Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft
File: sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft (raw, json)
Hash identifier: MiuX2+VlX44AAuiW6qxGkfOyXwDN6vleiF/ZFyO95wI=
Subject key identifier: FD:82:17:87:BB:84:B2:17:31:D7:02:62:62:83:46:FC:BA:A8:7B:50
Authority key identifier: B0:1A:59:D0:A6:1A:A6:17:44:38:98:8C:C8:35:98:DB:FE:A5:A9:98
Certificate issuer: /CN=b01a59d0a61aa6174438988cc83598dbfea5a998
Certificate serial: 019A70A54AD0E092647DDD1CDA9F6144E70B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBpZ0KYaphdEOJiMyDWY2_6lqZg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft
Manifest number: 1290
Signing time: Tue 11 Nov 2025 02:01:11 +0000
Manifest this update: Tue 11 Nov 2025 02:01:11 +0000
Manifest next update: Wed 12 Nov 2025 02:01:11 +0000
Files and hashes: 1: HSNefFgXaRWCGcIv1fjoOpFklrI.roa (hash: cKpMHes+RehvKJ31+pA2N64A397k3fGtWACpN0dogjA=)
2: sBpZ0KYaphdEOJiMyDWY2_6lqZg.crl (hash: MAjZBhRyVGRbiqA79reVotEURcL/qeS9hUA5BCmLh8E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft
rsync://rpki.ripe.net/repository/DEFAULT/sBpZ0KYaphdEOJiMyDWY2_6lqZg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 02:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:a5:4a:d0:e0:92:64:7d:dd:1c:da:9f:61:44:e7:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b01a59d0a61aa6174438988cc83598dbfea5a998
Validity
Not Before: Nov 11 02:01:11 2025 GMT
Not After : Nov 12 02:01:11 2025 GMT
Subject: CN=fd821787bb84b21731d70262628346fcbaa87b50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:bd:fd:3a:1b:d0:4f:35:42:52:a4:37:62:2e:
9a:b2:55:92:98:6f:5e:d3:07:d8:c6:c0:69:7a:35:
ad:1c:5d:bc:80:3e:9c:0d:f4:79:71:57:61:4f:cf:
b5:41:3a:24:42:ce:7e:a1:6e:b2:11:ff:79:72:f4:
42:41:1e:37:07:aa:fd:1c:67:bb:37:11:91:a8:9c:
56:39:fa:12:e6:b7:c9:2b:9e:d0:56:bb:3d:f3:55:
17:4a:48:71:46:c6:bb:21:ef:e8:3b:3a:75:7f:d5:
e7:8b:f5:a9:ca:17:de:54:da:55:1e:33:31:01:8f:
a4:12:1c:0a:3d:1d:0d:3b:9e:ee:4b:60:ab:2f:ae:
8d:0e:70:88:58:0f:46:3a:a6:47:75:d8:b7:bf:65:
8b:c4:71:6d:55:ca:ee:4f:0d:37:81:ec:37:d0:5d:
d4:bd:cb:57:a6:31:00:60:8e:cf:db:a4:6c:7b:62:
5c:32:a7:a1:58:76:78:fc:25:55:21:76:fc:ee:fe:
5a:83:3e:c9:35:04:20:cc:61:96:e6:79:a1:88:b9:
b3:dd:f4:fb:b0:f8:ab:2d:b9:72:dc:07:40:b9:98:
23:c8:57:25:b1:01:19:69:ce:ae:1b:35:53:78:02:
18:ca:b5:de:fa:46:e3:3b:24:61:bc:91:b4:8e:f6:
3b:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:82:17:87:BB:84:B2:17:31:D7:02:62:62:83:46:FC:BA:A8:7B:50
X509v3 Authority Key Identifier:
keyid:B0:1A:59:D0:A6:1A:A6:17:44:38:98:8C:C8:35:98:DB:FE:A5:A9:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBpZ0KYaphdEOJiMyDWY2_6lqZg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:74:d1:6d:be:13:de:bc:fd:e1:4b:91:03:21:e0:60:66:16:
ed:39:f0:bb:93:f9:a7:21:c1:70:27:b5:cf:7a:85:aa:3e:e6:
dc:75:6c:d1:0a:3d:b0:5e:00:c0:30:4d:78:af:79:a2:af:74:
4d:ce:cf:c0:78:99:bd:fe:86:4e:64:ab:df:f2:18:ea:1d:45:
f0:d0:4b:d4:ef:52:d3:a8:83:e6:1d:a2:ae:5e:c2:5a:f5:0a:
f2:fe:2f:05:94:30:3e:9d:57:81:d0:97:6c:0b:ed:67:2a:85:
9a:8c:86:5d:50:49:bf:b3:cb:89:6b:e7:00:68:28:27:a4:02:
dd:83:43:e9:58:de:b2:d5:27:cd:04:ed:c1:f9:32:6a:c0:42:
a2:f5:a1:92:38:c2:c3:bf:5e:a2:09:d0:6a:aa:2f:f4:1b:42:
0f:63:be:8a:de:48:2e:49:8c:c3:b4:3f:f5:fc:31:8e:53:53:
12:32:ac:f0:7a:b1:14:7d:c2:72:1d:d6:79:30:a7:64:f0:90:
20:a7:3d:32:cd:ad:51:0a:a0:aa:1f:6f:0d:80:82:fc:41:15:
29:c5:e1:c9:15:38:a4:1c:a8:96:43:90:8b:a3:aa:50:14:ca:
6b:d1:0d:da:2f:e0:71:a3:d4:7e:02:e4:3d:9f:4c:8c:c7:1c:
16:4d:50:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:39:10 2025 by rpki-client