Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/bb3b62-3302-45aa-968a-ecbb3fc0a725/1/sXLI1PyYbeufzrHw0MrifBwxNcM.mft
File: sXLI1PyYbeufzrHw0MrifBwxNcM.mft (raw, json)
Hash identifier: z1LdGhsqV4P/dNzXVfdqTeEST7QDs/bIWoloTbJZULs=
Subject key identifier: 27:79:87:EB:52:24:24:EE:4B:5D:E3:89:2C:B8:5A:63:AC:E8:09:FB
Authority key identifier: B1:72:C8:D4:FC:98:6D:EB:9F:CE:B1:F0:D0:CA:E2:7C:1C:31:35:C3
Certificate issuer: /CN=b172c8d4fc986deb9fceb1f0d0cae27c1c3135c3
Certificate serial: 0197B820CBB52093EE6BD8DF2BC319BD43C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sXLI1PyYbeufzrHw0MrifBwxNcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/bb3b62-3302-45aa-968a-ecbb3fc0a725/1/sXLI1PyYbeufzrHw0MrifBwxNcM.mft
Manifest number: 0AAC
Signing time: Sat 28 Jun 2025 20:00:46 +0000
Manifest this update: Sat 28 Jun 2025 20:00:46 +0000
Manifest next update: Sun 29 Jun 2025 20:00:46 +0000
Files and hashes: 1: Fe5Gqx1aovGtXf8G6dbhghP8Zjc.roa (hash: BUPkFvlzjudVBF56jR+MbrRifodIklIIzIddNH6FiAc=)
2: sXLI1PyYbeufzrHw0MrifBwxNcM.crl (hash: 3ojBRkvzK6JYw4XVP+fmDyH/UKsF96bzSimof/0IKOM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/bb3b62-3302-45aa-968a-ecbb3fc0a725/1/sXLI1PyYbeufzrHw0MrifBwxNcM.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/bb3b62-3302-45aa-968a-ecbb3fc0a725/1/sXLI1PyYbeufzrHw0MrifBwxNcM.mft
rsync://rpki.ripe.net/repository/DEFAULT/sXLI1PyYbeufzrHw0MrifBwxNcM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:20:cb:b5:20:93:ee:6b:d8:df:2b:c3:19:bd:43:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b172c8d4fc986deb9fceb1f0d0cae27c1c3135c3
Validity
Not Before: Jun 28 20:00:46 2025 GMT
Not After : Jun 29 20:00:46 2025 GMT
Subject: CN=277987eb522424ee4b5de3892cb85a63ace809fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:1c:18:35:c8:fb:e8:1e:d3:cf:24:a2:dc:fb:
64:21:51:d9:b8:58:4a:c8:70:4e:4a:42:28:a3:e4:
ea:4b:f1:af:75:ba:cd:95:ad:9c:45:47:6e:c5:4b:
83:89:52:ba:fb:ea:97:bb:46:e2:6c:1a:b6:8f:a2:
dc:67:7c:fa:c5:ab:70:09:04:cb:33:41:22:e7:d0:
87:fa:04:09:38:30:0e:bf:20:b2:6e:8e:fa:7c:86:
5a:e1:8b:f8:c0:c5:bc:6a:b4:e9:78:c5:28:b8:3f:
34:17:2f:d9:85:00:75:1f:85:49:0b:81:da:fa:f7:
6b:14:6c:b9:c5:9a:26:81:40:f9:7b:f6:ff:9e:3b:
5f:c8:a3:0b:4e:72:b4:c3:5a:7b:56:32:7f:17:23:
f8:5d:d8:a9:4b:56:f8:ac:02:a6:cb:59:7a:b6:59:
98:ab:1e:a5:22:2b:cf:b9:4f:08:93:5d:ab:ad:f5:
94:13:a7:89:c2:9a:db:c8:3b:17:ae:d2:c8:3e:69:
12:7c:34:1e:4a:e1:c7:c2:5e:a8:34:d8:7a:ab:07:
75:07:36:4f:55:88:f2:47:da:25:e8:16:9b:22:0b:
1e:6b:8d:a6:ae:d2:89:f7:f8:9d:2a:dc:27:5d:ce:
a6:92:1c:89:c2:d0:ed:42:e5:4b:22:be:32:56:55:
c9:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:79:87:EB:52:24:24:EE:4B:5D:E3:89:2C:B8:5A:63:AC:E8:09:FB
X509v3 Authority Key Identifier:
keyid:B1:72:C8:D4:FC:98:6D:EB:9F:CE:B1:F0:D0:CA:E2:7C:1C:31:35:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sXLI1PyYbeufzrHw0MrifBwxNcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/bb3b62-3302-45aa-968a-ecbb3fc0a725/1/sXLI1PyYbeufzrHw0MrifBwxNcM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/bb3b62-3302-45aa-968a-ecbb3fc0a725/1/sXLI1PyYbeufzrHw0MrifBwxNcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:04:aa:d1:13:4b:12:87:d1:84:03:af:22:e1:a3:21:54:a7:
4d:cd:1b:a1:ca:57:1a:6a:e8:b0:2b:c3:44:6f:ce:f3:9c:47:
26:0e:d2:83:69:83:52:c1:05:71:70:55:ea:34:9d:22:7c:2f:
90:3b:1f:40:e0:00:ef:d0:0a:3a:b3:eb:ef:24:58:17:7a:2c:
80:db:cb:d8:ba:cf:de:47:d5:28:73:10:2a:cc:f0:80:64:d4:
3c:dd:94:22:72:ed:1a:9b:3c:8e:b2:97:b5:d0:03:b6:0b:de:
06:e1:3d:b7:5d:a8:ae:09:eb:ff:60:ce:2d:7a:61:f1:2b:35:
65:97:b8:39:c8:21:ab:12:6b:53:d7:6c:47:2e:60:c7:6c:52:
1f:e4:1e:78:a2:3e:f3:2e:41:cd:e6:08:4a:01:c6:2a:67:33:
b0:79:d2:3d:61:a8:40:07:e9:4f:02:21:b7:7a:c0:4d:a8:51:
d0:c6:ab:3e:37:72:0f:03:a6:4f:6c:ea:d3:cf:17:c0:db:3f:
3c:fd:f9:27:a7:0f:14:9d:29:4f:b3:8e:79:7f:70:96:82:b4:
ae:90:e3:8c:5f:e7:a0:87:fe:3c:52:22:21:53:9b:b7:e8:3a:
ea:71:91:dd:28:45:f7:6d:f9:6a:c6:3b:fc:e0:c4:68:60:c0:
47:84:e1:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:27:37 2025 by rpki-client