Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.mft
File: S2jh-6e0SntmYjayElPX1jYtDYM.mft (raw, json)
Hash identifier: onny1ennyTzLOJoR39z9yv5EixgfXwILSlLMHeNwdM8=
Subject key identifier: 6A:D8:2F:CB:78:5B:6D:6A:45:09:FA:2A:5E:5B:49:05:46:57:9A:2F
Authority key identifier: 4B:68:E1:FB:A7:B4:4A:7B:66:62:36:B2:12:53:D7:D6:36:2D:0D:83
Certificate issuer: /CN=4b68e1fba7b44a7b666236b21253d7d6362d0d83
Certificate serial: 019A503E040A7B166C49F722BA7B69C09F06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S2jh-6e0SntmYjayElPX1jYtDYM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.mft
Manifest number: 0452
Signing time: Tue 04 Nov 2025 19:00:32 +0000
Manifest this update: Tue 04 Nov 2025 19:00:32 +0000
Manifest next update: Wed 05 Nov 2025 19:00:32 +0000
Files and hashes: 1: A3eZlYEypGjwef6ovVTvAMEG2Sc.roa (hash: itiiU42XBZajUxpH3eQ5BL8/j+cYwxjPvYG7bJxrjyA=)
2: S2jh-6e0SntmYjayElPX1jYtDYM.crl (hash: aGaBL7Xr2fqLbG0SIEQANdKCnxAI8B4U6uN0j6ej7DY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.mft
rsync://rpki.ripe.net/repository/DEFAULT/S2jh-6e0SntmYjayElPX1jYtDYM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:3e:04:0a:7b:16:6c:49:f7:22:ba:7b:69:c0:9f:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b68e1fba7b44a7b666236b21253d7d6362d0d83
Validity
Not Before: Nov 4 19:00:32 2025 GMT
Not After : Nov 5 19:00:32 2025 GMT
Subject: CN=6ad82fcb785b6d6a4509fa2a5e5b490546579a2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:6c:8e:48:f4:d9:21:e1:a7:ff:c1:b8:36:c0:
1c:7e:eb:b3:a3:af:70:6a:d1:66:cb:bb:be:bf:5d:
8f:98:66:85:b0:ff:d9:32:88:25:20:95:eb:cb:bd:
2a:4a:fc:f3:af:6f:c1:fd:41:83:2c:a5:ca:8e:63:
b1:4a:84:b0:ca:d9:17:00:c3:b1:34:33:4c:8d:4a:
76:4d:47:dd:14:0a:f0:a0:8d:fc:04:78:9c:7a:89:
ec:4f:77:6d:db:52:b5:07:ca:34:68:87:36:27:8c:
6d:cf:5d:32:f1:e3:2f:a1:63:05:65:f7:58:26:c8:
ae:07:e5:1f:d5:9b:fa:84:3c:26:98:fe:7d:85:f0:
1e:1e:c6:d3:9d:10:be:4b:d0:22:34:28:c6:37:31:
78:9c:8a:fd:ff:5b:2d:f9:8a:80:06:74:b3:23:e9:
42:ea:5c:e8:54:56:48:67:e6:34:af:47:24:f0:fa:
10:61:72:6c:4a:ab:bc:d9:9f:a1:0a:53:bc:e9:3d:
70:80:4d:35:2e:67:88:f0:5d:d4:fc:16:f8:f5:63:
72:7d:6b:89:c4:04:a2:ae:1d:06:7a:7e:2d:f3:9a:
39:d5:95:b2:e0:b9:13:ad:ef:7a:c6:1b:09:36:21:
14:09:d5:d4:cb:23:2b:c1:52:49:77:94:c9:cb:e9:
52:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:D8:2F:CB:78:5B:6D:6A:45:09:FA:2A:5E:5B:49:05:46:57:9A:2F
X509v3 Authority Key Identifier:
keyid:4B:68:E1:FB:A7:B4:4A:7B:66:62:36:B2:12:53:D7:D6:36:2D:0D:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S2jh-6e0SntmYjayElPX1jYtDYM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:60:d2:3f:5a:96:1c:b7:be:2f:92:88:aa:53:61:2f:7e:cf:
24:86:21:f4:f0:24:a4:eb:c9:e2:84:5f:c9:da:2d:60:b0:f5:
28:63:d0:6a:2e:9b:d4:a8:eb:16:2b:04:7f:3b:0b:21:2d:a7:
0e:97:9b:69:6b:df:aa:1b:a2:5f:40:44:dd:20:6a:f9:01:f9:
40:4e:48:27:69:6b:92:d7:9e:2e:44:7f:5a:ec:a5:34:0d:8f:
4a:c9:88:30:c8:f6:37:37:62:62:79:8e:57:41:f7:48:59:8c:
b4:da:74:c0:a0:c7:44:fd:6d:c9:c0:cd:29:2c:b2:c5:7c:3e:
6d:8f:18:2e:33:cb:77:f7:7e:db:ab:b6:70:d2:b5:d4:03:b0:
22:34:4d:b5:25:51:79:81:07:c1:72:ac:d5:0a:57:27:eb:b2:
82:7b:0c:05:cf:b2:87:1e:db:5a:7c:b4:e3:fa:47:1c:3b:a0:
b0:00:8c:73:69:73:c4:d9:18:00:27:59:cb:a6:2d:95:08:fe:
df:a1:69:b7:8d:77:7d:be:f2:46:a3:4a:87:22:5a:51:0e:47:
15:46:96:37:cb:52:6f:c6:2b:f0:2c:04:7c:81:46:00:e8:f3:
1c:3a:21:a5:25:cb:dd:c2:00:33:01:75:0e:5e:e6:b7:de:b4:
f3:b4:f0:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 22:24:18 2025 by rpki-client