Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/53696f-f973-47fb-8d79-addc6d4bb2e7/1/SanokeBtQid9xPtfvWnpq9jimIM.mft
File: SanokeBtQid9xPtfvWnpq9jimIM.mft (raw, json)
Hash identifier: Kyl3H/5pTlwRbBSo0CkNPisiGamKefrPPhn5wxQYLFg=
Subject key identifier: 8A:90:3C:F8:D4:0D:30:DF:22:D3:0D:69:6F:86:6F:45:C2:A1:42:0E
Authority key identifier: 49:A9:E8:91:E0:6D:42:27:7D:C4:FB:5F:BD:69:E9:AB:D8:E2:98:83
Certificate issuer: /CN=49a9e891e06d42277dc4fb5fbd69e9abd8e29883
Certificate serial: 0197B7453A1B23B5A878C1828F1B709B8CDC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SanokeBtQid9xPtfvWnpq9jimIM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/53696f-f973-47fb-8d79-addc6d4bb2e7/1/SanokeBtQid9xPtfvWnpq9jimIM.mft
Manifest number: 15B8
Signing time: Sat 28 Jun 2025 16:00:56 +0000
Manifest this update: Sat 28 Jun 2025 16:00:56 +0000
Manifest next update: Sun 29 Jun 2025 16:00:56 +0000
Files and hashes: 1: SanokeBtQid9xPtfvWnpq9jimIM.crl (hash: zDrAtdnzSTmLkPGdYnyagOQFs/PYYPF6XdDi1KbqKCA=)
2: V8zD_fceDFK7bKm0UJWlvFSbGqc.roa (hash: Le4LPJ6tIhm6aij63pajwkdMuW6+ZunlQYJepBMOhII=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/53696f-f973-47fb-8d79-addc6d4bb2e7/1/SanokeBtQid9xPtfvWnpq9jimIM.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/53696f-f973-47fb-8d79-addc6d4bb2e7/1/SanokeBtQid9xPtfvWnpq9jimIM.mft
rsync://rpki.ripe.net/repository/DEFAULT/SanokeBtQid9xPtfvWnpq9jimIM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:3a:1b:23:b5:a8:78:c1:82:8f:1b:70:9b:8c:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49a9e891e06d42277dc4fb5fbd69e9abd8e29883
Validity
Not Before: Jun 28 16:00:56 2025 GMT
Not After : Jun 29 16:00:56 2025 GMT
Subject: CN=8a903cf8d40d30df22d30d696f866f45c2a1420e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:77:57:2c:3d:dc:5b:ab:21:50:ce:d2:df:dc:
b9:f4:f4:44:18:aa:b4:ea:bf:7a:3a:1b:79:e8:03:
49:12:c9:c5:e5:49:bc:bf:0a:5e:83:b3:ee:f8:65:
86:9c:20:3d:c6:40:2e:20:9b:81:cd:a8:0c:1c:c7:
96:ab:65:31:b0:f6:4a:e0:cc:08:cf:9a:76:b9:34:
75:28:50:a2:68:1b:71:05:b8:69:bc:81:5c:00:f2:
84:9b:0f:45:c0:12:e7:f6:86:25:ed:a4:8b:27:b1:
f3:5d:fa:4c:85:0a:e9:c1:ab:8c:2f:ba:68:e3:6c:
e6:36:56:25:c3:07:4c:21:f7:2d:d2:3c:2b:0b:54:
d6:2c:e7:f3:ce:24:14:9f:29:b0:42:15:dc:2c:16:
1b:19:7d:14:ad:9c:fc:a0:ce:27:4e:d0:30:fd:89:
49:b9:53:39:87:84:70:9f:04:25:ea:c3:5d:e9:48:
52:16:85:64:1e:86:20:64:73:77:7b:ad:6f:5d:66:
77:8b:6e:f9:fb:37:fe:ec:eb:ac:c1:c6:c6:68:ed:
b7:b5:0c:8f:31:05:35:b7:23:ca:3e:26:a3:b1:54:
5d:95:40:f5:05:2b:b3:29:0a:83:eb:d4:7c:54:e2:
a5:0e:43:c3:ef:9b:a0:57:fe:e1:54:cc:91:df:65:
9d:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:90:3C:F8:D4:0D:30:DF:22:D3:0D:69:6F:86:6F:45:C2:A1:42:0E
X509v3 Authority Key Identifier:
keyid:49:A9:E8:91:E0:6D:42:27:7D:C4:FB:5F:BD:69:E9:AB:D8:E2:98:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SanokeBtQid9xPtfvWnpq9jimIM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/53696f-f973-47fb-8d79-addc6d4bb2e7/1/SanokeBtQid9xPtfvWnpq9jimIM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/53696f-f973-47fb-8d79-addc6d4bb2e7/1/SanokeBtQid9xPtfvWnpq9jimIM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:52:bd:d1:79:78:21:25:1d:0a:07:a9:d5:7a:22:8f:c9:d8:
8c:3a:db:f7:54:99:09:1c:4c:45:26:e2:1f:ea:f2:92:7d:60:
cc:1f:f3:68:69:3f:a9:0f:b6:8a:ed:5f:c4:79:c5:6a:7c:96:
b8:d1:63:11:d0:01:3c:00:04:5f:08:a1:89:4e:a4:dc:d4:77:
d8:6c:29:d3:01:ec:ce:55:9a:60:cf:dc:81:62:10:00:30:19:
29:34:bb:4b:35:0c:6c:b6:bc:43:7c:07:53:58:1d:37:2d:c8:
0f:23:a5:26:2a:cf:2b:21:66:b6:b2:b5:a3:ac:5a:af:66:34:
46:70:ee:0d:77:36:fa:34:f7:44:13:e0:02:a5:2e:0e:34:ac:
71:da:fb:96:4b:05:74:30:81:24:47:b9:99:f3:44:ed:9e:ca:
d2:48:b8:cc:1d:5c:a1:c7:35:e9:6e:df:f2:e7:cc:5d:de:1b:
93:17:c4:d2:a4:05:27:bc:7d:0c:76:ed:53:b0:76:b5:36:3d:
52:26:85:85:72:1f:15:72:cd:94:38:b1:fb:3e:e6:79:72:f4:
42:2d:81:05:c7:94:a2:19:bc:f9:30:b6:9d:13:61:5c:58:49:
43:80:32:61:a3:41:94:7e:1f:73:03:b7:ef:b0:85:95:96:9b:
b4:d6:88:6b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3RTobI7WoeMGCjxtwm4zcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ5YTllODkxZTA2ZDQyMjc3ZGM0ZmI1ZmJkNjllOWFiZDhl
Mjk4ODMwHhcNMjUwNjI4MTYwMDU2WhcNMjUwNjI5MTYwMDU2WjAzMTEwLwYDVQQD
Eyg4YTkwM2NmOGQ0MGQzMGRmMjJkMzBkNjk2Zjg2NmY0NWMyYTE0MjBlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsndXLD3cW6shUM7S39y59PREGKq0
6r96Oht56ANJEsnF5Um8vwpeg7Pu+GWGnCA9xkAuIJuBzagMHMeWq2UxsPZK4MwI
z5p2uTR1KFCiaBtxBbhpvIFcAPKEmw9FwBLn9oYl7aSLJ7HzXfpMhQrpwauML7po
42zmNlYlwwdMIfct0jwrC1TWLOfzziQUnymwQhXcLBYbGX0UrZz8oM4nTtAw/YlJ
uVM5h4RwnwQl6sNd6UhSFoVkHoYgZHN3e61vXWZ3i275+zf+7OuswcbGaO23tQyP
MQU1tyPKPiajsVRdlUD1BSuzKQqD69R8VOKlDkPD75ugV/7hVMyR32WdhQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIqQPPjUDTDfItMNaW+Gb0XCoUIOMB8GA1UdIwQY
MBaAFEmp6JHgbUInfcT7X71p6avY4piDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2Fub2tlQnRRaWQ5eFB0ZnZXbnBxOWppbUlNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi81MzY5NmYtZjk3My00N2ZiLThkNzkt
YWRkYzZkNGJiMmU3LzEvU2Fub2tlQnRRaWQ5eFB0ZnZXbnBxOWppbUlNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi81MzY5NmYtZjk3My00N2ZiLThkNzktYWRkYzZkNGJiMmU3
LzEvU2Fub2tlQnRRaWQ5eFB0ZnZXbnBxOWppbUlNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGlK90Xl4
ISUdCgep1Xoij8nYjDrb91SZCRxMRSbiH+rykn1gzB/zaGk/qQ+2iu1fxHnFanyW
uNFjEdABPAAEXwihiU6k3NR32Gwp0wHszlWaYM/cgWIQADAZKTS7SzUMbLa8Q3wH
U1gdNy3IDyOlJirPKyFmtrK1o6xar2Y0RnDuDXc2+jT3RBPgAqUuDjSscdr7lksF
dDCBJEe5mfNE7Z7K0ki4zB1cocc16W7f8ufMXd4bkxfE0qQFJ7x9DHbtU7B2tTY9
UiaFhXIfFXLNlDix+z7meXL0Qi2BBceUohm8+TC2nRNhXFhJQ4AyYaNBlH4fcwO3
77CFlZabtNaIaw==
-----END CERTIFICATE-----
Generated at Sat Jun 28 19:16:21 2025 by rpki-client