Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/48b42c-c9ef-4e0e-86b4-a2eebb166fc8/1/sq89ZYtJTLFxUgbFzXbnkuckfvc.mft
File: sq89ZYtJTLFxUgbFzXbnkuckfvc.mft (raw, json)
Hash identifier: yneEYoG3aE+JUvjEScwgnUvTIkTg/6SCYG3MSCTyCVQ=
Subject key identifier: 33:FD:17:81:EA:F5:05:9A:82:B6:C3:C9:37:71:BA:BB:89:87:AE:20
Authority key identifier: B2:AF:3D:65:8B:49:4C:B1:71:52:06:C5:CD:76:E7:92:E7:24:7E:F7
Certificate issuer: /CN=b2af3d658b494cb1715206c5cd76e792e7247ef7
Certificate serial: 019749D5F88C7BDFE9AB48236E03001CCD51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sq89ZYtJTLFxUgbFzXbnkuckfvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/48b42c-c9ef-4e0e-86b4-a2eebb166fc8/1/sq89ZYtJTLFxUgbFzXbnkuckfvc.mft
Manifest number: 040A
Signing time: Sat 07 Jun 2025 10:00:48 +0000
Manifest this update: Sat 07 Jun 2025 10:00:48 +0000
Manifest next update: Sun 08 Jun 2025 10:00:48 +0000
Files and hashes: 1: 53_H80-AjcuM7a-7V7Ni8CDVxmc.roa (hash: TnMZlgDSn2wGls3cni5JDswiMtfBk15EprIHZOUPW18=)
2: sq89ZYtJTLFxUgbFzXbnkuckfvc.crl (hash: Ncf5wGHGXsORUkR75UghrrbqXhcI5etO+DomLbfcNoM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/48b42c-c9ef-4e0e-86b4-a2eebb166fc8/1/sq89ZYtJTLFxUgbFzXbnkuckfvc.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/48b42c-c9ef-4e0e-86b4-a2eebb166fc8/1/sq89ZYtJTLFxUgbFzXbnkuckfvc.mft
rsync://rpki.ripe.net/repository/DEFAULT/sq89ZYtJTLFxUgbFzXbnkuckfvc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:d5:f8:8c:7b:df:e9:ab:48:23:6e:03:00:1c:cd:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2af3d658b494cb1715206c5cd76e792e7247ef7
Validity
Not Before: Jun 7 10:00:48 2025 GMT
Not After : Jun 8 10:00:48 2025 GMT
Subject: CN=33fd1781eaf5059a82b6c3c93771babb8987ae20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ac:f0:e4:22:65:a4:40:fe:80:70:58:b2:39:
f6:26:bb:1a:6b:2d:ae:9b:08:d8:82:32:f7:7a:d7:
3a:ce:b6:6a:a6:72:3f:06:dd:3b:0a:0a:7c:c7:44:
ee:9b:bc:20:11:59:f1:38:ad:31:75:37:93:c8:7a:
ee:20:f5:04:5f:27:7e:1e:1c:e9:f5:bf:19:60:c8:
c5:64:73:e6:f2:eb:92:4a:63:f5:83:74:46:12:ca:
2d:3f:f0:0c:cb:68:7b:02:2e:c7:38:be:1c:0c:0a:
04:86:27:d7:4c:a1:7b:fa:72:da:d7:10:9c:30:a1:
58:1f:b5:23:06:1e:a0:b8:b4:86:da:80:96:9e:a1:
77:26:3d:d1:ec:b8:f6:cf:5d:73:d9:42:ab:53:5d:
8d:a8:1f:05:a6:44:09:b3:84:5a:20:72:0b:c9:64:
1e:32:05:13:6f:1c:08:b9:34:10:f7:53:86:48:07:
93:bd:ec:9b:0d:0a:62:0d:f6:fc:db:b4:31:d0:2b:
98:e2:c3:dc:69:db:68:ce:df:d6:b7:51:df:16:4b:
82:a3:9c:f8:52:6c:a9:08:cb:8a:69:e8:3e:8b:fa:
a5:55:a7:48:23:70:3e:4e:85:45:43:68:84:ce:ac:
a7:bd:70:dc:f0:e8:46:b1:cb:2c:a6:05:45:1c:9e:
3f:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:FD:17:81:EA:F5:05:9A:82:B6:C3:C9:37:71:BA:BB:89:87:AE:20
X509v3 Authority Key Identifier:
keyid:B2:AF:3D:65:8B:49:4C:B1:71:52:06:C5:CD:76:E7:92:E7:24:7E:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sq89ZYtJTLFxUgbFzXbnkuckfvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/48b42c-c9ef-4e0e-86b4-a2eebb166fc8/1/sq89ZYtJTLFxUgbFzXbnkuckfvc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/48b42c-c9ef-4e0e-86b4-a2eebb166fc8/1/sq89ZYtJTLFxUgbFzXbnkuckfvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:08:29:15:9a:ef:4b:75:58:e6:5c:f7:40:bf:9c:2e:50:10:
3a:1a:a8:33:9e:0e:d1:1c:9d:cf:15:40:ad:77:bd:99:37:fe:
46:9c:21:d5:de:c5:71:71:ee:13:6e:1c:14:62:7c:4d:84:f4:
67:98:c5:a7:65:ec:fc:94:ac:e3:e0:53:b1:51:65:21:98:cd:
f5:c6:64:e3:4f:47:d8:5f:67:e6:0f:1f:82:0b:d2:f4:76:e5:
3a:27:fe:c9:b1:f7:29:cc:10:c6:e3:3b:9d:7d:8c:5f:5a:c9:
34:5d:f3:8a:fb:41:cf:66:02:fa:f7:75:3e:1a:62:f3:e2:4b:
dc:7d:b4:16:73:90:b7:aa:c9:24:3a:ad:13:2f:f1:88:41:31:
67:4b:7b:1e:9f:58:e9:72:9d:8e:2a:0d:1e:5e:1d:a3:0b:4a:
65:8a:5c:64:73:c5:eb:50:01:d2:03:63:bf:d7:29:7a:e9:95:
88:af:23:5c:3e:5b:77:b8:7c:e8:98:e8:da:4d:b0:84:ef:ed:
7d:8e:6f:90:64:51:66:9f:1e:ce:07:d1:88:1e:22:9c:66:ac:
a5:4a:2a:f4:91:9b:76:9a:d0:ce:e5:29:87:63:89:e6:29:36:
68:30:a3:b2:92:c7:4a:ca:a1:10:54:21:0a:3a:7e:30:87:ff:
c0:d5:53:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:45:23 2025 by rpki-client