Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft
File: sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft (raw, json)
Hash identifier: 8plC2mJ9oskXnAm+Yha2Zavcl6xWlLdEhk+NEEkaUxA=
Subject key identifier: 5A:56:92:27:8A:DD:35:F9:52:3C:89:AE:30:F8:89:95:AF:29:99:C2
Authority key identifier: B0:1A:59:D0:A6:1A:A6:17:44:38:98:8C:C8:35:98:DB:FE:A5:A9:98
Certificate issuer: /CN=b01a59d0a61aa6174438988cc83598dbfea5a998
Certificate serial: 0197496866FB47FDEC7B0483EE6BEEF9BAFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBpZ0KYaphdEOJiMyDWY2_6lqZg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft
Manifest number: 10EE
Signing time: Sat 07 Jun 2025 08:01:08 +0000
Manifest this update: Sat 07 Jun 2025 08:01:08 +0000
Manifest next update: Sun 08 Jun 2025 08:01:08 +0000
Files and hashes: 1: HSNefFgXaRWCGcIv1fjoOpFklrI.roa (hash: cKpMHes+RehvKJ31+pA2N64A397k3fGtWACpN0dogjA=)
2: sBpZ0KYaphdEOJiMyDWY2_6lqZg.crl (hash: 6+Q+WaQSbFIbnM993WXvI40RyMc0au3/sdNO8IjUBcQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft
rsync://rpki.ripe.net/repository/DEFAULT/sBpZ0KYaphdEOJiMyDWY2_6lqZg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 08:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:68:66:fb:47:fd:ec:7b:04:83:ee:6b:ee:f9:ba:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b01a59d0a61aa6174438988cc83598dbfea5a998
Validity
Not Before: Jun 7 08:01:08 2025 GMT
Not After : Jun 8 08:01:08 2025 GMT
Subject: CN=5a5692278add35f9523c89ae30f88995af2999c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:7c:16:41:7f:1e:f9:31:5a:2e:bd:26:df:04:
46:4f:68:9a:9e:b3:59:c5:2f:1b:c7:1f:d9:80:b0:
c3:6a:fe:6d:33:98:fe:5a:2c:64:42:7f:8f:1d:2d:
59:38:13:b8:c4:0d:35:98:75:92:9c:e4:db:a9:dc:
c0:07:43:5d:85:7a:11:6b:bd:17:3b:95:f9:e3:6a:
8d:0a:54:f7:6a:3f:15:65:21:ec:e3:df:a9:0d:5a:
50:55:12:47:49:1b:96:b1:9b:40:f1:f9:db:c5:9e:
45:ef:ef:50:b1:41:1f:88:1d:d2:24:d2:7f:f4:ef:
30:26:f2:53:4e:72:f3:72:a8:03:3c:5c:7f:e7:c9:
0b:94:76:9d:4b:bf:45:5c:14:4d:d4:39:7c:2b:dd:
b7:fd:a5:11:1a:0f:49:50:33:3e:ab:b0:48:a3:3d:
60:ea:2a:e0:35:a1:f7:83:16:b8:40:50:96:4d:5d:
21:b7:48:61:86:b4:8d:78:b8:ac:4e:8c:5f:8e:29:
82:14:50:15:34:59:d1:5d:f1:42:16:76:dd:b5:67:
fc:4d:15:a2:2e:6b:4f:c1:ee:dc:a4:12:c1:17:9c:
c6:06:0e:dd:10:8e:1e:8b:f6:f1:56:93:05:46:2d:
15:9e:8e:0e:e0:e7:9a:b1:3c:bc:21:c2:a1:33:45:
57:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:56:92:27:8A:DD:35:F9:52:3C:89:AE:30:F8:89:95:AF:29:99:C2
X509v3 Authority Key Identifier:
keyid:B0:1A:59:D0:A6:1A:A6:17:44:38:98:8C:C8:35:98:DB:FE:A5:A9:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBpZ0KYaphdEOJiMyDWY2_6lqZg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:84:c6:bc:1e:86:a3:02:fc:70:2a:15:6a:d5:1f:02:ca:c4:
37:c7:3f:bb:ef:90:86:a3:2c:e4:90:11:67:18:a0:f3:cb:05:
2b:a5:f1:ed:37:08:82:5d:5b:5e:d9:89:d9:b8:6e:f7:6a:fe:
69:40:93:14:e4:a3:d6:d7:4d:09:d3:95:2c:e9:4a:49:33:8a:
d6:07:d2:c9:19:3d:5f:57:0c:28:7e:9f:8a:3a:0f:83:5b:78:
c7:4b:f5:78:05:30:fb:0f:69:1d:d5:dd:09:fd:91:65:5e:fa:
a8:04:15:43:68:7d:0e:b4:bd:4b:fa:ef:f9:ca:fe:00:81:28:
7e:13:1a:78:91:b5:3f:4c:65:54:d4:f1:c3:da:97:93:45:66:
83:9c:2b:41:09:a0:61:7d:90:d8:0d:bb:bf:20:85:00:69:ee:
76:1f:00:9c:b5:e2:7a:3a:05:6e:b1:a8:7f:29:5c:6f:e9:50:
80:b4:b8:1e:40:fd:cc:11:74:3d:b9:3a:88:e4:22:5f:8f:80:
ae:45:4c:a7:23:51:d8:91:25:a4:fe:18:9a:b9:d5:dc:a7:11:
3a:21:e5:33:df:44:fa:e3:25:f4:f3:21:80:4b:58:2f:bd:b2:
d0:21:c3:86:54:e0:f8:c4:68:98:b9:40:ca:ba:ae:32:52:7a:
5f:9d:37:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:46:21 2025 by rpki-client