Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.mft
File: SFk-QNpaUvMi21oEwg-0htThVQI.mft (raw, json)
Hash identifier: +8L5UzyTd9Hhh16t8mixkGoo2xn/zNvaUDb9Piez8cY=
Subject key identifier: 58:B8:6F:4F:BA:3A:F2:D7:5A:59:EB:87:FB:9B:98:E5:E7:B4:EB:52
Authority key identifier: 48:59:3E:40:DA:5A:52:F3:22:DB:5A:04:C2:0F:B4:86:D4:E1:55:02
Certificate issuer: /CN=48593e40da5a52f322db5a04c20fb486d4e15502
Certificate serial: 0198816881FF7098497249450FDE02113EC5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SFk-QNpaUvMi21oEwg-0htThVQI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.mft
Manifest number: 12D9
Signing time: Wed 06 Aug 2025 22:02:46 +0000
Manifest this update: Wed 06 Aug 2025 22:02:46 +0000
Manifest next update: Thu 07 Aug 2025 22:02:46 +0000
Files and hashes: 1: SFk-QNpaUvMi21oEwg-0htThVQI.crl (hash: nA49O4M8qwv6f49EmMKuH3wUzKpiXMzfL2F9zhzzViQ=)
2: Xe1gxuRIIOL95lwNFDlJJ4LeD98.roa (hash: E3ThdKoNF/zSVQO/0Rh8O4e1tJqwTsPdKIVV0WmD0l8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.mft
rsync://rpki.ripe.net/repository/DEFAULT/SFk-QNpaUvMi21oEwg-0htThVQI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:68:81:ff:70:98:49:72:49:45:0f:de:02:11:3e:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48593e40da5a52f322db5a04c20fb486d4e15502
Validity
Not Before: Aug 6 22:02:46 2025 GMT
Not After : Aug 7 22:02:46 2025 GMT
Subject: CN=58b86f4fba3af2d75a59eb87fb9b98e5e7b4eb52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:cc:68:98:05:f5:c5:5e:45:94:d0:81:0e:b5:
b7:9c:cc:26:11:68:b5:56:af:f7:42:06:c7:04:24:
1a:04:b8:65:d3:31:22:b5:52:26:c4:1d:27:de:2e:
b0:c8:ea:b8:f5:91:72:73:55:b1:65:a7:94:9d:aa:
5a:be:07:1c:15:db:18:36:61:fd:08:a0:a6:84:75:
25:37:2c:26:e9:b6:dd:9a:67:81:94:d2:e9:d1:ac:
a4:35:d8:51:80:df:ac:5f:63:f8:03:96:76:aa:a0:
b9:3e:02:35:1d:3d:9c:18:80:ab:1a:72:85:23:a1:
50:2e:0e:d4:1c:9c:d4:d3:89:03:c0:be:df:41:fc:
a3:00:4b:6e:0a:1d:97:c5:f6:7d:aa:4c:8d:9c:c6:
f0:e9:0e:78:ed:ab:97:95:e1:da:45:67:77:9d:89:
7f:00:32:a1:42:9f:de:7b:68:da:fa:fe:99:66:c9:
ee:5c:67:b9:a8:24:29:e1:ea:03:0e:d1:c9:cb:e7:
8a:32:fe:30:c0:df:b5:4f:5d:a6:4d:b3:1b:e8:62:
63:e7:75:0b:07:1f:33:cc:a1:9b:42:a4:a1:dd:07:
86:96:eb:9c:2a:a4:0d:6a:26:0d:e3:2f:8d:4b:37:
a3:59:71:8a:73:9b:c4:a5:93:5b:62:28:25:e3:9d:
d3:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:B8:6F:4F:BA:3A:F2:D7:5A:59:EB:87:FB:9B:98:E5:E7:B4:EB:52
X509v3 Authority Key Identifier:
keyid:48:59:3E:40:DA:5A:52:F3:22:DB:5A:04:C2:0F:B4:86:D4:E1:55:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SFk-QNpaUvMi21oEwg-0htThVQI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:bf:7c:12:ea:24:01:b4:6d:b2:5b:3d:0a:71:91:98:8d:4e:
b4:c4:b3:fd:9c:c3:b1:8e:9f:51:a9:50:48:55:67:75:e2:9a:
1b:76:91:90:ba:65:df:d0:d2:bc:f1:c6:dc:2f:52:ce:ca:a3:
a3:c2:60:03:3a:94:38:09:97:ab:2c:c0:e7:77:94:2c:d3:35:
6e:26:56:54:64:96:45:85:37:ad:97:7e:d2:9b:51:c9:9d:52:
6e:40:99:55:7b:c4:b4:c2:37:1b:c6:53:db:86:47:da:ea:64:
26:78:55:9c:a2:45:af:dd:6c:dc:78:69:c2:be:b2:64:87:24:
1f:00:94:62:97:b4:bf:8e:2b:b7:3c:fa:fa:d3:a9:e9:35:e3:
b1:ae:80:f7:a9:3b:19:c7:50:4f:6c:32:63:f6:b6:1c:2a:69:
ae:e4:cb:b4:22:1d:fd:d9:e7:7d:50:7b:ac:e0:96:89:c3:47:
85:62:12:0d:38:2b:cd:0c:56:cd:a4:c2:1c:b1:ad:72:f0:ca:
e6:50:53:ae:6a:cc:ac:6f:2a:e9:a7:00:34:8d:c0:28:f9:01:
72:1a:66:c5:69:09:f4:7b:26:1f:19:b0:a9:b2:64:8a:40:85:
c3:68:7e:ea:d7:ba:24:70:83:ab:73:87:99:50:79:56:69:40:
f3:f1:d4:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 03:16:37 2025 by rpki-client