Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.mft
File: sqvUconMbNnByAJ0KiztUMY0vTs.mft (raw, json)
Hash identifier: gmfHyYMzkht9MlHFv3T7SYytBz0uCqhmUHyGkWr8Be8=
Subject key identifier: 28:04:12:B5:E2:43:CC:76:85:AA:27:55:46:80:44:C7:2C:6A:86:EF
Authority key identifier: B2:AB:D4:72:89:CC:6C:D9:C1:C8:02:74:2A:2C:ED:50:C6:34:BD:3B
Certificate issuer: /CN=b2abd47289cc6cd9c1c802742a2ced50c634bd3b
Certificate serial: 0197C501720AC099B742C45F4F062C3CD13A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sqvUconMbNnByAJ0KiztUMY0vTs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.mft
Manifest number: 0790
Signing time: Tue 01 Jul 2025 08:01:35 +0000
Manifest this update: Tue 01 Jul 2025 08:01:35 +0000
Manifest next update: Wed 02 Jul 2025 08:01:35 +0000
Files and hashes: 1: sqvUconMbNnByAJ0KiztUMY0vTs.crl (hash: moMIg9Wsldf0VwuCd/m+bZTNtv6G21tdd8UJ+Yfoa2c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.mft
rsync://rpki.ripe.net/repository/DEFAULT/sqvUconMbNnByAJ0KiztUMY0vTs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 08:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c5:01:72:0a:c0:99:b7:42:c4:5f:4f:06:2c:3c:d1:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2abd47289cc6cd9c1c802742a2ced50c634bd3b
Validity
Not Before: Jul 1 08:01:35 2025 GMT
Not After : Jul 2 08:01:35 2025 GMT
Subject: CN=280412b5e243cc7685aa2755468044c72c6a86ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:6c:7c:86:1a:ce:41:aa:1a:14:4a:61:72:cb:
af:30:6b:c9:a8:72:02:56:13:78:50:6f:13:22:8c:
79:9f:2a:87:5e:4c:bf:0c:3b:a7:db:37:42:79:c6:
0f:e3:cc:63:8e:38:26:15:b8:b8:75:9c:f9:91:34:
a5:53:30:e7:53:7e:ea:f4:00:bd:0e:71:19:74:14:
c4:e5:bd:86:1d:46:4b:9a:87:1f:ca:fe:94:28:90:
ba:47:4a:3f:bb:7b:e0:4c:38:2f:75:81:93:b0:9b:
77:8b:ff:b1:7f:c7:de:25:f9:15:68:51:c1:5b:35:
d6:29:8b:51:ac:51:4b:0a:b6:21:09:b4:43:ba:a0:
ea:0d:26:a1:d9:a9:0b:86:3a:c8:6d:a8:45:c0:4a:
36:a1:38:f3:5d:05:e8:fc:50:ed:ca:db:ff:a6:97:
5a:fc:ca:df:12:83:4c:b8:53:4f:de:f4:cc:73:2e:
6d:ff:04:e0:d9:2b:e5:81:42:9d:91:37:ea:ce:97:
c2:93:dd:0c:c7:9e:26:81:70:8f:40:bc:1e:e5:ae:
3b:5d:aa:1a:0a:91:3e:ee:bc:4b:c6:90:bb:ae:cb:
59:13:0e:dd:70:1a:6e:17:9f:ae:db:fc:d7:55:79:
91:85:88:f9:09:f3:84:e2:11:f0:c7:91:5f:6e:58:
b3:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:04:12:B5:E2:43:CC:76:85:AA:27:55:46:80:44:C7:2C:6A:86:EF
X509v3 Authority Key Identifier:
keyid:B2:AB:D4:72:89:CC:6C:D9:C1:C8:02:74:2A:2C:ED:50:C6:34:BD:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sqvUconMbNnByAJ0KiztUMY0vTs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:9b:55:ff:6b:9b:5d:8b:e5:f8:f9:f9:7f:e1:eb:b8:c3:34:
18:ae:26:ce:23:71:61:1a:97:ec:40:63:7d:5c:78:f6:33:67:
90:01:f2:d3:06:ea:81:e8:5f:83:ac:55:74:46:c4:a5:a6:3c:
95:d6:e1:b3:0a:4a:a0:d6:26:95:dd:06:21:03:55:a0:01:84:
b5:d7:bb:d8:f3:7c:fd:15:4f:d3:9d:cb:c8:e3:5a:42:7d:a0:
4e:0b:c6:ae:45:74:8e:1b:3a:f5:43:b4:e2:9c:3b:9f:94:a0:
2e:37:bc:80:e9:3d:64:d4:6f:bd:40:8d:dd:26:94:59:14:50:
f0:0e:fe:bd:f6:1b:d8:70:98:98:6a:9f:f1:58:b8:5a:ed:bf:
09:a8:54:12:7e:5d:b5:7d:eb:e7:e5:94:76:55:d5:74:57:f4:
7a:3e:ac:aa:d6:f0:6a:8b:da:8a:81:77:ba:60:6b:1a:6f:79:
f7:e7:f4:c9:29:23:ff:56:27:46:08:02:1f:88:c7:ef:2f:93:
34:c3:03:af:b2:a8:bf:e1:da:cf:cf:ab:1d:65:e8:c6:53:48:
93:8b:64:ed:5f:ba:0d:56:d3:aa:b3:61:14:74:7f:cc:b7:d4:
29:7e:fa:15:bb:59:42:cd:ba:a7:2b:54:5e:9b:93:1f:55:bf:
5c:c0:39:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 18:32:43 2025 by rpki-client