Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.mft
File: sq-PF3TgWSXyTkHe5p5bYj2axj0.mft (raw, json)
Hash identifier: fM5ueYhjWUbOsC1CzmlZDl064eEB2Lsy61SkEg0TKMY=
Subject key identifier: E2:64:99:C7:39:56:F2:84:42:0B:86:01:9F:98:4B:45:5E:DB:8D:6B
Authority key identifier: B2:AF:8F:17:74:E0:59:25:F2:4E:41:DE:E6:9E:5B:62:3D:9A:C6:3D
Certificate issuer: /CN=b2af8f1774e05925f24e41dee69e5b623d9ac63d
Certificate serial: 0197B821281B070295E8C0D29ACAEF96D4D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sq-PF3TgWSXyTkHe5p5bYj2axj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.mft
Manifest number: 15B7
Signing time: Sat 28 Jun 2025 20:01:10 +0000
Manifest this update: Sat 28 Jun 2025 20:01:10 +0000
Manifest next update: Sun 29 Jun 2025 20:01:10 +0000
Files and hashes: 1: dHmQJZqThrz58J_TSvHl_H-39E8.roa (hash: lBrrDh2GaFmnqywSNW3PsD5utU5WNEXu75PvBG3VZjI=)
2: sq-PF3TgWSXyTkHe5p5bYj2axj0.crl (hash: Twcpu7LqZ7uV8qD99Ff9PbvBAFZIpA303FmLBvy0jQ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.mft
rsync://rpki.ripe.net/repository/DEFAULT/sq-PF3TgWSXyTkHe5p5bYj2axj0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:21:28:1b:07:02:95:e8:c0:d2:9a:ca:ef:96:d4:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2af8f1774e05925f24e41dee69e5b623d9ac63d
Validity
Not Before: Jun 28 20:01:10 2025 GMT
Not After : Jun 29 20:01:10 2025 GMT
Subject: CN=e26499c73956f284420b86019f984b455edb8d6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:71:33:f8:74:90:b4:33:d9:7b:e9:8f:dd:45:
14:4c:f7:d6:2e:89:e6:09:b5:df:ae:b7:b4:d4:5c:
b8:00:62:9e:28:7a:4a:ec:9c:b9:f5:9e:0d:e6:d6:
97:8d:e0:31:60:39:3e:c2:15:cb:7d:91:3f:23:7d:
11:4a:d0:45:1e:72:6c:fb:67:a7:b8:8f:8c:30:42:
2e:46:b9:42:11:b7:ee:94:64:96:45:84:c8:66:1a:
8b:71:a0:7f:a2:35:19:ce:06:49:96:72:a5:4e:18:
be:33:8b:e2:75:84:73:45:ea:a0:7f:0f:44:7b:ec:
b7:81:16:be:5b:a8:a8:65:31:66:c5:d6:0a:9f:53:
11:36:ae:ba:40:3d:a5:d0:8e:52:1a:0c:cb:a8:7d:
08:24:9e:0b:b3:84:64:3c:d1:8c:a8:b0:3b:bd:16:
40:b8:d0:52:1a:a2:85:6b:3d:d4:40:6e:c0:40:af:
9d:6f:7f:2f:a2:c7:85:3c:a8:95:5f:9b:85:a2:11:
8d:d3:57:2a:0b:3c:c7:a0:46:13:69:75:58:19:48:
dd:74:08:4d:58:78:f3:ed:a0:70:bb:cc:74:4f:0d:
d8:c4:58:4d:69:26:93:24:4c:03:32:96:49:5f:b3:
d3:1f:30:9d:25:ad:10:5d:7c:59:1c:8a:4c:46:6f:
9e:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:64:99:C7:39:56:F2:84:42:0B:86:01:9F:98:4B:45:5E:DB:8D:6B
X509v3 Authority Key Identifier:
keyid:B2:AF:8F:17:74:E0:59:25:F2:4E:41:DE:E6:9E:5B:62:3D:9A:C6:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sq-PF3TgWSXyTkHe5p5bYj2axj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:10:fd:5d:d6:a5:d8:76:dd:4e:35:fa:67:00:24:c5:14:04:
f3:ee:bc:69:25:59:92:d0:48:5c:7b:55:f2:b0:e9:f8:4b:72:
76:7e:58:7d:58:ef:5d:40:82:49:bc:74:b7:c8:84:5b:32:08:
5c:eb:3d:c4:f8:b7:8d:af:be:ba:0f:a4:82:d7:ef:4c:2b:62:
a0:9b:6b:7c:e0:46:e9:1c:8f:0c:d7:55:ee:d3:e8:34:2f:1a:
1e:82:54:e3:b2:3e:06:dc:7b:92:73:2f:ff:54:f3:de:e2:07:
59:61:23:52:8c:1f:e6:83:b7:07:99:31:97:24:d4:7e:1b:41:
1b:81:a4:b4:47:ca:91:2a:b9:dd:04:08:8c:8d:ed:86:36:25:
cd:5a:78:5f:f3:5b:2e:a1:a3:7a:65:6c:b9:23:95:60:29:5f:
fd:2c:8d:17:00:6f:21:b7:d3:14:39:70:75:85:eb:38:9b:37:
26:c5:77:6f:3e:c2:b9:3e:80:16:0f:73:21:ef:35:f4:6a:0a:
83:ec:4e:2c:63:65:20:45:3b:3e:b2:e8:a7:c1:a7:ca:e6:a9:
fa:20:d9:27:1d:ff:84:06:73:67:ef:72:7e:a4:39:43:fb:0e:
b4:e1:c8:46:d1:fd:b5:02:18:65:99:dd:d0:12:6d:77:40:58:
0b:f0:6a:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:02:46 2025 by rpki-client