Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.mft
File: sK0iZDwtl71x-LY0-40dT58B9Kc.mft (raw, json)
Hash identifier: nszVgJR7TfieMDPFme90xvJihTzDre7p//h57QoxnRE=
Subject key identifier: 66:38:07:83:F9:F5:2D:C0:1D:BB:0F:9D:40:B2:77:C4:2C:AA:24:FF
Authority key identifier: B0:AD:22:64:3C:2D:97:BD:71:F8:B6:34:FB:8D:1D:4F:9F:01:F4:A7
Certificate issuer: /CN=b0ad22643c2d97bd71f8b634fb8d1d4f9f01f4a7
Certificate serial: 019A1A622103374B3F15A5EB136F1C305270
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sK0iZDwtl71x-LY0-40dT58B9Kc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.mft
Manifest number: 1150
Signing time: Sat 25 Oct 2025 08:00:29 +0000
Manifest this update: Sat 25 Oct 2025 08:00:29 +0000
Manifest next update: Sun 26 Oct 2025 08:00:29 +0000
Files and hashes: 1: 89qbXuP3JJGKzWaNZO3dqnt1pdw.roa (hash: obr33L2CB/OVnTXprqPZCOQ9LeK6vQA821ilRu8qFT0=)
2: sK0iZDwtl71x-LY0-40dT58B9Kc.crl (hash: 2dSSLLKnM8Q9RctDOK/pfMBzFy3oqG5h/9xMVAVWk2k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.mft
rsync://rpki.ripe.net/repository/DEFAULT/sK0iZDwtl71x-LY0-40dT58B9Kc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 02:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1a:62:21:03:37:4b:3f:15:a5:eb:13:6f:1c:30:52:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0ad22643c2d97bd71f8b634fb8d1d4f9f01f4a7
Validity
Not Before: Oct 25 08:00:29 2025 GMT
Not After : Oct 26 08:00:29 2025 GMT
Subject: CN=66380783f9f52dc01dbb0f9d40b277c42caa24ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:41:e4:a5:d5:f4:53:db:b3:f4:fd:f8:e9:cd:
1a:4f:48:cb:f5:8e:29:67:ce:06:be:c3:a2:e4:98:
63:d2:c3:75:ce:7c:c4:e0:01:24:cc:ea:bb:42:dd:
2d:d4:2c:5f:79:1c:4d:48:92:42:a4:95:8d:60:a8:
6e:0c:8f:ba:6a:1e:19:80:69:7d:15:24:e1:4a:ff:
0b:39:f2:64:00:57:7e:69:cb:08:77:29:ee:e6:f2:
d9:b8:dc:d3:1f:20:34:ae:17:39:be:d0:75:35:e8:
c5:ca:93:3e:3c:78:7c:97:18:eb:89:89:40:be:90:
50:1f:93:e9:3b:02:4e:a8:39:38:0f:ff:6f:b8:d2:
8c:6a:d1:51:4c:5e:f5:97:0b:59:e6:ff:67:16:bc:
ba:bf:8d:d8:05:eb:72:21:33:7f:b7:62:12:46:66:
25:8b:55:cf:ab:51:c8:7e:c1:52:7a:6f:fb:cf:d8:
cb:c0:28:d1:02:b8:54:46:ab:ab:4d:b4:fc:f8:a0:
ae:ff:99:d8:ae:c0:d0:44:63:09:5b:52:53:0e:86:
d8:69:2a:62:e6:b5:3b:a1:bd:46:5b:88:45:34:81:
0f:87:15:d9:83:e0:be:e3:58:9a:48:b3:aa:48:86:
92:98:6e:45:51:73:71:45:db:d6:dc:72:42:0d:8b:
39:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:38:07:83:F9:F5:2D:C0:1D:BB:0F:9D:40:B2:77:C4:2C:AA:24:FF
X509v3 Authority Key Identifier:
keyid:B0:AD:22:64:3C:2D:97:BD:71:F8:B6:34:FB:8D:1D:4F:9F:01:F4:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sK0iZDwtl71x-LY0-40dT58B9Kc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:ba:0a:6f:63:b4:17:e8:85:87:cc:19:c4:2c:47:39:70:51:
e1:ed:21:9c:f8:82:cf:d9:b4:38:67:66:5b:4f:5a:90:f1:dd:
94:a6:7d:5f:fc:c4:e7:54:f6:16:7b:ef:45:2b:67:38:d6:a0:
08:5c:a2:34:54:fb:b9:d9:f2:5e:44:a0:29:e6:91:95:bf:2e:
9a:c4:59:8c:88:86:8c:bd:7e:a0:a0:77:03:9c:83:51:20:c9:
28:65:43:0a:9c:89:c8:12:93:84:32:64:c4:90:75:46:6f:00:
7b:c6:97:49:6f:ef:62:a6:a5:08:8a:8a:27:55:e1:89:50:00:
2b:98:94:b5:50:93:96:15:57:45:10:8d:24:c9:ff:87:3c:10:
a4:e2:be:cd:d4:13:c3:07:e6:e9:f9:d1:25:c4:df:19:ab:d7:
fd:0d:5f:fa:a0:6f:72:e3:6f:de:00:59:5b:4f:5e:b2:ce:35:
96:fe:3a:95:d2:ab:e0:32:5e:65:6f:2d:16:23:2a:e0:1f:3f:
3d:a8:07:e0:28:51:46:cd:9f:25:3b:2e:39:ef:28:22:70:76:
9d:20:dd:3a:7a:62:dc:34:7d:98:4c:7a:71:f1:83:9a:f9:1b:
03:85:52:e7:00:1c:00:a5:0e:a0:1a:56:e3:83:03:29:86:6e:
0f:1d:f1:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 25 11:24:19 2025 by rpki-client