Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.mft
File: S2jh-6e0SntmYjayElPX1jYtDYM.mft (raw, json)
Hash identifier: HhDonKIj+dvacUtyRznZjXGeERpWYKWb5me2Xctzqz8=
Subject key identifier: 9E:BF:15:E3:C8:F3:78:A0:9D:1B:82:57:BA:29:C5:A8:9C:07:05:31
Authority key identifier: 4B:68:E1:FB:A7:B4:4A:7B:66:62:36:B2:12:53:D7:D6:36:2D:0D:83
Certificate issuer: /CN=4b68e1fba7b44a7b666236b21253d7d6362d0d83
Certificate serial: 019880C21E5F0D0A75535C6B885F5CA1E686
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S2jh-6e0SntmYjayElPX1jYtDYM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.mft
Manifest number: 0362
Signing time: Wed 06 Aug 2025 19:01:02 +0000
Manifest this update: Wed 06 Aug 2025 19:01:02 +0000
Manifest next update: Thu 07 Aug 2025 19:01:02 +0000
Files and hashes: 1: A3eZlYEypGjwef6ovVTvAMEG2Sc.roa (hash: itiiU42XBZajUxpH3eQ5BL8/j+cYwxjPvYG7bJxrjyA=)
2: S2jh-6e0SntmYjayElPX1jYtDYM.crl (hash: kR+HnTaMr6i3d7KwyW5XdlpkRqP1Dbe4FhSH6ReCxRo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.mft
rsync://rpki.ripe.net/repository/DEFAULT/S2jh-6e0SntmYjayElPX1jYtDYM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 19:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:80:c2:1e:5f:0d:0a:75:53:5c:6b:88:5f:5c:a1:e6:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b68e1fba7b44a7b666236b21253d7d6362d0d83
Validity
Not Before: Aug 6 19:01:02 2025 GMT
Not After : Aug 7 19:01:02 2025 GMT
Subject: CN=9ebf15e3c8f378a09d1b8257ba29c5a89c070531
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:03:e6:93:a6:df:8a:91:30:8d:1c:6b:84:b1:
a9:a6:73:da:97:0d:ef:7c:19:8d:e1:e4:62:ab:74:
76:a9:50:9b:19:02:08:f9:cb:65:4f:c2:9e:6e:a2:
8b:63:80:e4:29:24:40:72:ce:59:61:55:8b:5b:a0:
18:a2:cc:e2:20:53:8d:51:53:4b:75:22:e8:17:8b:
15:20:ab:97:27:8c:20:da:b8:25:dc:5e:f8:12:3b:
7f:4c:12:a0:ec:b9:8c:7a:ed:c1:b5:f4:63:97:ba:
65:84:bc:b5:ea:14:05:86:da:db:be:6d:0a:b4:8c:
3c:8e:69:6b:9a:e7:96:62:7c:95:de:76:b6:9f:de:
9e:06:31:26:8b:b5:ee:7a:7d:b0:31:54:b9:3c:a3:
11:43:54:08:26:e6:cc:bc:4e:c3:2d:46:df:fb:6a:
ac:bc:89:8f:30:b2:19:f2:b5:36:7c:c2:38:fb:31:
ae:33:05:1b:c4:de:23:e8:07:86:39:3a:05:ac:fd:
d6:2d:fb:88:e2:78:49:5c:81:06:9c:f4:2d:dc:83:
ff:5b:c7:b9:91:c1:77:c5:4d:95:0a:f1:6b:4b:a2:
c6:2a:cb:b3:bd:a8:e8:e9:50:48:40:0b:27:46:0c:
9d:7e:f2:a7:e0:92:bf:5b:5d:c0:88:ce:9d:98:2e:
4b:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:BF:15:E3:C8:F3:78:A0:9D:1B:82:57:BA:29:C5:A8:9C:07:05:31
X509v3 Authority Key Identifier:
keyid:4B:68:E1:FB:A7:B4:4A:7B:66:62:36:B2:12:53:D7:D6:36:2D:0D:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S2jh-6e0SntmYjayElPX1jYtDYM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:5b:66:3a:48:ac:f5:f1:3c:e5:b7:7a:a2:8a:1e:5c:ab:62:
63:67:78:d8:56:91:35:77:a1:c4:49:88:5b:4c:ab:60:1e:2a:
e6:f0:b2:bc:15:02:70:b7:ba:8a:03:d2:e0:62:1b:4c:41:2e:
67:fb:e7:91:43:53:e0:ba:37:e0:ce:cb:92:0d:7b:c4:ae:0c:
58:b7:70:9c:58:e1:0e:31:01:e7:11:a3:71:26:e9:2f:9c:94:
a8:72:f4:e3:97:d7:7d:3f:35:92:de:00:6d:60:a2:3c:87:30:
55:87:c4:3d:2c:fc:50:05:d5:b2:0e:bb:08:d0:ea:76:47:81:
0e:05:bb:70:2f:ac:c3:c4:31:e4:c6:e0:3e:b4:4d:44:43:45:
48:24:7b:03:64:85:be:8c:99:57:e9:b6:c2:de:6b:35:b9:62:
5e:45:0e:0d:7e:0d:92:69:32:0c:f8:9b:11:ae:f2:84:3a:fc:
70:bd:cd:9c:d0:d8:b3:39:e7:86:74:f9:8a:d9:cd:b0:c1:3e:
33:04:b8:21:25:e9:0f:ce:6e:d3:91:90:78:82:43:5d:4a:79:
64:c3:3f:c6:4a:f7:2c:95:6d:7b:a7:1c:e9:6f:06:b9:04:95:
89:74:71:4e:59:1d:53:c5:3f:a7:95:85:f6:2c:17:67:9a:03:
0b:78:d2:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 03:31:10 2025 by rpki-client