Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft
File: S2MqdYtZMJ6GEInWVTruBnprNT8.mft (raw, json)
Hash identifier: ajp7QI64YfJs3KpuiNc7KWnRtq8kM/HIYfI7oZXnBHY=
Subject key identifier: 81:15:FB:3F:8A:60:EC:47:E4:98:76:49:7A:C3:E9:35:A5:3B:8F:B0
Authority key identifier: 4B:63:2A:75:8B:59:30:9E:86:10:89:D6:55:3A:EE:06:7A:6B:35:3F
Certificate issuer: /CN=4b632a758b59309e861089d6553aee067a6b353f
Certificate serial: 019890351486A1D5845A8D57482BA1ABCAD2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S2MqdYtZMJ6GEInWVTruBnprNT8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft
Manifest number: 1627
Signing time: Sat 09 Aug 2025 19:00:54 +0000
Manifest this update: Sat 09 Aug 2025 19:00:54 +0000
Manifest next update: Sun 10 Aug 2025 19:00:54 +0000
Files and hashes: 1: BFmKhRFnCi2AJyutOk-Yxml708c.roa (hash: 30fgE+QkDlz/nOmXI9WzL3BXCW8rLDMyhnps4H9jCSs=)
2: S2MqdYtZMJ6GEInWVTruBnprNT8.crl (hash: zMhsg+rpQ0c+NPGQjrJVkc4tmil4BVGZy/PsG12LDYM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft
rsync://rpki.ripe.net/repository/DEFAULT/S2MqdYtZMJ6GEInWVTruBnprNT8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 14:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:90:35:14:86:a1:d5:84:5a:8d:57:48:2b:a1:ab:ca:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b632a758b59309e861089d6553aee067a6b353f
Validity
Not Before: Aug 9 19:00:54 2025 GMT
Not After : Aug 10 19:00:54 2025 GMT
Subject: CN=8115fb3f8a60ec47e49876497ac3e935a53b8fb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:d4:f9:2b:89:ef:2a:95:e5:d7:b7:34:a5:2d:
df:16:c7:ee:b8:5f:f6:1e:da:0c:8f:5e:d9:5a:bd:
35:9a:c8:b9:b8:75:c7:0d:3b:ba:22:5f:7d:0f:3a:
ea:91:bb:b1:07:ad:b0:ab:10:e8:34:43:a2:b3:a2:
ec:05:13:33:3b:e4:ee:8c:02:bb:f4:ee:e6:c5:94:
9b:ec:38:06:89:d7:bc:27:ee:44:ad:c4:45:c5:6c:
cb:a1:a4:ae:06:3e:fd:7b:3b:18:e5:72:63:02:97:
3d:c0:2f:11:d4:4b:11:92:56:5f:c6:ea:5a:7d:f8:
ed:92:1a:e2:7e:1e:39:d0:14:8f:0d:ff:2c:ff:d6:
3e:6e:97:6c:a1:54:bc:aa:39:fc:55:d2:a3:bc:b9:
4e:e9:04:93:b0:2f:9c:09:73:7e:c5:3a:55:22:35:
c8:f6:2a:0f:a5:d0:b3:8a:c2:ee:22:35:91:60:34:
53:9e:62:d1:86:f5:3f:28:ab:32:e1:91:f4:ae:8b:
c3:bc:3f:46:d7:d3:72:8d:50:31:a1:4f:a9:83:4b:
27:f1:b2:e6:06:4f:df:22:58:7d:f4:d9:c1:d6:f5:
d9:c9:b9:9d:59:f7:a0:6d:7c:6c:ad:d9:a8:4a:a7:
3c:0b:53:a4:5a:49:8d:90:52:c1:55:de:99:b2:a5:
81:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:15:FB:3F:8A:60:EC:47:E4:98:76:49:7A:C3:E9:35:A5:3B:8F:B0
X509v3 Authority Key Identifier:
keyid:4B:63:2A:75:8B:59:30:9E:86:10:89:D6:55:3A:EE:06:7A:6B:35:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S2MqdYtZMJ6GEInWVTruBnprNT8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:18:b5:85:c4:0d:7f:b3:7a:42:15:2d:ed:b0:53:c9:a7:bb:
ac:41:85:2c:c6:fa:81:e5:b1:92:35:cc:5c:c1:18:77:cc:f5:
23:99:29:fe:44:a1:0b:f2:27:93:b0:bd:b5:5c:6c:01:68:88:
70:99:49:1a:22:6a:13:0e:8f:97:7f:b5:36:4b:ee:94:a7:95:
18:72:17:3f:d7:a8:13:1b:b0:0b:3d:bc:d4:0e:23:59:38:dc:
01:d2:e1:e5:17:6e:f8:18:6c:8c:f0:d4:b5:05:f4:e3:fb:43:
93:c3:98:78:ce:d4:4b:da:c4:73:7f:2b:dd:2d:ed:4d:cb:29:
f0:5a:34:6b:27:75:71:1d:64:05:ee:e0:de:e3:72:eb:ab:95:
8a:c9:cf:e5:51:3d:51:cd:cd:4b:8c:10:6c:b8:4b:17:1e:e1:
71:4f:86:7e:f9:a6:c7:41:9f:dc:bb:f2:f8:a7:84:80:90:d4:
63:af:8c:00:3a:d9:b1:ae:b3:c6:35:aa:d5:cb:b7:33:f3:11:
47:54:db:ed:16:d5:d6:99:fa:04:0d:73:d7:d9:ec:e6:ca:71:
c5:80:88:a5:90:85:95:31:c6:01:56:22:99:11:6f:85:98:35:
84:82:93:8d:15:fb:e7:59:48:b5:69:ce:25:40:8d:a3:86:fb:
46:19:0c:07
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiQNRSGodWEWo1XSCuhq8rSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRiNjMyYTc1OGI1OTMwOWU4NjEwODlkNjU1M2FlZTA2N2E2
YjM1M2YwHhcNMjUwODA5MTkwMDU0WhcNMjUwODEwMTkwMDU0WjAzMTEwLwYDVQQD
Eyg4MTE1ZmIzZjhhNjBlYzQ3ZTQ5ODc2NDk3YWMzZTkzNWE1M2I4ZmIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzNT5K4nvKpXl17c0pS3fFsfuuF/2
HtoMj17ZWr01msi5uHXHDTu6Il99DzrqkbuxB62wqxDoNEOis6LsBRMzO+TujAK7
9O7mxZSb7DgGide8J+5ErcRFxWzLoaSuBj79ezsY5XJjApc9wC8R1EsRklZfxupa
ffjtkhrifh450BSPDf8s/9Y+bpdsoVS8qjn8VdKjvLlO6QSTsC+cCXN+xTpVIjXI
9ioPpdCzisLuIjWRYDRTnmLRhvU/KKsy4ZH0rovDvD9G19NyjVAxoU+pg0sn8bLm
Bk/fIlh99NnB1vXZybmdWfegbXxsrdmoSqc8C1OkWkmNkFLBVd6ZsqWB+wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIEV+z+KYOxH5Jh2SXrD6TWlO4+wMB8GA1UdIwQY
MBaAFEtjKnWLWTCehhCJ1lU67gZ6azU/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUzJNcWRZdFpNSjZHRUluV1ZUcnVCbnByTlQ4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS8yMTNhOTUtYWFjZi00MGE5LTk3NTMt
OTRjMGIwYjc2MDI5LzEvUzJNcWRZdFpNSjZHRUluV1ZUcnVCbnByTlQ4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS8yMTNhOTUtYWFjZi00MGE5LTk3NTMtOTRjMGIwYjc2MDI5
LzEvUzJNcWRZdFpNSjZHRUluV1ZUcnVCbnByTlQ4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAShi1hcQN
f7N6QhUt7bBTyae7rEGFLMb6geWxkjXMXMEYd8z1I5kp/kShC/Ink7C9tVxsAWiI
cJlJGiJqEw6Pl3+1NkvulKeVGHIXP9eoExuwCz281A4jWTjcAdLh5Rdu+BhsjPDU
tQX04/tDk8OYeM7US9rEc38r3S3tTcsp8Fo0ayd1cR1kBe7g3uNy66uVisnP5VE9
Uc3NS4wQbLhLFx7hcU+Gfvmmx0Gf3Lvy+KeEgJDUY6+MADrZsa6zxjWq1cu3M/MR
R1Tb7RbV1pn6BA1z19ns5spxxYCIpZCFlTHGAVYimRFvhZg1hIKTjRX751lItWnO
JUCNo4b7RhkMBw==
-----END CERTIFICATE-----
Generated at Sat Aug 9 22:42:45 2025 by rpki-client