Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/f5d730-f8eb-4f80-9a9c-9abe4e6c2be1/1/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.mft
File: sqhTcekvOaK-QkdgsE5HrZ2j7Ts.mft (raw, json)
Hash identifier: P7hS5znSqa5afN2eu4zk1a0UFJU1fKbNmFFs3TFfOh4=
Subject key identifier: 27:3D:F7:F5:80:BA:A0:36:60:E2:80:C5:3B:A4:22:CC:34:89:4C:D9
Authority key identifier: B2:A8:53:71:E9:2F:39:A2:BE:42:47:60:B0:4E:47:AD:9D:A3:ED:3B
Certificate issuer: /CN=b2a85371e92f39a2be424760b04e47ad9da3ed3b
Certificate serial: 0197B6D75F89A37F03ED5EB37AD26FFDEB71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/f5d730-f8eb-4f80-9a9c-9abe4e6c2be1/1/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.mft
Manifest number: 0253
Signing time: Sat 28 Jun 2025 14:00:57 +0000
Manifest this update: Sat 28 Jun 2025 14:00:57 +0000
Manifest next update: Sun 29 Jun 2025 14:00:57 +0000
Files and hashes: 1: sqhTcekvOaK-QkdgsE5HrZ2j7Ts.crl (hash: sQHeJN2B/YU2eCHcYJmOB7xsHUuw7gLZWhDQ/bW3rAo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/f5d730-f8eb-4f80-9a9c-9abe4e6c2be1/1/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/f5d730-f8eb-4f80-9a9c-9abe4e6c2be1/1/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.mft
rsync://rpki.ripe.net/repository/DEFAULT/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:5f:89:a3:7f:03:ed:5e:b3:7a:d2:6f:fd:eb:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2a85371e92f39a2be424760b04e47ad9da3ed3b
Validity
Not Before: Jun 28 14:00:57 2025 GMT
Not After : Jun 29 14:00:57 2025 GMT
Subject: CN=273df7f580baa03660e280c53ba422cc34894cd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f5:32:25:5e:b9:55:05:ab:e7:91:6e:44:82:
c4:86:1f:12:a0:fd:eb:f1:80:d3:e1:99:be:b3:fc:
32:db:15:eb:65:54:28:9c:2a:2b:a6:3a:17:37:17:
0f:08:e1:80:4b:86:69:3a:6b:04:a9:cf:9c:c7:bd:
ed:d1:2f:09:e3:ec:8b:e2:21:a3:d9:20:bc:9c:09:
45:f9:db:c2:fb:5c:d9:d5:ef:23:38:0e:8d:45:d7:
94:7a:91:b8:18:5e:f0:55:33:06:98:b9:3a:86:4f:
b1:a4:38:b2:74:ee:a3:9a:60:df:04:41:a2:78:ff:
09:6d:67:08:a9:d9:0b:10:bf:c9:69:c7:e8:e5:cd:
80:c6:4c:71:c9:d3:b7:ee:65:16:e7:2e:a8:2e:d8:
31:e4:6f:b0:10:ba:ef:51:5e:39:43:e5:8a:b6:c4:
8b:aa:98:d7:59:82:5c:9a:9c:27:1f:42:f9:fa:31:
55:c1:b3:c8:8f:37:45:88:14:38:4a:f3:f6:71:87:
1c:3b:37:c4:27:d8:3f:9c:91:26:3f:2d:16:39:12:
16:28:1a:44:f0:84:3f:9d:1a:2d:cd:d6:e2:73:5f:
ee:40:71:6e:18:6b:e1:06:b9:af:37:79:eb:04:fe:
20:96:2d:68:90:54:c9:4a:25:52:aa:1f:9a:eb:83:
cc:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:3D:F7:F5:80:BA:A0:36:60:E2:80:C5:3B:A4:22:CC:34:89:4C:D9
X509v3 Authority Key Identifier:
keyid:B2:A8:53:71:E9:2F:39:A2:BE:42:47:60:B0:4E:47:AD:9D:A3:ED:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/f5d730-f8eb-4f80-9a9c-9abe4e6c2be1/1/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/f5d730-f8eb-4f80-9a9c-9abe4e6c2be1/1/sqhTcekvOaK-QkdgsE5HrZ2j7Ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:e1:9e:a4:fa:f4:45:4b:6b:5d:97:47:5f:e1:bb:9c:9b:9e:
fd:4a:70:3b:2a:b6:05:58:0b:15:64:9a:87:35:73:72:c4:fd:
0a:a7:9b:29:a1:c8:aa:3a:c3:64:f1:37:57:be:ba:dd:0b:bd:
52:d4:80:38:02:7c:cc:de:01:39:d3:52:60:f1:d5:dd:e0:33:
ba:90:63:07:d5:b4:5c:67:bd:ef:19:55:80:e1:b5:1d:a4:1b:
4a:c2:a7:b6:fa:1c:04:e4:c3:56:7d:fe:14:09:07:bf:aa:9b:
0f:55:7d:36:3a:34:96:3b:c7:fa:b5:d5:76:c8:e8:b4:93:f2:
38:5f:f9:70:dd:a8:f5:de:44:5a:46:70:b2:bd:85:22:1c:18:
85:1f:f0:f3:6e:b1:1d:b4:57:2e:af:e5:43:b1:26:55:e9:a1:
d3:8f:0e:aa:59:9a:1d:d7:fe:ed:4c:be:ad:7b:a5:ee:73:81:
84:fb:53:ce:b5:ac:28:ed:44:73:1c:7c:87:ee:5c:b0:c1:9a:
a7:54:4a:c5:2e:a6:60:d9:84:35:88:4c:69:7a:c4:b0:e0:af:
f6:9b:83:cb:15:b6:58:d6:22:ed:dd:5f:a0:92:78:f5:29:cc:
06:fb:c2:e5:89:08:9f:fa:ec:aa:35:37:74:b5:7f:71:1a:5f:
13:8b:2b:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:48:44 2025 by rpki-client