Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/238486-3e8d-4bc3-a19d-0a768b24125a/1/sKEzNsOO66EMusnCjK8e_PRKyGM.mft
File: sKEzNsOO66EMusnCjK8e_PRKyGM.mft (raw, json)
Hash identifier: GCVgcoJLxjweMpj/ztVDvrFxSq3048BKZAQVJoAxjxM=
Subject key identifier: 74:9C:38:46:E5:6D:6F:4A:F6:EC:2C:4E:45:57:DD:34:29:EB:85:12
Authority key identifier: B0:A1:33:36:C3:8E:EB:A1:0C:BA:C9:C2:8C:AF:1E:FC:F4:4A:C8:63
Certificate issuer: /CN=b0a13336c38eeba10cbac9c28caf1efcf44ac863
Certificate serial: 019A2F69D1D30551301B3578254CA26A7859
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sKEzNsOO66EMusnCjK8e_PRKyGM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/238486-3e8d-4bc3-a19d-0a768b24125a/1/sKEzNsOO66EMusnCjK8e_PRKyGM.mft
Manifest number: 09C6
Signing time: Wed 29 Oct 2025 10:00:55 +0000
Manifest this update: Wed 29 Oct 2025 10:00:55 +0000
Manifest next update: Thu 30 Oct 2025 10:00:55 +0000
Files and hashes: 1: sKEzNsOO66EMusnCjK8e_PRKyGM.crl (hash: aUbwXutaHYJ9ccE/7/FGSeeUyUYCwjEzQDi1Stbcau4=)
2: y3LlHCcHKFo-BQ_p86jxyc013sQ.roa (hash: 70W6ragDKntXJcQVl89iuaUr+4h8ye/EbsXthKhbWqg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/238486-3e8d-4bc3-a19d-0a768b24125a/1/sKEzNsOO66EMusnCjK8e_PRKyGM.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/238486-3e8d-4bc3-a19d-0a768b24125a/1/sKEzNsOO66EMusnCjK8e_PRKyGM.mft
rsync://rpki.ripe.net/repository/DEFAULT/sKEzNsOO66EMusnCjK8e_PRKyGM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 30 Oct 2025 08:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:2f:69:d1:d3:05:51:30:1b:35:78:25:4c:a2:6a:78:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0a13336c38eeba10cbac9c28caf1efcf44ac863
Validity
Not Before: Oct 29 10:00:55 2025 GMT
Not After : Oct 30 10:00:55 2025 GMT
Subject: CN=749c3846e56d6f4af6ec2c4e4557dd3429eb8512
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:16:89:5c:48:3c:c5:ed:79:fd:fb:18:01:61:
f9:90:3f:1c:0a:33:73:ae:55:a4:59:d2:9d:8d:17:
a3:f9:c7:98:9e:3e:06:e7:c2:ba:97:f8:7c:90:1f:
9f:a4:39:be:40:fd:4f:8b:cf:4c:d1:9b:6f:6f:83:
57:96:3b:50:e3:f4:26:d9:ab:a6:4d:f9:f2:66:62:
1f:fd:e0:d5:6c:18:87:c7:91:cf:99:d5:f3:91:9f:
a5:d0:fb:00:c9:56:f0:4c:17:04:7f:06:c0:98:a0:
bb:52:ab:dd:c6:09:64:d2:d4:b6:08:fc:e7:df:4f:
76:af:43:4f:5b:61:42:28:c1:bb:54:90:5e:da:6e:
86:1b:02:83:15:48:e6:cf:95:da:fe:2a:57:c1:ef:
aa:2b:80:83:e6:d9:d2:9a:bb:3f:7a:7d:71:f0:80:
c8:6d:bc:ef:d4:c6:1d:5b:ab:2e:b7:2b:df:55:dc:
c6:2d:c0:3f:67:a8:3d:73:3d:f9:ce:ff:2d:47:60:
f3:77:e8:f5:3b:be:1e:40:da:2c:e1:16:1e:01:33:
99:21:4c:af:8e:6d:48:7c:46:48:c6:37:77:76:94:
76:9a:c5:25:a9:98:b2:81:39:f0:60:0a:3a:26:bd:
60:fd:f9:2e:58:75:8c:0a:80:9f:06:88:50:ce:98:
ba:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:9C:38:46:E5:6D:6F:4A:F6:EC:2C:4E:45:57:DD:34:29:EB:85:12
X509v3 Authority Key Identifier:
keyid:B0:A1:33:36:C3:8E:EB:A1:0C:BA:C9:C2:8C:AF:1E:FC:F4:4A:C8:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sKEzNsOO66EMusnCjK8e_PRKyGM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/238486-3e8d-4bc3-a19d-0a768b24125a/1/sKEzNsOO66EMusnCjK8e_PRKyGM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/238486-3e8d-4bc3-a19d-0a768b24125a/1/sKEzNsOO66EMusnCjK8e_PRKyGM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:b4:14:f7:56:5c:fd:12:3a:b5:46:de:ec:a9:ac:4f:62:88:
18:4c:61:c8:bf:17:53:74:11:49:02:7f:f4:8c:0e:22:08:df:
23:67:ba:32:b3:b5:cf:16:6f:7d:73:6f:de:9b:70:ae:46:a6:
f5:a3:31:36:ab:6f:11:42:e3:bc:b8:90:43:fb:7c:55:77:1a:
dc:f6:ff:e4:00:00:ab:eb:86:fb:06:bc:cc:8a:58:f4:cf:f3:
50:18:9d:2f:cf:4c:97:b1:63:b7:d4:d9:3b:7a:00:b0:bc:40:
22:2b:1d:5a:3d:72:5e:78:7c:ed:54:82:e9:83:ac:40:91:fa:
26:36:4d:c1:1d:62:a7:a4:09:c0:63:97:d9:2d:ac:3c:50:6b:
48:33:66:2d:7b:f0:54:d0:3b:6b:a3:48:08:36:87:a5:ff:4b:
61:ff:07:b0:d7:d9:2a:70:9a:a3:4b:57:dd:1d:6a:30:c0:1a:
78:ae:90:eb:fb:11:48:e6:33:cf:86:50:fd:4e:0c:6f:aa:33:
a6:6a:97:1e:1a:74:3b:f7:dd:04:db:67:ab:fe:ed:38:eb:7f:
c1:14:c8:c5:5c:e4:48:51:67:a4:ba:c2:7a:d4:71:dd:4a:b6:
ca:bb:fc:94:ef:9e:68:81:e7:ce:a0:82:b6:0e:f8:25:e2:be:
1d:0e:44:88
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZovadHTBVEwGzV4JUyianhZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIwYTEzMzM2YzM4ZWViYTEwY2JhYzljMjhjYWYxZWZjZjQ0
YWM4NjMwHhcNMjUxMDI5MTAwMDU1WhcNMjUxMDMwMTAwMDU1WjAzMTEwLwYDVQQD
Eyg3NDljMzg0NmU1NmQ2ZjRhZjZlYzJjNGU0NTU3ZGQzNDI5ZWI4NTEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAshaJXEg8xe15/fsYAWH5kD8cCjNz
rlWkWdKdjRej+ceYnj4G58K6l/h8kB+fpDm+QP1Pi89M0Ztvb4NXljtQ4/Qm2aum
TfnyZmIf/eDVbBiHx5HPmdXzkZ+l0PsAyVbwTBcEfwbAmKC7Uqvdxglk0tS2CPzn
3092r0NPW2FCKMG7VJBe2m6GGwKDFUjmz5Xa/ipXwe+qK4CD5tnSmrs/en1x8IDI
bbzv1MYdW6sutyvfVdzGLcA/Z6g9cz35zv8tR2Dzd+j1O74eQNos4RYeATOZIUyv
jm1IfEZIxjd3dpR2msUlqZiygTnwYAo6Jr1g/fkuWHWMCoCfBohQzpi6fQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHScOEblbW9K9uwsTkVX3TQp64USMB8GA1UdIwQY
MBaAFLChMzbDjuuhDLrJwoyvHvz0SshjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc0tFek5zT082NkVNdXNuQ2pLOGVfUFJLeUdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS8yMzg0ODYtM2U4ZC00YmMzLWExOWQt
MGE3NjhiMjQxMjVhLzEvc0tFek5zT082NkVNdXNuQ2pLOGVfUFJLeUdNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNS8yMzg0ODYtM2U4ZC00YmMzLWExOWQtMGE3NjhiMjQxMjVh
LzEvc0tFek5zT082NkVNdXNuQ2pLOGVfUFJLeUdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgbQU91Zc
/RI6tUbe7KmsT2KIGExhyL8XU3QRSQJ/9IwOIgjfI2e6MrO1zxZvfXNv3ptwrkam
9aMxNqtvEULjvLiQQ/t8VXca3Pb/5AAAq+uG+wa8zIpY9M/zUBidL89Ml7Fjt9TZ
O3oAsLxAIisdWj1yXnh87VSC6YOsQJH6JjZNwR1ip6QJwGOX2S2sPFBrSDNmLXvw
VNA7a6NICDaHpf9LYf8HsNfZKnCao0tX3R1qMMAaeK6Q6/sRSOYzz4ZQ/U4Mb6oz
pmqXHhp0O/fdBNtnq/7tOOt/wRTIxVzkSFFnpLrCetRx3Uq2yrv8lO+eaIHnzqCC
tg74JeK+HQ5EiA==
-----END CERTIFICATE-----
Generated at Wed Oct 29 11:21:37 2025 by rpki-client