Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.mft
File: sqvUconMbNnByAJ0KiztUMY0vTs.mft (raw, json)
Hash identifier: Hn2Zl9ew8LAdpMqQmVemIK4b6AZv7EOxd4wdjSVBIlo=
Subject key identifier: C6:A3:85:7B:3D:7E:E1:F9:79:03:63:C4:55:0A:12:23:F9:C4:17:2C
Authority key identifier: B2:AB:D4:72:89:CC:6C:D9:C1:C8:02:74:2A:2C:ED:50:C6:34:BD:3B
Certificate issuer: /CN=b2abd47289cc6cd9c1c802742a2ced50c634bd3b
Certificate serial: 0198D54DF24CE00A1736E7622A669B26E21C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sqvUconMbNnByAJ0KiztUMY0vTs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.mft
Manifest number: 081D
Signing time: Sat 23 Aug 2025 05:01:51 +0000
Manifest this update: Sat 23 Aug 2025 05:01:51 +0000
Manifest next update: Sun 24 Aug 2025 05:01:51 +0000
Files and hashes: 1: sqvUconMbNnByAJ0KiztUMY0vTs.crl (hash: NmiZmbdKQEAflptih22OzJ5JyfzaDcS9keoLvCnRCcw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.mft
rsync://rpki.ripe.net/repository/DEFAULT/sqvUconMbNnByAJ0KiztUMY0vTs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4d:f2:4c:e0:0a:17:36:e7:62:2a:66:9b:26:e2:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2abd47289cc6cd9c1c802742a2ced50c634bd3b
Validity
Not Before: Aug 23 05:01:51 2025 GMT
Not After : Aug 24 05:01:51 2025 GMT
Subject: CN=c6a3857b3d7ee1f9790363c4550a1223f9c4172c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:d9:3d:9c:9a:33:82:92:96:d4:bc:4d:f7:63:
f5:6b:70:11:da:e2:1f:6c:29:8e:b0:51:b0:00:18:
2b:a8:96:c4:48:58:24:9c:d3:d0:1f:ca:a3:01:66:
00:8f:e6:14:db:ed:81:6d:13:90:92:e1:a7:42:a4:
0a:06:f7:0c:59:56:60:ad:b1:a7:97:4a:46:35:6d:
fd:b4:b6:75:27:a7:06:6e:19:7b:e7:36:fd:55:f0:
96:92:7d:cd:43:38:51:da:ec:53:05:9b:96:0d:12:
a7:e5:aa:33:46:f1:53:b9:db:94:ae:c8:9b:db:5a:
dd:14:a3:7b:63:1f:2b:e6:cb:17:ce:c9:73:61:2c:
c0:1a:2f:bf:5f:76:05:b7:4b:1e:8e:fa:06:95:63:
d8:27:0c:e8:7a:2e:c2:12:22:13:ec:41:a9:db:32:
77:e6:f7:83:65:74:07:30:e9:00:40:6c:bb:d5:15:
67:5d:ae:aa:d5:ca:40:a1:53:35:8f:32:59:9f:4f:
1f:f7:12:1b:72:99:7a:34:16:da:9f:aa:16:ad:25:
eb:94:c3:96:86:db:43:d4:3b:a5:5c:58:58:c3:69:
f5:3d:d6:19:78:ad:df:77:e9:9a:18:30:3a:65:21:
9f:f5:5d:1b:e0:3b:d8:87:0e:0e:8b:d2:63:44:19:
86:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:A3:85:7B:3D:7E:E1:F9:79:03:63:C4:55:0A:12:23:F9:C4:17:2C
X509v3 Authority Key Identifier:
keyid:B2:AB:D4:72:89:CC:6C:D9:C1:C8:02:74:2A:2C:ED:50:C6:34:BD:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sqvUconMbNnByAJ0KiztUMY0vTs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/4bf4c5-02ac-4346-afbc-e879a6027907/1/sqvUconMbNnByAJ0KiztUMY0vTs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:c3:bd:93:9b:08:29:72:f3:99:de:7a:48:d1:94:f4:e5:de:
87:9e:48:1d:be:83:a4:e9:ba:9e:a8:6d:9a:60:e9:e8:5a:24:
e4:47:19:0e:08:c6:09:79:53:bb:a2:fb:0d:7f:33:91:7f:35:
65:2c:dd:8d:50:dc:eb:bb:f1:f8:25:99:91:17:48:dc:3f:ec:
79:db:23:85:7e:01:fc:23:ea:79:02:8b:c4:e2:c8:57:99:90:
25:fd:11:72:f1:1a:e9:e6:9c:0b:96:28:1d:7d:3a:00:92:30:
9c:66:6d:4c:78:15:be:96:12:b9:10:dc:96:c8:0c:13:ac:00:
0f:51:9f:78:58:60:4f:c4:52:30:5f:f7:a9:5d:98:1f:23:94:
6b:8f:c2:f4:57:f9:bb:89:5c:da:c3:2d:ac:98:f7:fe:26:3d:
2e:87:6f:5e:bd:f1:b3:92:30:bd:f4:82:d1:c2:4c:8c:4d:fa:
a5:7c:8c:2e:26:14:67:98:a4:8e:19:99:f9:0e:85:48:f4:43:
f5:d7:77:a1:87:cb:d0:44:ed:08:36:e9:85:25:19:3d:d1:2a:
1b:c4:b0:25:26:df:ae:a1:e5:45:d0:aa:7b:12:79:12:07:3b:
b0:45:d5:a6:b8:ac:8a:00:9d:16:9a:e4:41:f8:0a:5e:f5:69:
5c:c2:ec:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:39:24 2025 by rpki-client