Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.mft
File: S2jh-6e0SntmYjayElPX1jYtDYM.mft (raw, json)
Hash identifier: fNoZc2dghvrldhnv2Ikr7wFB/Bb2xinQ6FMp1vyBJOA=
Subject key identifier: A1:38:F1:FD:26:39:3D:75:92:E1:F4:72:8E:FD:D7:BF:12:0B:16:C2
Authority key identifier: 4B:68:E1:FB:A7:B4:4A:7B:66:62:36:B2:12:53:D7:D6:36:2D:0D:83
Certificate issuer: /CN=4b68e1fba7b44a7b666236b21253d7d6362d0d83
Certificate serial: 0197782F641432A95C9AD144747FFEA03C5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S2jh-6e0SntmYjayElPX1jYtDYM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.mft
Manifest number: 02D9
Signing time: Mon 16 Jun 2025 10:01:00 +0000
Manifest this update: Mon 16 Jun 2025 10:01:00 +0000
Manifest next update: Tue 17 Jun 2025 10:01:00 +0000
Files and hashes: 1: A3eZlYEypGjwef6ovVTvAMEG2Sc.roa (hash: itiiU42XBZajUxpH3eQ5BL8/j+cYwxjPvYG7bJxrjyA=)
2: S2jh-6e0SntmYjayElPX1jYtDYM.crl (hash: 8aAuTWHm/hp8h9+oRuGN8EPxschH07MEZqos2Lk9id0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.mft
rsync://rpki.ripe.net/repository/DEFAULT/S2jh-6e0SntmYjayElPX1jYtDYM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 10:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:78:2f:64:14:32:a9:5c:9a:d1:44:74:7f:fe:a0:3c:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b68e1fba7b44a7b666236b21253d7d6362d0d83
Validity
Not Before: Jun 16 10:01:00 2025 GMT
Not After : Jun 17 10:01:00 2025 GMT
Subject: CN=a138f1fd26393d7592e1f4728efdd7bf120b16c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:22:18:81:7b:e7:5a:dc:1c:ca:05:2f:e6:d4:
7c:9f:99:bc:99:01:e8:6e:ad:0f:a0:50:88:07:2d:
b0:64:bf:2b:f6:1b:bd:65:4d:e7:77:7b:69:9c:14:
4c:18:75:b1:45:89:e9:94:74:55:89:5f:1e:44:8b:
95:b0:b0:6c:3b:a2:68:3c:df:aa:84:17:df:21:b7:
d5:42:98:bb:ed:95:10:3a:ba:26:6a:d9:60:15:20:
18:95:00:ae:d4:92:e4:06:8f:78:06:8f:4d:1f:a8:
51:77:07:c2:aa:52:2a:41:ad:a3:92:e1:90:9c:7d:
c4:eb:f9:14:ba:64:ba:d4:cf:5c:e2:53:5d:d2:56:
bf:fe:3e:97:30:de:7f:fa:c8:f4:f0:7e:74:87:64:
67:41:71:2d:6c:54:35:3c:62:6a:a3:e1:5a:dc:d5:
50:70:ea:01:34:34:6d:55:43:85:1a:c6:f9:32:de:
b7:f2:3d:87:0d:f5:02:35:f7:4e:1e:74:8e:71:61:
08:3a:cf:c2:30:60:44:c4:99:62:b3:37:d9:a1:0c:
c8:64:bf:00:c4:53:95:e4:51:dd:85:9f:a4:ce:55:
ee:7d:6d:bf:56:9a:77:76:bd:6e:6c:93:c2:b5:5b:
33:53:d5:ff:8d:cd:1f:b2:9c:cc:d1:e0:f2:03:24:
3e:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:38:F1:FD:26:39:3D:75:92:E1:F4:72:8E:FD:D7:BF:12:0B:16:C2
X509v3 Authority Key Identifier:
keyid:4B:68:E1:FB:A7:B4:4A:7B:66:62:36:B2:12:53:D7:D6:36:2D:0D:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S2jh-6e0SntmYjayElPX1jYtDYM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:8d:90:9e:84:ba:93:bc:9b:9d:28:1e:84:19:2a:0f:f7:3f:
34:a2:3b:4b:97:18:e8:c9:e4:87:9a:fa:fa:a0:f6:03:6f:38:
a0:a5:55:0b:09:d1:3a:e2:ab:41:75:22:d0:96:95:42:19:0c:
34:52:ba:aa:87:ae:ed:ac:3f:a8:29:55:b6:59:cd:07:ba:1c:
a9:b2:b4:a5:61:60:27:cf:5a:02:ba:77:57:55:d3:b8:7e:96:
78:77:72:46:a7:e6:4d:ac:5b:06:b6:33:0b:53:aa:99:5f:7f:
26:84:ea:11:51:16:cd:f3:2e:83:22:c6:8b:69:44:04:3b:95:
38:90:17:61:3a:e0:81:b2:f3:96:b0:14:ed:27:4c:7f:92:91:
dd:13:5b:d2:09:c6:9c:90:cb:fd:ea:15:e6:03:2c:c2:2b:77:
18:86:18:12:be:5f:ae:96:d6:2f:56:80:5e:d9:30:dc:94:cb:
de:cb:a4:9d:e1:03:c9:ef:a1:ab:bb:77:7f:bf:63:05:8f:02:
59:30:89:ca:0b:93:f3:8e:13:35:15:b3:9c:ff:b6:ce:04:97:
bc:83:fa:61:04:0c:b6:02:74:6e:94:35:9e:e2:d0:84:e1:61:
3d:c3:8e:4c:40:59:2b:8d:25:7a:1f:d8:23:83:52:55:29:6b:
f2:df:63:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 19:30:46 2025 by rpki-client