Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
File: sd-OADfxroL3viI1rmEsQBD2_pE.mft (raw, json)
Hash identifier: SNPYG2xApAW8XQmzbqDeC/gLfIXw84ZxmtyTkEgTWmc=
Subject key identifier: FF:F6:9B:7A:A4:58:8D:57:2A:14:A6:5C:91:42:AF:82:3E:FE:A0:AE
Authority key identifier: B1:DF:8E:00:37:F1:AE:82:F7:BE:22:35:AE:61:2C:40:10:F6:FE:91
Certificate issuer: /CN=b1df8e0037f1ae82f7be2235ae612c4010f6fe91
Certificate serial: 0198D54E53AD15508011DD0D94526AB42C1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
Manifest number: 015F
Signing time: Sat 23 Aug 2025 05:02:16 +0000
Manifest this update: Sat 23 Aug 2025 05:02:16 +0000
Manifest next update: Sun 24 Aug 2025 05:02:16 +0000
Files and hashes: 1: GdRMKH6WdmmVubPmURRtVnS8GV8.roa (hash: gQYTKVfews/6lfRAQlloM0LgEpj91iqOXwXozcwIpNc=)
2: sd-OADfxroL3viI1rmEsQBD2_pE.crl (hash: iuZovxxX+BQmMkAlDwkbM+v+esibuD6NDrC1exI3Fqo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:53:ad:15:50:80:11:dd:0d:94:52:6a:b4:2c:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1df8e0037f1ae82f7be2235ae612c4010f6fe91
Validity
Not Before: Aug 23 05:02:16 2025 GMT
Not After : Aug 24 05:02:16 2025 GMT
Subject: CN=fff69b7aa4588d572a14a65c9142af823efea0ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:27:aa:b1:f3:d3:7e:f7:cb:51:36:ac:98:33:
0f:83:13:ef:b3:dc:b5:87:6d:ca:ba:00:0d:1d:ba:
2f:3d:55:c9:f9:bd:a4:82:dd:9e:e4:47:32:3c:d1:
b1:4e:83:8c:85:bf:fe:3f:dc:13:db:5f:fe:46:0c:
e8:8a:5d:4c:1c:20:4d:d5:16:9a:9b:0f:e5:66:e3:
1e:6c:cc:85:96:65:6a:3d:88:01:c2:a3:f4:b9:3e:
71:b0:78:48:2f:40:08:1a:b9:9b:b4:43:40:5b:e4:
f2:da:d7:53:49:a3:b4:0a:15:29:84:d5:99:93:ea:
22:54:fc:a0:52:c5:5f:a7:d6:aa:31:1e:78:3d:c1:
e1:d4:c7:da:66:19:38:69:d3:82:a6:d8:45:6d:35:
50:d3:b8:95:8f:71:be:98:50:f3:c9:ec:c2:81:62:
88:81:8d:48:34:8a:93:3a:f5:7f:49:ff:51:c9:5f:
8b:a8:e1:98:70:60:3c:d9:3a:30:34:b5:14:56:5c:
29:b6:51:4c:a6:3e:2c:71:a6:ec:b4:06:18:87:38:
09:9c:4a:96:31:c8:20:dd:3b:ca:67:8e:c9:12:6f:
8e:10:ba:05:61:b1:dc:c8:57:06:9f:b0:ce:4b:73:
38:de:d3:e8:5a:0a:8a:37:32:72:0f:a6:83:e6:70:
9a:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:F6:9B:7A:A4:58:8D:57:2A:14:A6:5C:91:42:AF:82:3E:FE:A0:AE
X509v3 Authority Key Identifier:
keyid:B1:DF:8E:00:37:F1:AE:82:F7:BE:22:35:AE:61:2C:40:10:F6:FE:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:fa:b1:a8:2c:89:4c:41:33:be:54:37:af:64:3e:10:53:c2:
cf:0e:12:01:1e:58:f2:b3:93:c3:63:74:b7:79:f1:7c:4c:1f:
f3:a0:b4:ba:0c:73:be:9d:06:23:cb:65:b2:7a:fe:da:be:5f:
1c:ba:c4:3f:51:f6:bd:0c:81:99:26:1c:67:cb:16:5f:0e:34:
55:af:0d:59:1e:a5:fb:52:0a:01:ea:76:c1:ea:ad:2a:ae:35:
78:cf:0e:62:f2:be:f3:82:6d:58:3b:14:1d:25:b5:e6:bc:12:
39:46:13:44:a1:48:9a:80:77:e2:92:88:67:07:f9:6e:64:7e:
f4:6a:dc:c9:a9:ea:60:20:de:69:ad:d5:e9:df:2f:70:16:60:
da:aa:c6:37:12:cc:41:dc:74:e2:cc:75:46:f5:87:aa:ec:0d:
8d:e9:56:c9:83:dc:a6:2a:2a:7b:e8:ca:87:66:bd:a8:b4:fe:
85:98:11:7d:e9:ac:17:81:9d:47:34:53:fe:72:e8:51:10:04:
52:65:e5:1f:f3:e5:de:a7:b2:f7:2b:d7:2f:23:9d:13:25:e1:
4b:5b:3c:82:3d:a4:06:cc:18:63:c5:99:26:0b:76:4f:96:12:
a0:9a:86:55:30:83:f3:5e:1e:04:25:5c:a3:54:ba:fa:cf:96:
62:59:4e:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:11:11 2025 by rpki-client