Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft
File: sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft (raw, json)
Hash identifier: jr6vtCE0UIYaAwIGAS0NMqiEZ/r/wQ+MVTsvII59w+g=
Subject key identifier: 6B:B0:86:83:AC:9C:2D:38:8D:48:94:65:4B:5D:25:63:D8:26:65:44
Authority key identifier: B0:1A:59:D0:A6:1A:A6:17:44:38:98:8C:C8:35:98:DB:FE:A5:A9:98
Certificate issuer: /CN=b01a59d0a61aa6174438988cc83598dbfea5a998
Certificate serial: 0197B77BF35B47EB62CE67478581E55990E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBpZ0KYaphdEOJiMyDWY2_6lqZg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft
Manifest number: 1127
Signing time: Sat 28 Jun 2025 17:00:43 +0000
Manifest this update: Sat 28 Jun 2025 17:00:43 +0000
Manifest next update: Sun 29 Jun 2025 17:00:43 +0000
Files and hashes: 1: HSNefFgXaRWCGcIv1fjoOpFklrI.roa (hash: cKpMHes+RehvKJ31+pA2N64A397k3fGtWACpN0dogjA=)
2: sBpZ0KYaphdEOJiMyDWY2_6lqZg.crl (hash: QvoL3S1jYK8n5gnlPVjgTpJ91HQz+ki2kcy8/BvST1U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft
rsync://rpki.ripe.net/repository/DEFAULT/sBpZ0KYaphdEOJiMyDWY2_6lqZg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7b:f3:5b:47:eb:62:ce:67:47:85:81:e5:59:90:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b01a59d0a61aa6174438988cc83598dbfea5a998
Validity
Not Before: Jun 28 17:00:43 2025 GMT
Not After : Jun 29 17:00:43 2025 GMT
Subject: CN=6bb08683ac9c2d388d4894654b5d2563d8266544
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:f7:3c:bc:8e:af:8e:d6:c8:4e:d7:b8:e7:bc:
11:3e:ab:6b:1c:27:58:1b:7b:17:b2:92:d9:c2:01:
39:5c:4b:b0:29:d5:b1:5e:0a:32:27:c8:8e:29:64:
87:81:99:51:f6:40:e0:2d:70:cd:b9:a6:68:e7:8e:
12:08:7e:d1:2a:9b:3f:21:e4:7f:aa:e7:a1:16:6d:
4c:44:7a:a3:08:89:06:5f:fa:59:55:60:de:e0:af:
79:ea:51:48:b6:87:64:91:54:8e:7b:73:f0:2f:a0:
df:c0:e9:f3:3f:82:0a:48:20:9c:57:23:27:ee:36:
22:7c:97:44:b2:fc:50:73:51:80:fc:22:64:77:4b:
8c:ca:ad:e2:27:5c:7d:d3:30:8d:e9:4d:80:c9:1e:
3b:71:ad:94:cd:c2:84:f2:e5:a3:97:59:54:a3:a5:
f7:9e:f6:ce:61:50:96:43:f2:2d:52:90:51:47:26:
b9:c0:69:12:03:d6:2c:08:e7:3b:f3:ec:6f:da:61:
d0:5e:39:0f:9f:96:7c:66:2a:f3:ef:66:9a:68:75:
8b:4f:4a:43:a1:5d:c6:eb:53:4a:3e:bf:80:33:64:
ed:07:13:5d:55:a6:5c:af:9f:50:91:28:f8:e0:5a:
98:7c:da:4e:c1:f3:1f:9b:3f:42:00:34:1b:1c:81:
b1:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:B0:86:83:AC:9C:2D:38:8D:48:94:65:4B:5D:25:63:D8:26:65:44
X509v3 Authority Key Identifier:
keyid:B0:1A:59:D0:A6:1A:A6:17:44:38:98:8C:C8:35:98:DB:FE:A5:A9:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBpZ0KYaphdEOJiMyDWY2_6lqZg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:f7:ad:7f:34:fd:ed:06:d6:22:1e:ec:26:50:88:41:47:7a:
b5:57:96:e9:45:bc:bb:23:92:c5:f6:01:03:30:2d:3f:44:60:
0b:db:af:4a:4d:37:b1:04:e3:bb:1b:8c:4a:4b:c8:2d:6a:ef:
b0:9b:c3:84:c5:ea:9b:d1:19:83:41:0c:dc:96:91:3b:6d:72:
d8:1c:73:95:5a:20:fa:1a:4e:77:7c:4a:31:72:64:7b:4e:9d:
9e:79:74:18:28:df:93:d2:42:b6:fb:74:b8:e3:2a:04:84:91:
aa:2f:1c:8d:19:47:04:14:f5:dc:1a:d7:ed:fe:3e:99:23:eb:
de:3d:0c:a0:25:9a:98:e1:53:7d:6a:7c:af:cb:8d:74:54:52:
3c:2f:33:0f:78:75:ab:2f:d9:cc:46:cb:b2:40:6e:b3:38:0e:
be:95:fa:b9:23:7e:57:ba:35:7b:43:b6:fa:28:80:f2:98:90:
56:e7:e8:e7:68:80:75:54:ab:11:96:6e:e4:cd:e5:c1:b7:8b:
d9:9f:28:1f:b8:20:c4:8c:cb:81:f7:88:73:af:b1:5d:f9:c1:
e0:06:ff:a0:da:c2:00:94:f3:8d:7f:6d:28:86:eb:14:cb:b2:
77:c1:57:92:cf:68:b9:54:b6:63:58:22:90:81:a2:f1:6b:b5:
7c:93:aa:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:51:45 2025 by rpki-client