Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/aeae3f-af4d-4eee-b284-a5f6c0aa11de/1/SGUQoxFpcvztleiova_W5FXe0Lo.mft
File: SGUQoxFpcvztleiova_W5FXe0Lo.mft (raw, json)
Hash identifier: Kc8pw8koEj5YeohmbG01FRucr2N98YaPa7+zepKM4Lc=
Subject key identifier: 5D:3C:E1:D4:F5:C6:F4:D7:1C:65:BE:F4:FA:92:1E:BB:8B:3A:35:AB
Authority key identifier: 48:65:10:A3:11:69:72:FC:ED:95:E8:A8:BD:AF:D6:E4:55:DE:D0:BA
Certificate issuer: /CN=486510a3116972fced95e8a8bdafd6e455ded0ba
Certificate serial: 01964DEC37CFA7ABD026CF17944D71CF6846
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SGUQoxFpcvztleiova_W5FXe0Lo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/aeae3f-af4d-4eee-b284-a5f6c0aa11de/1/SGUQoxFpcvztleiova_W5FXe0Lo.mft
Manifest number: 14FD
Signing time: Sat 19 Apr 2025 12:00:48 +0000
Manifest this update: Sat 19 Apr 2025 12:00:48 +0000
Manifest next update: Sun 20 Apr 2025 12:00:48 +0000
Files and hashes: 1: SGUQoxFpcvztleiova_W5FXe0Lo.crl (hash: osAZI7gJ9mvrxLUHoTSHdIi4ILDeX2tVvfG1pttsLzA=)
2: lQwR3y5IAJ7kyCCFVo104fC4SsY.roa (hash: MwEmP7Sqq33K1HUPXLtLK+kd2q/HJrM3DtuK+SIM+zY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/aeae3f-af4d-4eee-b284-a5f6c0aa11de/1/SGUQoxFpcvztleiova_W5FXe0Lo.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/aeae3f-af4d-4eee-b284-a5f6c0aa11de/1/SGUQoxFpcvztleiova_W5FXe0Lo.mft
rsync://rpki.ripe.net/repository/DEFAULT/SGUQoxFpcvztleiova_W5FXe0Lo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 07:26:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:ec:37:cf:a7:ab:d0:26:cf:17:94:4d:71:cf:68:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=486510a3116972fced95e8a8bdafd6e455ded0ba
Validity
Not Before: Apr 19 12:00:48 2025 GMT
Not After : Apr 20 12:00:48 2025 GMT
Subject: CN=5d3ce1d4f5c6f4d71c65bef4fa921ebb8b3a35ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:47:e6:ba:a4:ff:7e:65:01:92:e5:a2:b6:9f:
cd:2c:bf:fe:93:bc:cd:0f:e0:0a:35:34:34:6f:b9:
56:3c:37:2c:e7:81:d7:13:33:a5:88:a7:a5:3a:47:
1a:1b:d6:4f:13:4c:ab:41:09:36:15:96:a6:16:ca:
35:4a:2e:04:d3:af:72:3c:c5:c7:fb:38:bc:13:ef:
73:a1:c9:25:56:2a:be:76:3e:af:2c:38:72:30:b6:
01:82:29:0b:c7:a1:b0:5f:99:d9:d2:34:b9:30:88:
49:fa:53:c0:04:e9:d5:8a:25:32:ee:00:05:52:c6:
d4:38:a0:29:db:80:fd:f9:72:b1:be:eb:de:1d:1e:
23:de:6f:a1:ee:51:d1:d6:98:3a:ec:9e:81:78:a6:
6e:a0:ed:38:2a:02:be:dd:e9:4a:6f:cb:10:92:62:
30:67:e7:e3:71:98:2f:ef:05:7c:af:49:4e:e3:ae:
17:58:4f:f7:d1:cd:cf:da:87:c2:55:b6:b6:ad:c8:
0b:46:6b:a0:73:62:34:45:bc:50:67:01:f6:bd:5f:
6d:42:7a:8c:60:a6:c9:23:81:51:29:fa:9a:31:09:
92:97:f9:68:9f:7a:ce:1e:ad:9b:0e:f8:06:a9:41:
57:74:f8:2b:16:15:82:f9:f4:c6:95:f2:72:4d:49:
99:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:3C:E1:D4:F5:C6:F4:D7:1C:65:BE:F4:FA:92:1E:BB:8B:3A:35:AB
X509v3 Authority Key Identifier:
keyid:48:65:10:A3:11:69:72:FC:ED:95:E8:A8:BD:AF:D6:E4:55:DE:D0:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SGUQoxFpcvztleiova_W5FXe0Lo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/aeae3f-af4d-4eee-b284-a5f6c0aa11de/1/SGUQoxFpcvztleiova_W5FXe0Lo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/aeae3f-af4d-4eee-b284-a5f6c0aa11de/1/SGUQoxFpcvztleiova_W5FXe0Lo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c9:33:10:2b:65:70:69:08:75:83:c0:ec:fb:ec:a4:1e:93:a4:
9e:59:e7:e0:b8:0e:d9:f0:4d:05:a0:8f:07:56:22:92:0a:bd:
49:e4:8c:12:76:d3:d0:f5:29:13:5d:e7:ac:9f:e5:7b:00:39:
cc:6d:82:87:54:e4:2a:5e:11:44:74:e5:64:c5:70:7b:72:e2:
98:fa:f9:08:f0:7a:7b:45:af:38:b2:44:1c:63:0d:10:a1:26:
2c:09:ae:04:b9:4c:e4:66:85:1a:6d:37:d5:06:a0:3e:d1:72:
d5:84:be:a3:bd:69:7f:55:e4:3a:ea:40:38:b7:1f:3b:57:23:
1d:21:2d:f3:3c:c1:47:e8:8a:37:26:77:96:d1:b2:9c:c3:41:
43:34:5f:00:3a:1f:f8:c8:34:4e:a4:70:a3:48:f5:dd:96:08:
a6:eb:b7:78:f6:71:47:4b:e5:ba:0c:8f:0d:cd:5c:1b:0a:4e:
94:d9:c7:71:a6:8d:cb:b5:d2:36:bd:67:41:e3:9a:7f:52:21:
3e:eb:76:27:ec:1b:d4:a6:ce:67:90:d4:dc:27:28:26:09:36:
b4:22:8b:42:b3:10:e1:32:3e:75:68:f7:d1:20:55:5d:68:68:
d0:c6:05:d1:93:d9:3f:8f:7a:da:5f:fc:ea:95:e2:05:1b:75:
c7:a0:08:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 15:46:38 2025 by rpki-client