAJ7kyCCFVo104fC4SsY.roa (hash: MwEmP7Sqq33K1HUPXLtLK+kd2q/HJrM3DtuK+SIM+zY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/aeae3f-af4d-4eee-b284-a5f6c0aa11de/1/SGUQoxFpcvztleiova_W5FXe0Lo.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/aeae3f-af4d-4eee-b284-a5f6c0aa11de/1/SGUQoxFpcvztleiova_W5FXe0Lo.mft
rsync://rpki.ripe.net/repository/DEFAULT/SGUQoxFpcvztleiova_W5FXe0Lo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:e8:87:a7:0f:1c:6f:53:47:ea:d0:ee:4e:0a:dc:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=486510a3116972fced95e8a8bdafd6e455ded0ba
Validity
Not Before: Jun 7 15:00:42 2025 GMT
Not After : Jun 8 15:00:42 2025 GMT
Subject: CN=de64fc0c59261893927d1d5f8d8217d8c3746b4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:2a:48:d5:a2:ee:55:54:db:c3:76:de:5c:c2:
56:18:4f:5a:a9:fc:87:af:a5:9b:e1:ce:6b:5d:f2:
fa:bb:20:0f:ad:d8:c4:73:e1:bb:5c:7a:eb:02:23:
14:f6:e9:ce:e5:05:ec:b4:75:ea:b7:a8:e3:c9:9b:
b5:f1:9c:98:ef:60:a6:6c:b0:22:26:dd:ac:70:2b:
87:18:0d:d8:73:4c:e5:57:d2:5d:3d:8b:e7:d7:3d:
af:fe:7a:27:5c:71:1b:62:a0:9a:ff:50:d3:0e:44:
69:83:de:36:34:f7:3d:dc:94:da:1a:25:66:3c:1c:
b2:4c:f7:e6:f0:11:d9:f6:6b:a8:4f:a0:de:13:37:
e6:7a:25:05:a8:4e:5d:4b:12:1f:63:cf:62:3f:73:
8b:e3:32:71:be:64:7d:b7:bd:07:31:a0:71:65:65:
c9:cb:9b:c0:2e:59:e4:82:b6:a3:fa:36:42:42:1b:
68:3e:93:b2:80:15:0e:a4:18:86:56:8d:a6:70:fd:
9d:e6:aa:1f:c2:e6:83:45:8d:ca:70:7f:ff:48:b0:
1d:0d:3d:8e:fc:86:72:4c:43:3a:0d:0d:22:a2:c8:
49:ea:b2:22:6a:d4:4b:af:91:e7:98:e0:36:a9:c4:
24:aa:24:45:26:0f:8d:7c:0d:7f:03:e0:80:52:5c:
ef:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:64:FC:0C:59:26:18:93:92:7D:1D:5F:8D:82:17:D8:C3:74:6B:4F
X509v3 Authority Key Identifier:
keyid:48:65:10:A3:11:69:72:FC:ED:95:E8:A8:BD:AF:D6:E4:55:DE:D0:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SGUQoxFpcvztleiova_W5FXe0Lo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/aeae3f-af4d-4eee-b284-a5f6c0aa11de/1/SGUQoxFpcvztleiova_W5FXe0Lo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/aeae3f-af4d-4eee-b284-a5f6c0aa11de/1/SGUQoxFpcvztleiova_W5FXe0Lo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:3a:7f:d7:05:30:5d:7f:d2:44:3e:90:97:1f:b8:01:a4:60:
9f:e7:9a:82:10:1b:40:f2:7f:08:3f:4a:ea:36:db:2c:c4:24:
20:4a:9b:53:bb:85:79:ac:7f:db:60:5e:6b:78:c7:89:c7:95:
84:7c:1a:07:91:c3:3c:8a:99:fa:c4:65:88:91:9d:6e:78:dd:
45:de:27:b0:55:c5:ed:45:9c:9f:51:fb:f7:c4:92:2b:9c:5b:
64:06:46:0d:9a:18:b5:27:45:81:74:00:3d:61:65:4b:c9:31:
d6:50:bb:d3:74:bc:05:23:57:64:d6:80:1a:fd:12:8c:4d:e5:
03:ab:ae:10:e7:a1:f7:1b:79:5e:b9:41:94:74:09:b6:38:a3:
66:d6:61:a7:0b:84:33:75:78:8b:4e:65:7c:7e:8f:42:b3:67:
fb:0f:de:2e:7d:62:c1:3b:18:08:47:6b:13:41:c9:c1:b3:f7:
71:53:77:be:4f:00:18:cb:98:33:17:51:a5:1c:7f:cb:eb:4e:
ad:2b:22:17:00:09:b6:49:35:dc:1b:37:ba:6a:33:f7:a1:11:
9d:88:ce:5d:ec:02:2a:9d:11:9c:63:56:cf:5b:c5:12:63:7c:
2d:f2:55:2b:44:bc:5e:99:e8:bd:8e:a0:0c:c3:33:6c:be:4c:
c1:a9:d9:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 18:36:22 2025 by rpki-client