Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/5ae8bf-f999-4c74-9f46-325627c466e2/1/sbIBNjzMVWvsiHAladjTgaDolWY.mft
File: sbIBNjzMVWvsiHAladjTgaDolWY.mft (raw, json)
Hash identifier: U4XAT45jQNhku8tDpZ5uB6NkNUjgANR4A+p5+ypn1+Y=
Subject key identifier: 4C:83:68:1E:AC:EE:EF:14:B9:51:33:EA:67:E2:9D:40:FF:65:F4:99
Authority key identifier: B1:B2:01:36:3C:CC:55:6B:EC:88:70:25:69:D8:D3:81:A0:E8:95:66
Certificate issuer: /CN=b1b201363ccc556bec88702569d8d381a0e89566
Certificate serial: 0197C613DAB2E64F560A497B73AFF5C38A1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sbIBNjzMVWvsiHAladjTgaDolWY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/5ae8bf-f999-4c74-9f46-325627c466e2/1/sbIBNjzMVWvsiHAladjTgaDolWY.mft
Manifest number: 0C38
Signing time: Tue 01 Jul 2025 13:01:19 +0000
Manifest this update: Tue 01 Jul 2025 13:01:19 +0000
Manifest next update: Wed 02 Jul 2025 13:01:19 +0000
Files and hashes: 1: lqeFydVXrdHwpq6mWSJTL5OgZAY.roa (hash: YaK2y/qIg0D8N7eA9vbxZ0CRyImPi+H1Zg28ZURYmRg=)
2: sbIBNjzMVWvsiHAladjTgaDolWY.crl (hash: Ht6A7+5TeBuysXHGwtDBU829TTZ+k6ZfG08u7uecYB4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/5ae8bf-f999-4c74-9f46-325627c466e2/1/sbIBNjzMVWvsiHAladjTgaDolWY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c6/5ae8bf-f999-4c74-9f46-325627c466e2/1/sbIBNjzMVWvsiHAladjTgaDolWY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sbIBNjzMVWvsiHAladjTgaDolWY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 13:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c6:13:da:b2:e6:4f:56:0a:49:7b:73:af:f5:c3:8a:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1b201363ccc556bec88702569d8d381a0e89566
Validity
Not Before: Jul 1 13:01:19 2025 GMT
Not After : Jul 2 13:01:19 2025 GMT
Subject: CN=4c83681eaceeef14b95133ea67e29d40ff65f499
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:82:38:35:3f:09:d6:8e:45:cf:68:3d:d1:3a:
da:1b:aa:ab:64:a1:80:6b:28:7c:ba:9b:37:c8:7e:
03:bf:3c:a7:1a:90:3f:10:97:bc:2c:41:71:2f:87:
60:0b:d0:43:74:31:36:6e:1a:2b:c9:ea:72:6d:ef:
8a:21:c6:17:04:53:f9:7b:8b:7e:3a:59:fa:da:b3:
9f:5a:7a:3f:c4:7c:f8:c6:97:fc:51:75:f0:cf:35:
c5:36:c2:09:50:ae:c6:da:1b:bf:33:32:a7:52:fa:
db:ed:01:c1:2d:55:54:ac:08:f8:cb:f8:51:3b:b5:
f7:6c:ad:de:f6:b6:f7:47:65:9c:8f:93:4d:d9:1a:
3a:d3:4f:b8:e1:a7:e7:43:e2:cf:82:96:19:ad:92:
e7:37:1a:b2:8b:5a:04:c8:2d:b9:3b:13:5b:45:61:
b7:96:8c:14:8c:1b:e8:30:13:5c:8a:9d:cd:09:df:
b6:2a:f9:56:d6:00:32:ce:a7:3a:48:db:fa:39:5d:
86:6e:19:ab:55:3a:84:e2:98:3c:22:85:ef:a2:c6:
db:5b:14:ab:56:73:c6:77:67:4d:6d:e5:61:68:dd:
64:5c:f1:74:7b:50:ce:41:e1:7c:34:d9:5f:97:49:
ad:c3:0c:96:ea:e9:c2:41:64:5b:cb:c8:cf:2e:b8:
fd:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:83:68:1E:AC:EE:EF:14:B9:51:33:EA:67:E2:9D:40:FF:65:F4:99
X509v3 Authority Key Identifier:
keyid:B1:B2:01:36:3C:CC:55:6B:EC:88:70:25:69:D8:D3:81:A0:E8:95:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sbIBNjzMVWvsiHAladjTgaDolWY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/5ae8bf-f999-4c74-9f46-325627c466e2/1/sbIBNjzMVWvsiHAladjTgaDolWY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/5ae8bf-f999-4c74-9f46-325627c466e2/1/sbIBNjzMVWvsiHAladjTgaDolWY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:9c:ab:0c:16:c0:8a:83:f3:fc:02:6a:4b:27:ec:7f:11:10:
77:6f:2e:fa:5e:7a:e4:bd:48:9b:b9:11:56:d2:53:40:f2:dd:
cd:a9:01:9a:b2:8c:84:d6:34:d3:41:fe:ef:02:a0:9a:11:63:
a3:97:37:91:cd:bd:3f:25:cb:a1:8e:7d:0c:e1:b0:7b:33:70:
e9:5b:31:24:d4:42:62:b8:a2:9d:83:9d:e5:24:0e:88:b4:4b:
f2:f2:86:f3:83:61:2b:ba:aa:42:fa:db:8c:28:dc:1a:86:cb:
3c:5b:d2:c3:ba:ce:2f:2f:00:6d:af:a2:aa:ea:2f:14:be:c3:
06:e4:67:ca:b3:ae:db:e4:c8:ed:69:25:2b:cb:21:64:e7:56:
3e:84:16:8b:f9:f5:1a:d0:c2:c0:8f:00:99:d5:38:e1:08:01:
ad:81:19:d9:54:ff:b3:24:64:1d:07:3e:c9:58:9c:ed:99:02:
c0:92:78:49:c9:61:84:75:44:7d:bf:ab:c0:24:93:dc:69:6d:
f2:09:2a:90:dc:63:6a:65:60:aa:89:d9:54:05:45:36:1e:c1:
5f:63:e1:43:4e:a2:84:ec:e6:c3:6f:7f:c8:9a:9c:c8:09:55:
f1:ba:e4:f3:b9:66:af:08:94:5c:a0:d9:57:88:4a:2f:0d:a7:
3e:1d:00:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 21:13:34 2025 by rpki-client