Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft
File: sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft (raw, json)
Hash identifier: k2nV6CCHbKS9dLYfXMFXpDFVKc093+eDY0hRp7NOKyc=
Subject key identifier: AF:0D:CA:7F:5C:45:92:48:7B:5E:0C:4C:ED:99:A1:1C:34:57:6F:8B
Authority key identifier: B0:1A:59:D0:A6:1A:A6:17:44:38:98:8C:C8:35:98:DB:FE:A5:A9:98
Certificate issuer: /CN=b01a59d0a61aa6174438988cc83598dbfea5a998
Certificate serial: 0199FCC67404FE2B8E207F68BDE460D3791C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBpZ0KYaphdEOJiMyDWY2_6lqZg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft
Manifest number: 1254
Signing time: Sun 19 Oct 2025 14:01:28 +0000
Manifest this update: Sun 19 Oct 2025 14:01:28 +0000
Manifest next update: Mon 20 Oct 2025 14:01:28 +0000
Files and hashes: 1: HSNefFgXaRWCGcIv1fjoOpFklrI.roa (hash: cKpMHes+RehvKJ31+pA2N64A397k3fGtWACpN0dogjA=)
2: sBpZ0KYaphdEOJiMyDWY2_6lqZg.crl (hash: lc7XJfHVeZIAVjV6AqSPz0KjuFWvB/DjHxBWBM0yA+I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft
rsync://rpki.ripe.net/repository/DEFAULT/sBpZ0KYaphdEOJiMyDWY2_6lqZg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 14:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:74:04:fe:2b:8e:20:7f:68:bd:e4:60:d3:79:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b01a59d0a61aa6174438988cc83598dbfea5a998
Validity
Not Before: Oct 19 14:01:28 2025 GMT
Not After : Oct 20 14:01:28 2025 GMT
Subject: CN=af0dca7f5c4592487b5e0c4ced99a11c34576f8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:39:ce:f7:7b:8c:f6:50:60:dd:33:91:b2:e7:
3c:b0:67:d2:99:e2:e1:f2:59:1a:cd:52:30:f7:22:
18:2e:b9:4b:4c:b1:e3:18:77:5d:eb:3c:01:8b:12:
03:7d:0d:82:b4:19:7a:2f:e2:e9:d5:41:d6:66:e0:
82:8e:d6:ea:ef:c9:fb:ee:3e:61:10:2d:b2:16:5f:
96:b7:e1:1e:42:83:92:46:42:05:ae:59:f3:92:d4:
da:9a:09:5b:fc:ac:9f:d9:4d:1b:84:b3:55:2b:9e:
b1:06:14:86:74:04:90:c0:cb:b5:a6:3d:c4:13:44:
52:35:38:95:44:d1:e2:dd:a9:cc:27:d4:51:ea:89:
26:c5:e0:07:5b:82:80:4b:de:cb:fe:ab:cf:60:ac:
7d:44:58:d8:e2:8a:a8:ec:05:c6:89:6c:41:40:61:
82:ef:34:82:c5:7e:44:81:5d:1e:28:60:2a:19:4c:
8f:17:c8:4a:3e:1c:31:7c:c6:f4:32:c7:e4:68:3d:
1a:b9:3b:1b:e6:00:a9:3f:ee:0c:45:a3:5f:51:94:
0e:25:9c:df:b6:fa:ea:71:a2:66:e4:3d:0a:78:57:
be:e3:78:2d:d8:78:59:6a:18:db:5c:42:9a:be:77:
93:16:a5:50:22:8d:d4:fb:73:16:81:a6:3b:38:50:
9b:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:0D:CA:7F:5C:45:92:48:7B:5E:0C:4C:ED:99:A1:1C:34:57:6F:8B
X509v3 Authority Key Identifier:
keyid:B0:1A:59:D0:A6:1A:A6:17:44:38:98:8C:C8:35:98:DB:FE:A5:A9:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBpZ0KYaphdEOJiMyDWY2_6lqZg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:ab:8c:5f:49:9a:93:5e:c5:48:6d:01:d7:52:ee:26:eb:6b:
82:a4:10:6a:dc:1e:23:6a:4a:b3:a5:29:02:16:67:3a:ee:45:
e7:59:78:8e:5c:e0:b6:a4:d5:62:0e:b1:58:94:12:13:f8:96:
ee:da:10:bc:85:cb:fd:a4:50:4a:c1:c9:e5:e0:fa:65:45:17:
82:5a:65:35:60:25:51:f1:8c:6e:01:b6:f9:ac:2e:1c:9c:41:
c1:0f:fa:0b:f1:4a:bf:b0:d5:2a:ac:5f:25:9c:e3:69:18:86:
c0:e7:20:0a:c2:6e:d9:5a:c6:67:b2:ff:a6:18:c3:83:2d:27:
d1:0b:0c:90:9a:06:c5:e0:54:8e:81:cb:33:f5:3b:47:c3:e3:
15:46:38:11:3a:55:83:f3:07:37:fa:2f:f1:b6:a1:7b:8e:a1:
50:91:72:e5:86:99:32:d5:df:af:55:88:71:6e:c1:30:57:16:
13:42:ab:3a:0c:2e:8f:58:8a:52:ad:93:12:25:4e:07:6d:91:
99:fc:92:41:16:f8:85:e2:66:f9:29:ab:87:51:a8:a6:27:3a:
74:63:6a:b0:34:73:ad:ad:aa:3c:3a:e5:24:6b:40:5c:29:f0:
83:df:48:e9:64:da:d4:fe:5c:99:97:08:62:65:33:34:25:f7:
4d:40:73:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 22:31:43 2025 by rpki-client