Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.mft
File: sK0iZDwtl71x-LY0-40dT58B9Kc.mft (raw, json)
Hash identifier: dwI4CWBhdlld7Pk1TsQsVRia7BTNva57bq+XYFVtTz4=
Subject key identifier: BE:EE:76:AC:22:29:07:D0:90:B9:42:F5:D2:26:88:D1:D2:49:F7:19
Authority key identifier: B0:AD:22:64:3C:2D:97:BD:71:F8:B6:34:FB:8D:1D:4F:9F:01:F4:A7
Certificate issuer: /CN=b0ad22643c2d97bd71f8b634fb8d1d4f9f01f4a7
Certificate serial: 0199179B07243D6EB5D0F9EF64EAC2C3555B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sK0iZDwtl71x-LY0-40dT58B9Kc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.mft
Manifest number: 10CA
Signing time: Fri 05 Sep 2025 02:00:59 +0000
Manifest this update: Fri 05 Sep 2025 02:00:59 +0000
Manifest next update: Sat 06 Sep 2025 02:00:59 +0000
Files and hashes: 1: 89qbXuP3JJGKzWaNZO3dqnt1pdw.roa (hash: obr33L2CB/OVnTXprqPZCOQ9LeK6vQA821ilRu8qFT0=)
2: sK0iZDwtl71x-LY0-40dT58B9Kc.crl (hash: TPdmz1orpMXSKHbeGtl511KTloz3v+k+7H6RjMdYHXY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.mft
rsync://rpki.ripe.net/repository/DEFAULT/sK0iZDwtl71x-LY0-40dT58B9Kc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Sep 2025 19:46:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:17:9b:07:24:3d:6e:b5:d0:f9:ef:64:ea:c2:c3:55:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0ad22643c2d97bd71f8b634fb8d1d4f9f01f4a7
Validity
Not Before: Sep 5 02:00:59 2025 GMT
Not After : Sep 6 02:00:59 2025 GMT
Subject: CN=beee76ac222907d090b942f5d22688d1d249f719
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:79:15:0a:06:c8:da:6e:ef:93:6f:d8:85:b2:
59:6b:1a:bb:57:95:12:59:a1:cf:ae:08:bd:dc:4c:
b3:3e:5f:ca:87:7c:2e:69:0f:e1:6e:a2:a6:28:79:
fe:ac:81:18:60:a4:5a:be:7c:f2:7b:d7:2d:dd:89:
f5:4c:2a:3e:8e:38:2b:20:ae:54:6a:9f:f8:65:08:
48:94:a2:28:03:5f:03:98:a2:63:bf:79:4c:29:3d:
c0:a6:cc:5f:21:52:e8:90:ae:2c:9b:47:cb:0e:72:
8c:6c:8c:93:43:13:55:81:39:1f:b3:7d:a3:55:5a:
1f:74:7f:f6:75:15:36:80:9a:6e:e1:bd:fe:b0:6e:
97:f3:a9:5c:11:b7:cb:a5:db:6d:8c:22:4e:3c:47:
81:0e:f0:6f:6a:5f:db:8c:ec:69:b3:b1:50:76:16:
89:65:95:19:c9:98:da:85:52:8a:a2:b6:9e:b6:a0:
26:a2:bb:40:6d:27:d0:99:3b:71:c5:42:06:ff:28:
28:4a:8b:01:c6:20:25:af:17:f2:7c:ab:29:ab:cd:
de:1d:b2:e4:7d:14:97:e2:3f:de:89:b9:69:20:51:
9b:41:38:bf:40:08:38:cd:6c:c8:7c:95:ea:91:8f:
12:52:aa:c0:05:aa:1d:3d:60:0f:bb:fa:d8:75:23:
40:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:EE:76:AC:22:29:07:D0:90:B9:42:F5:D2:26:88:D1:D2:49:F7:19
X509v3 Authority Key Identifier:
keyid:B0:AD:22:64:3C:2D:97:BD:71:F8:B6:34:FB:8D:1D:4F:9F:01:F4:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sK0iZDwtl71x-LY0-40dT58B9Kc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:ec:35:19:48:16:de:ca:61:e7:8e:54:73:95:13:15:7f:18:
15:9c:a1:dd:e4:97:fd:76:81:ed:2d:57:33:01:e1:c4:57:a4:
d3:1d:f9:c7:ad:62:4c:e6:c7:7f:e5:35:54:45:47:d6:4a:30:
c5:09:a4:ae:1e:ff:d6:87:cc:fc:a6:37:dc:8b:e3:eb:8f:86:
d7:08:ff:89:a3:4d:7e:17:6c:e9:f6:33:77:7b:00:49:5d:77:
bc:0e:96:26:03:89:9b:3e:7d:d1:96:ee:6a:31:77:c4:13:cc:
4f:26:6a:23:03:ba:7a:06:76:fe:a7:9b:3a:09:68:fe:f5:70:
82:c9:2f:48:cc:16:38:c6:5e:26:49:77:b6:99:e6:e5:be:67:
de:31:9e:c2:4c:1e:af:07:13:43:82:0e:d7:0b:da:07:e0:21:
20:09:57:6f:7f:54:f8:3b:2c:b9:f9:20:af:02:07:c2:e1:1b:
78:53:a9:9c:6f:b7:2b:2e:66:ec:bb:cc:23:87:b9:53:1b:c2:
a7:f5:0c:b1:5a:89:7b:95:c9:1c:7a:61:9b:58:b6:97:51:2c:
a2:58:1f:65:a9:e6:3f:d4:6a:53:e2:a6:6c:c6:fd:43:3c:a6:
09:29:0e:49:8b:90:98:e5:0b:ba:de:f7:48:07:a3:a9:c9:b3:
e6:66:1d:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 04:30:15 2025 by rpki-client