Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft
File: sCnHJ8biLu2PvNHot2k5V40Nygo.mft (raw, json)
Hash identifier: TmJ63JHZ3mkECWGdmUOelLNIXwJG//kt0IW/+brAlC4=
Subject key identifier: 0A:B0:0B:C4:46:12:F5:D9:53:00:D5:89:81:A8:8B:B8:83:C2:70:E6
Authority key identifier: B0:29:C7:27:C6:E2:2E:ED:8F:BC:D1:E8:B7:69:39:57:8D:0D:CA:0A
Certificate issuer: /CN=b029c727c6e22eed8fbcd1e8b76939578d0dca0a
Certificate serial: 019873E3347A14889C8F31DF7AECA8F67672
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sCnHJ8biLu2PvNHot2k5V40Nygo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft
Manifest number: 1612
Signing time: Mon 04 Aug 2025 07:02:06 +0000
Manifest this update: Mon 04 Aug 2025 07:02:06 +0000
Manifest next update: Tue 05 Aug 2025 07:02:06 +0000
Files and hashes: 1: sCnHJ8biLu2PvNHot2k5V40Nygo.crl (hash: UHtgzrF+6/9tsBPSFlSPCPLhyNdakMdXglLGOvSbYW8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft
rsync://rpki.ripe.net/repository/DEFAULT/sCnHJ8biLu2PvNHot2k5V40Nygo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e3:34:7a:14:88:9c:8f:31:df:7a:ec:a8:f6:76:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b029c727c6e22eed8fbcd1e8b76939578d0dca0a
Validity
Not Before: Aug 4 07:02:06 2025 GMT
Not After : Aug 5 07:02:06 2025 GMT
Subject: CN=0ab00bc44612f5d95300d58981a88bb883c270e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:d4:5b:d0:4d:c3:c8:12:79:f5:92:98:02:31:
4a:b3:6c:b4:e3:0e:ac:f9:c1:8a:c4:6f:52:6a:47:
d4:86:81:59:f8:44:13:9d:38:50:35:b2:08:75:2a:
a0:df:7b:2e:b0:10:90:7e:f0:18:79:e0:3b:ef:b7:
e6:96:0d:73:1a:75:13:3e:ee:5f:40:ff:90:ae:a2:
79:bc:c0:08:d0:5e:5a:35:43:5f:31:61:8f:e0:dc:
3c:1a:4b:fc:ad:e5:18:b2:61:c2:fd:c3:73:f8:b1:
31:49:9f:2b:c5:21:ac:01:54:ba:fc:bc:4a:dd:51:
e3:cc:dc:cc:72:55:23:73:1f:1a:1f:2e:75:22:b2:
3e:12:e8:f3:16:04:f9:54:18:29:81:48:25:0a:c0:
96:41:b7:47:9c:67:20:87:60:2e:b3:de:fd:50:1d:
4f:1e:42:b8:71:09:66:56:6b:88:4b:07:2c:d7:55:
7a:70:d8:cb:4b:8f:b0:3f:43:f7:fa:3d:6a:eb:06:
d3:27:48:87:fe:b6:18:da:69:e9:f9:61:4a:27:24:
a7:6b:aa:46:8b:77:77:64:cd:16:3c:22:88:94:a3:
cf:94:98:52:d1:93:4a:1a:fe:11:10:a6:13:30:ee:
1b:1b:c4:7f:2e:02:a6:b2:20:69:37:16:75:4f:7b:
6e:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:B0:0B:C4:46:12:F5:D9:53:00:D5:89:81:A8:8B:B8:83:C2:70:E6
X509v3 Authority Key Identifier:
keyid:B0:29:C7:27:C6:E2:2E:ED:8F:BC:D1:E8:B7:69:39:57:8D:0D:CA:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sCnHJ8biLu2PvNHot2k5V40Nygo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c8:fb:90:b8:30:b9:26:a6:50:9e:e1:29:aa:72:15:a8:6b:6a:
8c:c6:14:28:83:c5:27:e7:85:7f:09:37:06:e6:18:a0:6a:c5:
f2:2d:64:bc:0a:18:58:d2:dc:b7:e8:47:6d:dc:33:25:49:b8:
e3:0e:36:e7:20:10:ff:9a:83:ea:a7:3f:b2:a3:ec:bd:3f:c7:
e8:43:86:1f:70:fc:7a:73:0a:e4:37:69:24:8d:93:78:64:a5:
ca:2e:3b:7d:b8:7b:47:3b:40:28:86:ee:58:48:6c:a7:0a:bd:
fa:8d:64:9d:6a:5c:4a:e5:87:29:1b:37:bc:a6:f3:cd:28:34:
4a:50:84:75:71:91:09:85:a3:92:04:15:f9:63:84:66:9d:44:
f1:2d:8f:ea:80:c1:c8:a9:11:70:18:a7:54:f6:f1:27:2a:d2:
f6:a8:a6:d2:65:ae:26:b2:4b:67:53:a6:a8:f9:89:c8:69:63:
ee:0f:e5:7e:dd:d9:ad:90:46:b1:6d:cd:7b:c5:b0:cc:31:6a:
cf:76:3a:86:fd:95:17:5c:91:b6:82:0b:66:bc:13:4d:9d:be:
46:9e:30:fa:45:18:c7:84:59:0c:e9:52:cd:c9:1e:da:d6:6d:
8a:2d:8f:44:11:a8:43:0a:21:d4:66:84:7d:a7:84:d2:03:3b:
20:e4:6a:5b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhz4zR6FIicjzHfeuyo9nZyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIwMjljNzI3YzZlMjJlZWQ4ZmJjZDFlOGI3NjkzOTU3OGQw
ZGNhMGEwHhcNMjUwODA0MDcwMjA2WhcNMjUwODA1MDcwMjA2WjAzMTEwLwYDVQQD
EygwYWIwMGJjNDQ2MTJmNWQ5NTMwMGQ1ODk4MWE4OGJiODgzYzI3MGU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5dRb0E3DyBJ59ZKYAjFKs2y04w6s
+cGKxG9SakfUhoFZ+EQTnThQNbIIdSqg33susBCQfvAYeeA777fmlg1zGnUTPu5f
QP+QrqJ5vMAI0F5aNUNfMWGP4Nw8Gkv8reUYsmHC/cNz+LExSZ8rxSGsAVS6/LxK
3VHjzNzMclUjcx8aHy51IrI+EujzFgT5VBgpgUglCsCWQbdHnGcgh2Aus979UB1P
HkK4cQlmVmuISwcs11V6cNjLS4+wP0P3+j1q6wbTJ0iH/rYY2mnp+WFKJySna6pG
i3d3ZM0WPCKIlKPPlJhS0ZNKGv4REKYTMO4bG8R/LgKmsiBpNxZ1T3tukwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAqwC8RGEvXZUwDViYGoi7iDwnDmMB8GA1UdIwQY
MBaAFLApxyfG4i7tj7zR6LdpOVeNDcoKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc0NuSEo4YmlMdTJQdk5Ib3QyazVWNDBOeWdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC80NjE1YTEtOTA1Mi00MGM2LWExOGQt
YTBkNzk5MjRkYjZjLzEvc0NuSEo4YmlMdTJQdk5Ib3QyazVWNDBOeWdvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZC80NjE1YTEtOTA1Mi00MGM2LWExOGQtYTBkNzk5MjRkYjZj
LzEvc0NuSEo4YmlMdTJQdk5Ib3QyazVWNDBOeWdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAyPuQuDC5
JqZQnuEpqnIVqGtqjMYUKIPFJ+eFfwk3BuYYoGrF8i1kvAoYWNLct+hHbdwzJUm4
4w425yAQ/5qD6qc/sqPsvT/H6EOGH3D8enMK5DdpJI2TeGSlyi47fbh7RztAKIbu
WEhspwq9+o1knWpcSuWHKRs3vKbzzSg0SlCEdXGRCYWjkgQV+WOEZp1E8S2P6oDB
yKkRcBinVPbxJyrS9qim0mWuJrJLZ1OmqPmJyGlj7g/lft3ZrZBGsW3Ne8WwzDFq
z3Y6hv2VF1yRtoILZrwTTZ2+Rp4w+kUYx4RZDOlSzcke2tZtii2PRBGoQwoh1GaE
faeE0gM7IORqWw==
-----END CERTIFICATE-----
Generated at Mon Aug 4 11:10:17 2025 by rpki-client