Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/53696f-f973-47fb-8d79-addc6d4bb2e7/1/SanokeBtQid9xPtfvWnpq9jimIM.mft
File: SanokeBtQid9xPtfvWnpq9jimIM.mft (raw, json)
Hash identifier: ZST5a90WtHJ7KRQysOlahQLNpP2ApmFfnvo9F4RwO/k=
Subject key identifier: 37:91:7B:AE:7D:5C:A9:4B:8E:A3:4C:67:F8:04:11:B8:7A:17:89:BD
Authority key identifier: 49:A9:E8:91:E0:6D:42:27:7D:C4:FB:5F:BD:69:E9:AB:D8:E2:98:83
Certificate issuer: /CN=49a9e891e06d42277dc4fb5fbd69e9abd8e29883
Certificate serial: 0198D515E970D72C0761F8464A2D4F2E9976
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SanokeBtQid9xPtfvWnpq9jimIM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/53696f-f973-47fb-8d79-addc6d4bb2e7/1/SanokeBtQid9xPtfvWnpq9jimIM.mft
Manifest number: 164C
Signing time: Sat 23 Aug 2025 04:00:39 +0000
Manifest this update: Sat 23 Aug 2025 04:00:39 +0000
Manifest next update: Sun 24 Aug 2025 04:00:39 +0000
Files and hashes: 1: SanokeBtQid9xPtfvWnpq9jimIM.crl (hash: H7iDPO5Ve6qesyZRAlecHGVrGGU84djyvKoxXfEnLik=)
2: V8zD_fceDFK7bKm0UJWlvFSbGqc.roa (hash: Le4LPJ6tIhm6aij63pajwkdMuW6+ZunlQYJepBMOhII=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/53696f-f973-47fb-8d79-addc6d4bb2e7/1/SanokeBtQid9xPtfvWnpq9jimIM.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/53696f-f973-47fb-8d79-addc6d4bb2e7/1/SanokeBtQid9xPtfvWnpq9jimIM.mft
rsync://rpki.ripe.net/repository/DEFAULT/SanokeBtQid9xPtfvWnpq9jimIM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:e9:70:d7:2c:07:61:f8:46:4a:2d:4f:2e:99:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49a9e891e06d42277dc4fb5fbd69e9abd8e29883
Validity
Not Before: Aug 23 04:00:39 2025 GMT
Not After : Aug 24 04:00:39 2025 GMT
Subject: CN=37917bae7d5ca94b8ea34c67f80411b87a1789bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:b8:18:8c:ba:93:b7:e6:2c:cf:c8:8b:8d:51:
67:55:5c:36:2f:83:a2:6a:0f:8e:b1:1f:e0:b9:31:
33:38:40:07:f8:a1:fd:a0:0c:6a:ce:63:e2:97:e3:
e5:ef:fe:ea:e6:d8:a2:d5:eb:72:b6:47:db:33:79:
3f:8e:85:89:ac:86:28:e0:61:5e:05:9e:46:d6:1f:
d3:67:8c:cf:de:a6:65:4d:bf:57:9a:34:c3:69:44:
94:65:a3:4f:04:66:7c:eb:fc:b5:d6:4b:a9:d9:e9:
5b:28:a0:3b:bb:78:f8:ab:dd:14:be:ca:ac:41:49:
78:8e:29:f3:19:f8:15:76:75:73:05:6c:ca:1b:d8:
6b:13:6b:09:b0:0f:82:91:c5:09:11:70:01:3a:35:
b6:03:f7:a8:60:84:d1:d6:3d:4b:81:22:56:cd:06:
6a:77:93:14:c6:75:b0:dc:56:19:5c:2c:c5:a5:bb:
c8:05:87:8c:6d:2a:f5:ba:9f:f5:a1:4c:20:7b:92:
97:e3:22:1d:5b:3b:98:f6:c7:c8:f3:f1:e4:20:20:
f4:39:39:29:54:5f:35:15:1b:24:08:92:7c:8d:be:
46:1e:53:91:af:91:97:4d:7d:67:79:a0:73:16:9b:
bf:d0:1b:c1:9c:36:bb:ff:28:1c:86:37:8a:67:1e:
ab:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:91:7B:AE:7D:5C:A9:4B:8E:A3:4C:67:F8:04:11:B8:7A:17:89:BD
X509v3 Authority Key Identifier:
keyid:49:A9:E8:91:E0:6D:42:27:7D:C4:FB:5F:BD:69:E9:AB:D8:E2:98:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SanokeBtQid9xPtfvWnpq9jimIM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/53696f-f973-47fb-8d79-addc6d4bb2e7/1/SanokeBtQid9xPtfvWnpq9jimIM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/53696f-f973-47fb-8d79-addc6d4bb2e7/1/SanokeBtQid9xPtfvWnpq9jimIM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:78:fc:0c:80:b6:3e:e7:cb:6f:f4:4c:51:1c:a2:7c:92:53:
50:d8:c3:7b:32:8d:73:d2:6c:4c:6d:39:b2:9a:29:42:11:a6:
fe:62:15:43:e7:fa:6b:73:ba:f1:4d:d5:41:fd:57:f4:b5:5e:
2c:73:1f:a0:c4:ac:bb:2f:01:c2:15:99:1c:e9:c8:c7:e1:f0:
91:d7:73:e1:09:32:0c:a4:d8:e7:07:d9:ef:cd:27:7a:f0:4c:
13:df:77:a3:da:8e:cd:21:79:d6:a5:a4:8c:54:71:3c:68:dc:
a8:f7:62:a5:18:ae:10:ab:e9:ff:6a:9b:7d:50:70:b1:ef:1c:
54:5f:63:51:5e:2f:a9:ee:3e:1c:95:ff:23:51:f5:30:d5:a6:
3a:45:d1:44:0e:b5:a8:40:d6:bc:26:b6:03:5f:54:9d:09:36:
06:4c:e2:53:6c:b3:98:60:41:74:d9:3e:f4:23:04:bb:f1:e3:
3d:8c:db:bd:6a:fa:32:cf:02:a1:98:de:e4:9e:5f:8d:89:a0:
c4:93:19:cd:d8:72:d7:ba:32:fb:c7:43:73:dd:5c:93:2a:22:
3c:a5:78:f8:e2:9c:ae:c1:39:71:2f:6f:b1:9f:4a:00:86:61:
b5:55:7a:a8:67:b4:ef:06:b5:73:20:ec:f2:0e:54:45:92:a6:
7e:2e:28:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:50:49 2025 by rpki-client