Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.mft
File: sqvUconMbNnByAJ0KiztUMY0vTs.mft (raw, json)
Hash identifier: 6TudYdeBS+y3PI4LALZxaBUtikzIfLtMhqErYWEdwt4=
Subject key identifier: 8E:44:67:9E:6F:57:39:62:1C:D9:13:23:1D:87:7B:30:88:BE:8E:C3
Authority key identifier: B2:AB:D4:72:89:CC:6C:D9:C1:C8:02:74:2A:2C:ED:50:C6:34:BD:3B
Certificate issuer: /CN=b2abd47289cc6cd9c1c802742a2ced50c634bd3b
Certificate serial: 0196C238F6A3DC632F39311936609D4DBE02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sqvUconMbNnByAJ0KiztUMY0vTs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.mft
Manifest number: 070A
Signing time: Mon 12 May 2025 02:00:35 +0000
Manifest this update: Mon 12 May 2025 02:00:35 +0000
Manifest next update: Tue 13 May 2025 02:00:35 +0000
Files and hashes: 1: sqvUconMbNnByAJ0KiztUMY0vTs.crl (hash: T8KAKBVh5fhp/RkEOLOQ2YAu5usr3V3o0pmwau0evP8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.mft
rsync://rpki.ripe.net/repository/DEFAULT/sqvUconMbNnByAJ0KiztUMY0vTs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c2:38:f6:a3:dc:63:2f:39:31:19:36:60:9d:4d:be:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2abd47289cc6cd9c1c802742a2ced50c634bd3b
Validity
Not Before: May 12 02:00:35 2025 GMT
Not After : May 13 02:00:35 2025 GMT
Subject: CN=8e44679e6f5739621cd913231d877b3088be8ec3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:1d:26:8a:e4:58:d4:41:c9:0d:7e:db:b8:01:
7e:b2:b9:39:ab:77:92:63:31:fd:1a:72:8d:4f:3c:
d4:ca:ce:e5:ab:c9:91:7d:17:0b:3c:cf:40:63:d8:
bb:fc:02:1d:0e:c9:d3:35:8a:df:4c:61:9e:31:08:
40:7e:62:58:05:dd:18:1e:3a:69:74:44:ed:9b:b3:
76:2e:c2:93:db:c2:d3:92:69:5f:2a:b2:68:bb:0f:
69:0f:35:b4:58:45:eb:42:e3:65:a0:a8:ff:2f:e2:
73:a6:ef:41:a0:d6:07:60:5d:12:e7:d1:3f:75:45:
2b:2b:e2:38:91:ab:8a:61:af:6d:2e:b5:d9:5e:bd:
3f:3e:6a:d3:8d:30:34:94:cd:e0:81:72:c3:6c:c0:
03:b4:6e:ba:39:89:a7:e8:71:97:13:44:33:dc:58:
0c:26:4d:bd:39:36:5c:16:db:9f:9f:80:de:94:f4:
11:15:07:6a:b1:b9:68:4a:e9:4a:3c:83:bb:ac:a8:
2b:52:15:c6:61:a9:cf:b2:9b:c4:82:75:e3:e2:a2:
a8:10:e3:b4:0b:14:cf:b3:59:72:34:a5:ef:c6:eb:
07:ff:0c:7a:94:ae:f8:c8:f8:51:54:5c:8a:93:7c:
b5:b7:5e:5f:0d:b6:20:28:ab:20:64:90:e9:16:f5:
bc:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:44:67:9E:6F:57:39:62:1C:D9:13:23:1D:87:7B:30:88:BE:8E:C3
X509v3 Authority Key Identifier:
keyid:B2:AB:D4:72:89:CC:6C:D9:C1:C8:02:74:2A:2C:ED:50:C6:34:BD:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sqvUconMbNnByAJ0KiztUMY0vTs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:a9:e8:49:19:77:5d:5f:e1:fb:55:23:93:a2:f5:eb:fb:97:
df:e6:d9:48:fc:98:7d:96:01:e7:77:dd:3d:4f:4f:77:5e:1a:
94:eb:3e:a2:81:36:74:03:91:05:fb:6a:0a:4f:7a:b6:dd:30:
77:29:90:c1:51:10:c0:b0:be:dc:79:0d:eb:17:b6:1c:96:05:
5b:90:39:fd:a5:78:bb:a4:be:e3:11:0d:e1:8c:f5:a5:e9:93:
0c:5f:a5:f0:d8:3f:f4:f9:72:69:0d:9a:6f:f0:a2:ab:29:08:
e2:da:3d:67:72:3e:2e:2d:a4:35:0e:ca:f3:83:e5:97:e3:22:
c7:7a:c5:4f:15:1d:de:85:d5:ff:10:1a:a5:9e:61:11:dc:91:
69:25:e0:c1:43:45:3c:9a:72:e9:f2:4a:13:79:32:f5:64:15:
0f:ca:41:ac:a5:c0:ee:49:99:65:36:92:97:b4:02:fb:f8:61:
fa:d5:e8:95:c3:4a:cd:99:78:81:6f:4a:70:7b:99:00:af:41:
91:c6:fb:51:30:b6:81:dc:11:e3:8b:5a:78:1f:44:8b:f0:c8:
d7:11:34:15:4f:04:0d:7a:bf:41:2f:70:5a:f2:e5:20:5e:8b:
20:ef:36:7f:95:9a:1e:13:65:c4:9c:83:d9:95:46:20:11:e3:
a8:5a:2f:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 06:36:53 2025 by rpki-client