Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/5ae8bf-f999-4c74-9f46-325627c466e2/1/sbIBNjzMVWvsiHAladjTgaDolWY.mft
File: sbIBNjzMVWvsiHAladjTgaDolWY.mft (raw, json)
Hash identifier: TyPpY5NgtXkcaFBq4m1F/cGkFdfGja8xQs46B+pSJQg=
Subject key identifier: 9F:21:57:52:74:B9:46:71:1E:2D:D2:54:C5:F1:C5:EB:23:2D:B0:70
Authority key identifier: B1:B2:01:36:3C:CC:55:6B:EC:88:70:25:69:D8:D3:81:A0:E8:95:66
Certificate issuer: /CN=b1b201363ccc556bec88702569d8d381a0e89566
Certificate serial: 0198D472BC0E8DBE08656C5507492D61CA88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sbIBNjzMVWvsiHAladjTgaDolWY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/5ae8bf-f999-4c74-9f46-325627c466e2/1/sbIBNjzMVWvsiHAladjTgaDolWY.mft
Manifest number: 0CC4
Signing time: Sat 23 Aug 2025 01:02:25 +0000
Manifest this update: Sat 23 Aug 2025 01:02:25 +0000
Manifest next update: Sun 24 Aug 2025 01:02:25 +0000
Files and hashes: 1: lqeFydVXrdHwpq6mWSJTL5OgZAY.roa (hash: YaK2y/qIg0D8N7eA9vbxZ0CRyImPi+H1Zg28ZURYmRg=)
2: sbIBNjzMVWvsiHAladjTgaDolWY.crl (hash: gHF+kkmib12ICPWtHkZm8nIKprod8SSZXdHkAmzHdhE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/5ae8bf-f999-4c74-9f46-325627c466e2/1/sbIBNjzMVWvsiHAladjTgaDolWY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c6/5ae8bf-f999-4c74-9f46-325627c466e2/1/sbIBNjzMVWvsiHAladjTgaDolWY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sbIBNjzMVWvsiHAladjTgaDolWY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:bc:0e:8d:be:08:65:6c:55:07:49:2d:61:ca:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1b201363ccc556bec88702569d8d381a0e89566
Validity
Not Before: Aug 23 01:02:25 2025 GMT
Not After : Aug 24 01:02:25 2025 GMT
Subject: CN=9f21575274b946711e2dd254c5f1c5eb232db070
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:41:62:62:af:34:a0:87:2d:3e:1e:b7:70:0b:
8c:d1:73:9d:87:01:ed:fa:57:0a:19:04:c8:5e:03:
7f:47:be:ba:b0:78:5e:24:f7:40:21:21:44:47:c6:
6f:04:aa:50:7e:2b:81:16:9d:72:7c:71:93:68:87:
5c:d9:48:22:26:27:a6:08:0e:61:6a:64:58:58:26:
0b:01:bb:89:ea:aa:12:86:75:5a:35:0e:f3:8f:8d:
85:cd:d9:28:6c:1f:ff:41:a4:a4:17:71:e3:35:b7:
10:32:38:46:25:64:d9:59:e3:8f:b2:00:cc:fb:89:
82:a5:41:2b:43:2b:e6:07:f4:44:c9:6f:e1:10:97:
dd:32:02:e0:3f:a7:07:72:b2:32:1d:be:6e:7b:ed:
78:45:d0:68:84:9e:f9:b4:3b:24:2b:f7:1b:7a:fe:
f5:6c:d1:ee:3b:13:29:0e:d5:02:cc:08:df:d2:73:
cb:40:f1:9e:72:f2:a7:37:2f:fe:3b:2a:a0:7d:48:
93:74:25:e9:d9:67:08:1d:95:c5:c2:b3:7b:b2:e8:
8f:e5:19:0a:65:eb:21:2a:ee:a9:22:02:0c:b8:0b:
4b:1a:47:42:bd:6a:8a:ea:db:d6:b8:ad:51:cf:d8:
8b:e5:d6:56:5f:1a:96:a3:18:14:82:64:e4:95:34:
43:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:21:57:52:74:B9:46:71:1E:2D:D2:54:C5:F1:C5:EB:23:2D:B0:70
X509v3 Authority Key Identifier:
keyid:B1:B2:01:36:3C:CC:55:6B:EC:88:70:25:69:D8:D3:81:A0:E8:95:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sbIBNjzMVWvsiHAladjTgaDolWY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/5ae8bf-f999-4c74-9f46-325627c466e2/1/sbIBNjzMVWvsiHAladjTgaDolWY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/5ae8bf-f999-4c74-9f46-325627c466e2/1/sbIBNjzMVWvsiHAladjTgaDolWY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:42:3c:76:66:3f:85:33:e9:6c:07:09:09:d2:fa:9c:17:cb:
33:16:64:7e:14:ea:d6:73:ce:14:4d:0e:fe:35:99:7f:81:9f:
19:ec:7e:26:2f:7f:5e:a3:80:a8:2b:d1:4d:75:c0:af:f0:19:
af:20:e8:8e:49:ec:1e:91:6a:86:d0:2b:5c:f3:d5:6e:3e:e7:
9b:e4:8a:f0:67:32:b3:1c:0b:61:25:1a:9f:a0:6b:6f:ae:9e:
37:9d:39:83:d2:be:ee:6a:45:7a:67:35:46:17:b9:73:1d:3f:
06:87:17:1d:79:df:86:a0:0f:be:90:b7:1a:4d:ac:9b:0f:a6:
f2:a1:5f:d3:85:45:74:2d:5d:69:79:c0:89:a9:6d:13:43:08:
2e:b2:76:6a:45:6a:ab:c8:ac:9e:84:a8:2d:1a:91:b9:65:ef:
27:17:41:ff:a1:02:bf:47:83:e9:9a:d4:e9:32:76:47:54:53:
be:26:95:a9:07:76:2e:3d:c2:80:75:d7:e7:8c:fd:e5:1b:a6:
53:1a:e7:23:30:7a:a3:66:ab:38:96:05:c8:a3:20:72:87:06:
71:bd:b7:50:c2:66:30:98:97:6b:2d:83:57:0e:40:8c:07:e9:
9c:a5:a3:db:e0:ca:94:eb:6c:17:4d:7c:11:7f:7b:3e:d4:68:
ea:5d:bb:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:39:15 2025 by rpki-client