Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/5ae8bf-f999-4c74-9f46-325627c466e2/1/sbIBNjzMVWvsiHAladjTgaDolWY.mft
File: sbIBNjzMVWvsiHAladjTgaDolWY.mft (raw, json)
Hash identifier: NZuKmv2/kReNrkjvq6P2VPi46yQeOMQc3jgm3bgHMO8=
Subject key identifier: 0C:79:56:7E:DB:D7:5D:C8:DF:F7:2E:4B:28:AE:9F:D9:7D:44:17:21
Authority key identifier: B1:B2:01:36:3C:CC:55:6B:EC:88:70:25:69:D8:D3:81:A0:E8:95:66
Certificate issuer: /CN=b1b201363ccc556bec88702569d8d381a0e89566
Certificate serial: 0199FDD9D8519BE252E33EF0400D309EED22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sbIBNjzMVWvsiHAladjTgaDolWY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/5ae8bf-f999-4c74-9f46-325627c466e2/1/sbIBNjzMVWvsiHAladjTgaDolWY.mft
Manifest number: 0D5E
Signing time: Sun 19 Oct 2025 19:02:16 +0000
Manifest this update: Sun 19 Oct 2025 19:02:16 +0000
Manifest next update: Mon 20 Oct 2025 19:02:16 +0000
Files and hashes: 1: lqeFydVXrdHwpq6mWSJTL5OgZAY.roa (hash: YaK2y/qIg0D8N7eA9vbxZ0CRyImPi+H1Zg28ZURYmRg=)
2: sbIBNjzMVWvsiHAladjTgaDolWY.crl (hash: tl3ZX08Df8GkEpuyxIsvtbbqUSyQToYMTOTYs+LlrLA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/5ae8bf-f999-4c74-9f46-325627c466e2/1/sbIBNjzMVWvsiHAladjTgaDolWY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c6/5ae8bf-f999-4c74-9f46-325627c466e2/1/sbIBNjzMVWvsiHAladjTgaDolWY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sbIBNjzMVWvsiHAladjTgaDolWY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:d8:51:9b:e2:52:e3:3e:f0:40:0d:30:9e:ed:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1b201363ccc556bec88702569d8d381a0e89566
Validity
Not Before: Oct 19 19:02:16 2025 GMT
Not After : Oct 20 19:02:16 2025 GMT
Subject: CN=0c79567edbd75dc8dff72e4b28ae9fd97d441721
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ee:a6:b9:c1:07:f4:6c:6a:cb:dc:6a:a2:cf:
0e:53:8a:a1:18:90:12:ea:b3:6c:62:70:55:06:1e:
5b:97:33:f4:f3:ef:79:aa:30:a0:f8:84:26:d6:12:
7b:d4:99:1d:07:29:1b:a3:46:6d:58:ea:3a:24:13:
8b:7f:ce:2e:28:bb:2c:66:95:7a:14:0c:70:9d:d0:
6b:2e:f0:be:b4:b8:60:bc:07:e4:48:97:36:43:e6:
6a:71:79:76:a2:8d:c2:1e:bb:03:40:8d:ee:d6:6d:
81:b9:05:8c:55:6c:74:f7:4e:cd:f5:5e:80:22:42:
98:47:e8:5a:9f:88:b3:df:fb:ff:73:34:27:14:b3:
94:1c:18:4a:21:a3:0c:58:da:7f:64:24:73:7b:2a:
b8:dc:d8:18:ed:37:f5:23:cb:6d:b6:ab:6f:12:db:
ea:3d:62:af:e3:1d:68:64:c8:bc:61:48:07:51:55:
87:72:96:74:69:04:fc:d3:e5:75:ad:33:f2:d5:52:
cd:53:32:5e:32:20:93:92:a4:1c:bf:f6:a6:3d:49:
d2:83:04:f1:5d:d9:28:68:57:64:91:ee:38:57:1c:
95:12:a2:a9:98:43:7c:1a:11:fd:0c:b2:c0:bf:25:
59:75:55:90:e6:ca:15:91:95:d8:00:fc:21:8d:34:
90:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:79:56:7E:DB:D7:5D:C8:DF:F7:2E:4B:28:AE:9F:D9:7D:44:17:21
X509v3 Authority Key Identifier:
keyid:B1:B2:01:36:3C:CC:55:6B:EC:88:70:25:69:D8:D3:81:A0:E8:95:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sbIBNjzMVWvsiHAladjTgaDolWY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/5ae8bf-f999-4c74-9f46-325627c466e2/1/sbIBNjzMVWvsiHAladjTgaDolWY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/5ae8bf-f999-4c74-9f46-325627c466e2/1/sbIBNjzMVWvsiHAladjTgaDolWY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:e8:f7:84:d9:e8:54:9e:4f:51:5b:13:50:a2:58:c1:9e:c1:
19:e7:ce:61:72:a9:85:0e:c2:2a:08:59:79:ec:65:68:5c:1c:
45:60:55:9a:95:11:d2:6e:01:5c:0e:9e:9b:6c:43:92:86:40:
51:df:05:d8:5f:92:92:cc:2a:f5:23:1d:d1:45:2e:c4:60:97:
a5:69:53:c0:b1:c9:0a:72:8f:a3:3c:25:b0:03:0d:9a:91:aa:
e6:15:15:1e:7f:cf:dd:a7:98:a6:88:32:c1:0b:54:1b:ee:9f:
0a:73:dd:cb:40:9b:5a:ab:03:3e:af:49:f2:e2:5a:93:59:a3:
25:6e:f1:e2:76:cf:51:26:2e:be:78:d2:6c:ef:7f:d1:70:b1:
af:42:67:09:db:84:5f:74:ec:ab:d6:02:e4:21:59:54:a8:48:
e2:8b:0b:47:a4:3c:e2:0c:69:e2:15:45:ab:26:2a:08:7f:aa:
46:1c:b3:59:37:80:3c:53:70:ec:23:e4:58:30:5d:98:81:15:
56:59:d7:c7:42:0a:fa:70:b8:f6:a3:42:9b:da:c1:4a:a1:ab:
00:27:ad:da:6d:d5:f4:e0:6e:1d:18:a7:ae:a6:6e:20:90:1c:
52:fc:2b:cb:56:c3:34:e0:34:d7:46:97:4e:a6:81:61:bf:b0:
90:cc:4d:8b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn92dhRm+JS4z7wQA0wnu0iMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxYjIwMTM2M2NjYzU1NmJlYzg4NzAyNTY5ZDhkMzgxYTBl
ODk1NjYwHhcNMjUxMDE5MTkwMjE2WhcNMjUxMDIwMTkwMjE2WjAzMTEwLwYDVQQD
EygwYzc5NTY3ZWRiZDc1ZGM4ZGZmNzJlNGIyOGFlOWZkOTdkNDQxNzIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwu6mucEH9Gxqy9xqos8OU4qhGJAS
6rNsYnBVBh5blzP08+95qjCg+IQm1hJ71JkdBykbo0ZtWOo6JBOLf84uKLssZpV6
FAxwndBrLvC+tLhgvAfkSJc2Q+ZqcXl2oo3CHrsDQI3u1m2BuQWMVWx0907N9V6A
IkKYR+han4iz3/v/czQnFLOUHBhKIaMMWNp/ZCRzeyq43NgY7Tf1I8tttqtvEtvq
PWKv4x1oZMi8YUgHUVWHcpZ0aQT80+V1rTPy1VLNUzJeMiCTkqQcv/amPUnSgwTx
XdkoaFdkke44VxyVEqKpmEN8GhH9DLLAvyVZdVWQ5soVkZXYAPwhjTSQGQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAx5Vn7b113I3/cuSyiun9l9RBchMB8GA1UdIwQY
MBaAFLGyATY8zFVr7IhwJWnY04Gg6JVmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2JJQk5qek1WV3ZzaUhBbGFkalRnYURvbFdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNi81YWU4YmYtZjk5OS00Yzc0LTlmNDYt
MzI1NjI3YzQ2NmUyLzEvc2JJQk5qek1WV3ZzaUhBbGFkalRnYURvbFdZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNi81YWU4YmYtZjk5OS00Yzc0LTlmNDYtMzI1NjI3YzQ2NmUy
LzEvc2JJQk5qek1WV3ZzaUhBbGFkalRnYURvbFdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiej3hNno
VJ5PUVsTUKJYwZ7BGefOYXKphQ7CKghZeexlaFwcRWBVmpUR0m4BXA6em2xDkoZA
Ud8F2F+Skswq9SMd0UUuxGCXpWlTwLHJCnKPozwlsAMNmpGq5hUVHn/P3aeYpogy
wQtUG+6fCnPdy0CbWqsDPq9J8uJak1mjJW7x4nbPUSYuvnjSbO9/0XCxr0JnCduE
X3Tsq9YC5CFZVKhI4osLR6Q84gxp4hVFqyYqCH+qRhyzWTeAPFNw7CPkWDBdmIEV
VlnXx0IK+nC49qNCm9rBSqGrACet2m3V9OBuHRinrqZuIJAcUvwry1bDNOA010aX
TqaBYb+wkMxNiw==
-----END CERTIFICATE-----
Generated at Sun Oct 19 20:40:29 2025 by rpki-client