Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/5ae8bf-f999-4c74-9f46-325627c466e2/1/sbIBNjzMVWvsiHAladjTgaDolWY.mft
File: sbIBNjzMVWvsiHAladjTgaDolWY.mft (raw, json)
Hash identifier: s4ZHIs3jXu2taBYOnNWMmsvxHBDiuP+UT9DytUCMWlw=
Subject key identifier: 9C:18:E3:D4:25:EF:47:67:DB:BD:23:83:AD:59:4F:42:59:7B:46:37
Authority key identifier: B1:B2:01:36:3C:CC:55:6B:EC:88:70:25:69:D8:D3:81:A0:E8:95:66
Certificate issuer: /CN=b1b201363ccc556bec88702569d8d381a0e89566
Certificate serial: 0196C15DF4F0B6A651814DB41C52033DE0A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sbIBNjzMVWvsiHAladjTgaDolWY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/5ae8bf-f999-4c74-9f46-325627c466e2/1/sbIBNjzMVWvsiHAladjTgaDolWY.mft
Manifest number: 0BB1
Signing time: Sun 11 May 2025 22:01:22 +0000
Manifest this update: Sun 11 May 2025 22:01:22 +0000
Manifest next update: Mon 12 May 2025 22:01:22 +0000
Files and hashes: 1: lqeFydVXrdHwpq6mWSJTL5OgZAY.roa (hash: YaK2y/qIg0D8N7eA9vbxZ0CRyImPi+H1Zg28ZURYmRg=)
2: sbIBNjzMVWvsiHAladjTgaDolWY.crl (hash: 9PrbJCBz28VsNCIMlU4d1X4p21/OWADhGHYrf9zSu2Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/5ae8bf-f999-4c74-9f46-325627c466e2/1/sbIBNjzMVWvsiHAladjTgaDolWY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c6/5ae8bf-f999-4c74-9f46-325627c466e2/1/sbIBNjzMVWvsiHAladjTgaDolWY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sbIBNjzMVWvsiHAladjTgaDolWY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 22:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c1:5d:f4:f0:b6:a6:51:81:4d:b4:1c:52:03:3d:e0:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1b201363ccc556bec88702569d8d381a0e89566
Validity
Not Before: May 11 22:01:22 2025 GMT
Not After : May 12 22:01:22 2025 GMT
Subject: CN=9c18e3d425ef4767dbbd2383ad594f42597b4637
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:20:e8:d5:d3:94:45:b1:35:29:ff:81:1a:49:
5f:a3:d7:27:52:44:12:da:60:2b:37:e3:68:a5:f0:
32:24:07:9a:f2:79:40:41:c0:82:05:e1:ce:db:03:
ba:63:58:1e:35:0e:e7:3a:69:47:ff:cb:93:40:32:
9f:70:e5:1c:21:ec:20:d9:f7:bd:ab:09:9d:a4:26:
19:ca:e9:5a:89:78:d9:67:06:04:1d:49:bf:24:79:
15:67:44:81:f5:6d:94:e9:3b:bf:03:8b:c6:58:c3:
a3:6c:89:e7:79:c9:ae:91:6a:71:c8:ca:bf:b9:69:
53:8b:d0:c4:6e:d3:ae:4f:46:4a:9d:5e:df:aa:86:
92:b6:de:82:eb:3a:28:06:14:45:26:72:52:66:cf:
51:96:20:66:9f:89:80:3d:ac:62:a0:70:26:b4:9d:
b0:d0:96:b1:02:73:0f:64:a8:04:ad:e4:24:cb:aa:
5d:d8:6a:8c:45:02:01:62:5e:04:cf:46:73:e7:1b:
b5:a4:a5:a5:a5:a1:cf:c7:d2:5d:e0:ce:71:ef:3e:
5d:d1:34:93:fb:2a:e7:1f:fb:ac:3a:93:fd:7b:ed:
ee:d1:1f:5d:1d:d0:1a:77:9e:bf:76:49:84:70:2a:
d2:6f:de:e7:89:5d:44:6e:18:49:c5:1e:72:39:0f:
bd:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:18:E3:D4:25:EF:47:67:DB:BD:23:83:AD:59:4F:42:59:7B:46:37
X509v3 Authority Key Identifier:
keyid:B1:B2:01:36:3C:CC:55:6B:EC:88:70:25:69:D8:D3:81:A0:E8:95:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sbIBNjzMVWvsiHAladjTgaDolWY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/5ae8bf-f999-4c74-9f46-325627c466e2/1/sbIBNjzMVWvsiHAladjTgaDolWY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/5ae8bf-f999-4c74-9f46-325627c466e2/1/sbIBNjzMVWvsiHAladjTgaDolWY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:91:0f:0e:f3:35:be:4f:bc:4b:b0:01:71:75:86:a9:e1:32:
fd:73:d8:5e:f1:0b:e0:4e:62:c6:df:58:5b:72:e9:38:1a:0d:
91:0f:49:f8:82:6b:74:81:14:f8:bc:72:4c:0c:2d:95:73:53:
fd:f0:99:df:e7:b1:dd:52:fa:f5:06:80:18:a1:e0:53:1d:a5:
3f:0d:1b:5c:d3:8f:74:4c:54:9b:4d:81:fd:6e:3a:b3:5e:f4:
d2:0b:57:75:c1:9e:ff:7f:c1:ab:3c:a3:a7:6b:b2:5b:03:64:
19:9a:f3:b8:6e:e3:d8:46:a8:22:63:7b:35:83:d9:94:56:f0:
7b:dc:32:72:1b:b7:04:88:58:25:7c:21:2b:35:77:db:1e:cc:
29:c5:57:5c:12:39:ae:80:5d:1d:c8:0c:9d:48:0f:34:12:16:
36:67:3f:c2:46:3f:4d:d4:eb:51:d2:b0:ff:4d:0a:bf:c8:e8:
98:87:9a:70:ca:e1:2e:f7:0f:fa:50:7b:53:cf:7e:1f:b5:77:
ff:c3:8d:ae:92:db:33:14:71:65:86:30:25:7b:54:3e:ac:91:
d2:41:27:e2:7d:7a:de:5d:8c:f1:c7:6c:e3:70:b1:9f:38:4d:
7a:70:42:57:de:b9:fb:e7:8c:38:12:3e:70:b9:a3:b5:19:fa:
b9:5f:70:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 03:56:58 2025 by rpki-client