Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft
File: sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft (raw, json)
Hash identifier: koG+rzQPtaqa2Zpjwlh/Sq7AyrChXGnVakY/dgYRJYE=
Subject key identifier: 09:51:C5:71:2B:35:0A:97:74:95:F9:27:36:33:1E:06:46:B4:80:43
Authority key identifier: B0:1A:59:D0:A6:1A:A6:17:44:38:98:8C:C8:35:98:DB:FE:A5:A9:98
Certificate issuer: /CN=b01a59d0a61aa6174438988cc83598dbfea5a998
Certificate serial: 0198D54E170AC61246141544C485A9651CEB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBpZ0KYaphdEOJiMyDWY2_6lqZg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft
Manifest number: 11BB
Signing time: Sat 23 Aug 2025 05:02:01 +0000
Manifest this update: Sat 23 Aug 2025 05:02:01 +0000
Manifest next update: Sun 24 Aug 2025 05:02:01 +0000
Files and hashes: 1: HSNefFgXaRWCGcIv1fjoOpFklrI.roa (hash: cKpMHes+RehvKJ31+pA2N64A397k3fGtWACpN0dogjA=)
2: sBpZ0KYaphdEOJiMyDWY2_6lqZg.crl (hash: aoalx4AH+4ANV+mAEWu16YBlgl3gDKR6aNn4fNzVwqQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft
rsync://rpki.ripe.net/repository/DEFAULT/sBpZ0KYaphdEOJiMyDWY2_6lqZg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:17:0a:c6:12:46:14:15:44:c4:85:a9:65:1c:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b01a59d0a61aa6174438988cc83598dbfea5a998
Validity
Not Before: Aug 23 05:02:01 2025 GMT
Not After : Aug 24 05:02:01 2025 GMT
Subject: CN=0951c5712b350a977495f92736331e0646b48043
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:bf:70:72:1c:dc:2c:f7:8c:19:23:17:fc:7b:
22:73:78:85:5d:cf:64:86:30:70:cf:0d:8a:6b:f5:
ba:9e:cb:c6:47:bf:3a:86:cb:2e:b6:98:5d:29:a8:
9a:0d:f7:6a:81:20:ce:38:3d:20:94:5a:7e:0a:49:
ca:47:9e:ec:af:10:c9:01:99:d3:a4:4e:a5:1a:e5:
0a:99:35:7a:f9:5d:cf:b3:8b:9b:13:b9:c1:c3:8d:
9d:ad:b4:72:43:bb:54:00:97:52:b5:19:f2:10:21:
3b:0c:b4:63:93:a4:d6:5b:ab:20:0e:62:ef:7f:ea:
50:a9:16:33:fe:b8:80:ab:26:36:b5:0e:67:78:63:
f4:45:9e:d7:94:1e:c8:ea:e3:b3:33:52:2e:50:40:
2d:e8:90:77:bd:4c:97:5c:c0:14:e5:9f:5b:1e:eb:
99:62:3c:b6:00:3c:8d:04:36:bf:ba:e7:71:6b:57:
62:60:ba:19:f1:84:ad:8e:15:0b:6a:c0:a7:96:06:
50:06:3c:8d:e7:f0:e3:71:f6:01:12:a4:d6:a5:4d:
d1:94:a3:fc:40:96:6e:0d:30:31:b2:97:79:88:0f:
0c:2a:a7:a2:77:8b:ce:b5:ad:81:3d:c2:1e:1b:5a:
80:7b:cb:64:8d:21:19:43:f5:7d:65:d2:f2:63:25:
2a:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:51:C5:71:2B:35:0A:97:74:95:F9:27:36:33:1E:06:46:B4:80:43
X509v3 Authority Key Identifier:
keyid:B0:1A:59:D0:A6:1A:A6:17:44:38:98:8C:C8:35:98:DB:FE:A5:A9:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBpZ0KYaphdEOJiMyDWY2_6lqZg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:47:79:3f:a3:df:c9:af:fe:f4:e2:a2:bf:6a:44:dd:2d:56:
ec:55:37:f3:7f:9d:f5:c6:c2:26:45:32:9a:26:6c:b0:c5:bc:
c4:dc:65:97:41:01:4d:76:29:db:69:95:5e:50:98:7a:66:00:
bc:0d:fe:fd:7b:92:9f:0c:57:59:7a:e3:0f:53:7a:88:94:3e:
6f:2d:fd:42:0b:84:52:28:79:18:fa:e0:69:ae:52:bf:f4:72:
5c:6f:51:c1:55:bd:b3:92:9c:46:a5:c3:60:30:8f:ba:97:0a:
30:9e:0e:06:36:84:29:74:25:c5:c7:30:ad:8b:44:85:6b:40:
58:c8:f2:97:31:ba:b6:0e:cf:53:a5:92:a6:93:0f:97:29:40:
07:81:46:76:8b:87:4c:0f:3b:32:ba:ec:0e:02:b4:7e:38:b4:
28:15:4b:81:22:8f:40:85:11:a0:36:7d:c7:5c:59:d5:d1:79:
ea:86:b4:7a:69:88:d0:87:76:fb:15:29:9e:a5:d5:1f:77:0c:
7c:98:40:b7:45:94:86:be:4c:3b:2b:0d:36:91:49:1d:63:74:
bf:35:63:a1:ce:73:6c:e1:2c:a7:7a:5d:27:a7:39:86:a9:9d:
69:c8:cf:70:88:cf:b8:df:e4:02:d4:89:08:f9:7e:88:c1:82:
4d:a3:60:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:49:57 2025 by rpki-client