Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/bb3b62-3302-45aa-968a-ecbb3fc0a725/1/sXLI1PyYbeufzrHw0MrifBwxNcM.mft
File: sXLI1PyYbeufzrHw0MrifBwxNcM.mft (raw, json)
Hash identifier: +jIW8CxnPbIWzRpmpJ3b0W4jUpAUVegh1/rlarVrYVA=
Subject key identifier: DC:0D:09:E9:48:5F:25:D5:5C:96:31:CE:E9:CC:90:05:F8:01:17:61
Authority key identifier: B1:72:C8:D4:FC:98:6D:EB:9F:CE:B1:F0:D0:CA:E2:7C:1C:31:35:C3
Certificate issuer: /CN=b172c8d4fc986deb9fceb1f0d0cae27c1c3135c3
Certificate serial: 0198D5F153EB2750701A5EE6614554EBE9FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sXLI1PyYbeufzrHw0MrifBwxNcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/bb3b62-3302-45aa-968a-ecbb3fc0a725/1/sXLI1PyYbeufzrHw0MrifBwxNcM.mft
Manifest number: 0B40
Signing time: Sat 23 Aug 2025 08:00:19 +0000
Manifest this update: Sat 23 Aug 2025 08:00:19 +0000
Manifest next update: Sun 24 Aug 2025 08:00:19 +0000
Files and hashes: 1: Fe5Gqx1aovGtXf8G6dbhghP8Zjc.roa (hash: BUPkFvlzjudVBF56jR+MbrRifodIklIIzIddNH6FiAc=)
2: sXLI1PyYbeufzrHw0MrifBwxNcM.crl (hash: SiFfZpQzeRMZBYx4sb7ukvkgfn2289TZ0dAAc2w25tc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/bb3b62-3302-45aa-968a-ecbb3fc0a725/1/sXLI1PyYbeufzrHw0MrifBwxNcM.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/bb3b62-3302-45aa-968a-ecbb3fc0a725/1/sXLI1PyYbeufzrHw0MrifBwxNcM.mft
rsync://rpki.ripe.net/repository/DEFAULT/sXLI1PyYbeufzrHw0MrifBwxNcM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:53:eb:27:50:70:1a:5e:e6:61:45:54:eb:e9:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b172c8d4fc986deb9fceb1f0d0cae27c1c3135c3
Validity
Not Before: Aug 23 08:00:19 2025 GMT
Not After : Aug 24 08:00:19 2025 GMT
Subject: CN=dc0d09e9485f25d55c9631cee9cc9005f8011761
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:14:d4:27:3c:08:c1:ad:31:e5:c6:73:88:16:
fc:a0:77:83:f6:49:30:44:7d:a7:0a:b1:31:5a:cc:
a0:a4:c9:6d:11:13:04:5b:c0:30:44:ab:94:57:29:
99:50:ab:db:25:b7:54:d3:0e:96:2b:d8:8f:c1:07:
0d:61:02:87:3c:8b:aa:4e:d5:ab:c8:63:91:61:6a:
67:61:f4:b7:e3:89:02:f0:b8:bd:ef:4f:9b:20:32:
06:9b:e1:42:d5:c2:ce:36:d3:58:25:ea:51:a1:a2:
23:74:db:95:2b:7e:52:e1:c7:6a:ba:2a:ac:e9:21:
d4:a7:8c:b8:0f:b3:8a:80:36:30:7a:30:99:36:bb:
d1:13:dd:4e:91:d2:ef:20:00:49:3f:83:81:cd:64:
0c:15:59:48:b3:cd:53:58:e9:59:d8:3a:af:ec:2e:
02:69:9e:1d:c5:62:f5:5f:45:43:0f:5a:8e:e2:52:
94:a9:9f:0f:20:6a:0d:88:b9:f9:e9:c9:ea:24:bf:
e9:fe:6a:a8:48:16:69:4f:9c:17:c3:c5:b8:9d:51:
bf:95:52:33:f5:fa:24:e7:93:f9:29:ef:2a:f5:c2:
18:78:bc:f0:3e:98:3a:d4:4a:4a:81:7c:24:42:32:
89:47:b9:1e:0a:ca:3c:72:dd:a8:2a:b5:c7:e2:c2:
73:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:0D:09:E9:48:5F:25:D5:5C:96:31:CE:E9:CC:90:05:F8:01:17:61
X509v3 Authority Key Identifier:
keyid:B1:72:C8:D4:FC:98:6D:EB:9F:CE:B1:F0:D0:CA:E2:7C:1C:31:35:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sXLI1PyYbeufzrHw0MrifBwxNcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/bb3b62-3302-45aa-968a-ecbb3fc0a725/1/sXLI1PyYbeufzrHw0MrifBwxNcM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/bb3b62-3302-45aa-968a-ecbb3fc0a725/1/sXLI1PyYbeufzrHw0MrifBwxNcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:63:39:68:03:d9:89:30:7b:2d:da:51:7b:36:5d:59:17:0b:
72:6c:0a:30:69:b2:f9:ef:b8:d1:de:02:a4:1f:e9:14:2f:5f:
bf:ca:60:06:39:69:03:b7:e0:63:bd:10:14:ef:8a:29:9c:85:
6d:c9:43:58:6a:93:51:84:f8:27:12:43:4a:e2:9c:80:dd:64:
bf:2a:2e:0f:93:93:d6:aa:5f:48:d0:1e:0b:fa:51:80:f6:f7:
29:99:0b:57:06:d9:18:cd:9f:06:e2:c0:af:f3:3d:e6:f8:4e:
7a:60:f3:03:73:be:39:07:d2:07:63:30:e3:7f:12:fc:3d:5e:
52:8b:27:a3:68:bc:89:52:cd:85:1d:85:cd:5f:05:de:38:8d:
03:9d:d1:c7:74:8d:87:55:3a:4f:e8:16:9b:5f:f1:d8:04:86:
83:f4:90:f0:f8:ac:88:4e:eb:9f:65:84:ab:34:12:86:e1:6a:
19:e9:0f:d2:47:d6:80:6d:09:e1:3d:8b:86:0d:17:e5:b7:f6:
78:af:2f:69:56:1a:ab:a0:36:c5:a4:b5:ac:2e:15:0e:8d:6f:
66:5f:bd:3d:82:dc:d5:10:21:b7:4d:c2:0d:85:c8:a8:1e:f1:
22:d8:d4:e9:04:64:aa:8e:bf:12:73:4d:49:7e:ab:dd:0e:be:
79:4f:d2:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:41:32 2025 by rpki-client