Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/48b42c-c9ef-4e0e-86b4-a2eebb166fc8/1/sq89ZYtJTLFxUgbFzXbnkuckfvc.mft
File: sq89ZYtJTLFxUgbFzXbnkuckfvc.mft (raw, json)
Hash identifier: jxj/6fdDbqZzZAiKD+7GOJj1k/h9pPbItQJ1uIIhb78=
Subject key identifier: FB:A7:0C:3C:69:42:80:81:28:A1:C3:EA:BE:76:9A:06:31:DB:2E:D1
Authority key identifier: B2:AF:3D:65:8B:49:4C:B1:71:52:06:C5:CD:76:E7:92:E7:24:7E:F7
Certificate issuer: /CN=b2af3d658b494cb1715206c5cd76e792e7247ef7
Certificate serial: 01964CD90F627AF4CD1971FC78746A3D4B2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sq89ZYtJTLFxUgbFzXbnkuckfvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/48b42c-c9ef-4e0e-86b4-a2eebb166fc8/1/sq89ZYtJTLFxUgbFzXbnkuckfvc.mft
Manifest number: 0387
Signing time: Sat 19 Apr 2025 07:00:15 +0000
Manifest this update: Sat 19 Apr 2025 07:00:15 +0000
Manifest next update: Sun 20 Apr 2025 07:00:15 +0000
Files and hashes: 1: 53_H80-AjcuM7a-7V7Ni8CDVxmc.roa (hash: TnMZlgDSn2wGls3cni5JDswiMtfBk15EprIHZOUPW18=)
2: sq89ZYtJTLFxUgbFzXbnkuckfvc.crl (hash: RWUeZXsNSsEhU4aI/z7Mp9d8YYDCrJUKgcnbKxDj7nk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/48b42c-c9ef-4e0e-86b4-a2eebb166fc8/1/sq89ZYtJTLFxUgbFzXbnkuckfvc.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/48b42c-c9ef-4e0e-86b4-a2eebb166fc8/1/sq89ZYtJTLFxUgbFzXbnkuckfvc.mft
rsync://rpki.ripe.net/repository/DEFAULT/sq89ZYtJTLFxUgbFzXbnkuckfvc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 07:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4c:d9:0f:62:7a:f4:cd:19:71:fc:78:74:6a:3d:4b:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2af3d658b494cb1715206c5cd76e792e7247ef7
Validity
Not Before: Apr 19 07:00:15 2025 GMT
Not After : Apr 20 07:00:15 2025 GMT
Subject: CN=fba70c3c6942808128a1c3eabe769a0631db2ed1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:e6:f5:d9:07:33:8c:d6:15:d2:0a:73:46:16:
34:f9:db:db:cb:2f:7d:c7:5a:2d:9c:3c:c4:61:b2:
38:30:fa:c3:4e:e6:8d:e2:c1:a9:f7:90:2a:54:c7:
db:f6:9d:34:c4:72:09:eb:16:df:e6:d5:56:fb:8f:
fd:cd:57:67:fc:e9:4d:d2:4f:45:3b:7b:26:9f:1b:
88:07:49:c1:4c:a6:cd:5d:c7:3f:da:38:cb:86:e0:
a2:08:c0:fa:46:dd:f4:fe:72:e2:8c:60:25:aa:fa:
4e:0c:b2:f3:66:90:ed:79:19:41:a8:5e:0e:1f:87:
2a:2f:3f:3b:6b:1d:de:61:9b:14:e6:d2:4e:62:10:
b8:66:35:7e:1e:79:ba:e9:48:65:96:ba:ca:0f:66:
7c:5c:c7:99:0f:f0:b6:7b:46:a9:40:2b:bf:a3:44:
a7:fb:20:11:59:8d:7c:c2:fa:55:cd:77:25:8e:cd:
5f:ec:a0:47:f3:6b:fd:58:58:bf:b9:c0:ea:43:71:
24:ba:4a:71:1b:ac:a2:59:29:a3:5f:21:02:a2:ef:
0f:bb:0d:d8:57:9a:31:c5:0c:b2:02:23:b3:19:ae:
d9:63:1f:35:8e:10:45:8d:5a:fb:f7:e7:4b:7e:c1:
e4:ca:95:11:5a:f8:ab:6d:d4:e9:36:5e:ac:df:f8:
30:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:A7:0C:3C:69:42:80:81:28:A1:C3:EA:BE:76:9A:06:31:DB:2E:D1
X509v3 Authority Key Identifier:
keyid:B2:AF:3D:65:8B:49:4C:B1:71:52:06:C5:CD:76:E7:92:E7:24:7E:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sq89ZYtJTLFxUgbFzXbnkuckfvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/48b42c-c9ef-4e0e-86b4-a2eebb166fc8/1/sq89ZYtJTLFxUgbFzXbnkuckfvc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/48b42c-c9ef-4e0e-86b4-a2eebb166fc8/1/sq89ZYtJTLFxUgbFzXbnkuckfvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:ab:f5:40:d6:49:d3:19:73:e0:5e:e8:c5:71:fe:61:63:8c:
eb:a9:62:22:31:15:f9:00:07:47:34:01:e8:da:e8:c2:55:8e:
65:d2:97:3a:00:73:ed:5e:31:66:48:6a:dc:ff:f9:ad:81:c1:
f6:71:34:2b:bd:b3:02:fd:39:f8:0e:ac:e0:d8:8a:ba:0c:e6:
0a:ec:19:ff:d0:25:af:81:67:09:33:13:85:e8:0a:e9:0f:f4:
45:0e:eb:fb:6e:e9:55:8d:10:7f:ce:b1:69:62:59:37:ca:ba:
85:ad:f4:ea:e7:e8:51:47:b9:d0:80:f4:e4:34:b2:b0:94:5d:
0a:00:2d:3d:5a:c2:d7:a1:5d:b5:7d:6c:86:89:2f:4e:02:57:
00:20:de:0f:48:50:f9:9b:35:14:09:c5:52:a2:9f:8f:46:e3:
b2:8c:73:b1:c2:2a:3d:df:cf:e9:54:e1:39:b1:1c:f0:90:3a:
a1:a9:a9:91:b5:fd:3a:d6:d0:70:dd:77:06:50:4a:4e:f1:3e:
69:13:33:7c:59:c6:cd:96:c2:a1:e2:31:56:3c:ac:56:5e:b6:
54:f3:14:2b:5b:35:c7:4d:90:20:b9:99:32:9f:f0:c2:ea:e3:
e3:a5:dd:8e:00:98:f1:b7:cd:b1:04:db:a9:29:a4:88:ee:c6:
42:54:c7:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 16:01:37 2025 by rpki-client