Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/53696f-f973-47fb-8d79-addc6d4bb2e7/1/SanokeBtQid9xPtfvWnpq9jimIM.mft
File: SanokeBtQid9xPtfvWnpq9jimIM.mft (raw, json)
Hash identifier: 1Z5ClM7z/0Fi0c/9wyKpepuoC2Crw/BVRbxnOmhioWA=
Subject key identifier: 21:6A:AF:3F:20:29:A1:25:2F:2B:61:AA:B8:A9:F3:70:65:61:B6:55
Authority key identifier: 49:A9:E8:91:E0:6D:42:27:7D:C4:FB:5F:BD:69:E9:AB:D8:E2:98:83
Certificate issuer: /CN=49a9e891e06d42277dc4fb5fbd69e9abd8e29883
Certificate serial: 019A006C3463ED41838503E2213ABAE6FD1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SanokeBtQid9xPtfvWnpq9jimIM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/53696f-f973-47fb-8d79-addc6d4bb2e7/1/SanokeBtQid9xPtfvWnpq9jimIM.mft
Manifest number: 16E7
Signing time: Mon 20 Oct 2025 07:01:22 +0000
Manifest this update: Mon 20 Oct 2025 07:01:22 +0000
Manifest next update: Tue 21 Oct 2025 07:01:22 +0000
Files and hashes: 1: SanokeBtQid9xPtfvWnpq9jimIM.crl (hash: LYEgXVQvd6+VZwejflujqbZGu4fk4iwyHraFfTcFHgA=)
2: V8zD_fceDFK7bKm0UJWlvFSbGqc.roa (hash: Le4LPJ6tIhm6aij63pajwkdMuW6+ZunlQYJepBMOhII=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/53696f-f973-47fb-8d79-addc6d4bb2e7/1/SanokeBtQid9xPtfvWnpq9jimIM.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/53696f-f973-47fb-8d79-addc6d4bb2e7/1/SanokeBtQid9xPtfvWnpq9jimIM.mft
rsync://rpki.ripe.net/repository/DEFAULT/SanokeBtQid9xPtfvWnpq9jimIM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:00:6c:34:63:ed:41:83:85:03:e2:21:3a:ba:e6:fd:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49a9e891e06d42277dc4fb5fbd69e9abd8e29883
Validity
Not Before: Oct 20 07:01:22 2025 GMT
Not After : Oct 21 07:01:22 2025 GMT
Subject: CN=216aaf3f2029a1252f2b61aab8a9f3706561b655
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:a0:59:b2:27:80:39:a9:ed:a3:2d:b2:22:ff:
09:35:c4:92:ce:d6:47:60:e1:28:cb:9f:85:9e:f9:
b4:17:11:5d:d3:a7:93:23:43:68:74:83:17:ba:f2:
6a:58:85:05:8f:ba:9b:14:01:d2:e0:fc:25:0c:3e:
a7:b1:d2:55:3f:e6:d0:ec:e4:84:70:17:ba:35:9c:
ae:59:d2:cf:90:66:28:32:fb:48:0a:2b:cb:3b:90:
ad:f1:3a:83:57:3a:7b:73:ad:2f:88:dd:81:d8:31:
ec:d5:61:e7:2f:4d:68:d3:15:85:fa:03:07:1e:ca:
2f:50:9d:28:00:b6:91:ba:02:06:a6:8b:3b:ab:58:
99:7e:0d:35:9f:78:ce:87:73:65:ff:68:f8:f9:ad:
4e:a1:9b:19:69:df:ff:ec:f2:08:e1:37:2e:c9:85:
ae:2d:6f:33:c6:5c:06:ca:90:7a:6c:13:6c:b6:20:
d5:95:bc:bf:9c:be:5c:90:29:4e:2d:b8:c7:b0:d1:
d3:40:f5:d2:f7:93:83:00:8d:29:82:2a:f6:94:63:
f7:15:63:51:b9:d6:88:d0:74:da:00:b8:35:48:e5:
0a:b6:1e:9e:b0:5b:30:2b:35:5b:1f:30:0f:77:5e:
c0:75:62:f6:11:e1:a7:0c:fa:1c:a3:ad:3f:2c:3c:
f8:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:6A:AF:3F:20:29:A1:25:2F:2B:61:AA:B8:A9:F3:70:65:61:B6:55
X509v3 Authority Key Identifier:
keyid:49:A9:E8:91:E0:6D:42:27:7D:C4:FB:5F:BD:69:E9:AB:D8:E2:98:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SanokeBtQid9xPtfvWnpq9jimIM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/53696f-f973-47fb-8d79-addc6d4bb2e7/1/SanokeBtQid9xPtfvWnpq9jimIM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/53696f-f973-47fb-8d79-addc6d4bb2e7/1/SanokeBtQid9xPtfvWnpq9jimIM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:43:a2:8a:1b:db:f5:aa:bd:31:f9:41:23:26:08:2c:ee:60:
0d:06:c6:28:ee:ea:17:4e:cf:8c:40:bc:e0:03:79:a4:7b:93:
86:5d:6f:28:66:16:d3:54:9a:ff:8f:2e:2a:27:a7:a8:54:77:
65:80:4d:2a:bb:5d:e1:e3:65:89:cc:d7:bd:c2:d3:b8:41:a2:
19:18:99:09:37:d1:b5:df:8c:f0:3b:6b:95:61:7f:67:05:f2:
b7:7a:4d:ef:3f:12:b6:ce:e0:a7:1f:0f:fc:ec:79:5d:a0:2b:
c2:ad:b8:37:a6:96:b2:75:8d:18:77:db:b6:bb:b0:00:f2:94:
4d:cd:53:52:14:b2:ad:a3:59:98:02:f9:9e:59:af:37:33:76:
dc:6d:42:03:c7:a4:ee:ad:38:ed:4d:1c:af:c0:03:66:4c:1d:
30:a0:59:1c:1c:12:da:08:30:c8:70:3c:00:55:2e:59:48:6f:
80:7f:8f:82:05:93:45:23:09:de:20:00:4b:26:39:c0:f3:12:
2b:61:3e:05:f2:5f:1f:59:a2:31:92:3c:47:79:9c:24:55:1a:
bc:ba:00:ea:fa:a8:0d:9f:8b:38:0c:90:a7:8d:5a:30:43:4d:
d3:8e:94:2d:60:83:b5:ad:69:be:f2:93:37:19:04:73:91:d1:
aa:da:5d:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 09:27:33 2025 by rpki-client