Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/6b9ec0-9b10-4443-b5e6-c4fd53ebeb67/1/S2HMijZcxAOCox2tVPbLcj9YdYo.mft
File: S2HMijZcxAOCox2tVPbLcj9YdYo.mft (raw, json)
Hash identifier: tVGrsSs40RifmdOkTuuVGX1KvDeT4q3fknz6xPsjRNk=
Subject key identifier: 8A:D8:77:A6:C4:EC:35:3D:75:85:CC:76:E7:C6:B3:BF:EB:A9:AC:BE
Authority key identifier: 4B:61:CC:8A:36:5C:C4:03:82:A3:1D:AD:54:F6:CB:72:3F:58:75:8A
Certificate issuer: /CN=4b61cc8a365cc40382a31dad54f6cb723f58758a
Certificate serial: 019A4F6205C45F9182A7C43B49649D54FEF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S2HMijZcxAOCox2tVPbLcj9YdYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/6b9ec0-9b10-4443-b5e6-c4fd53ebeb67/1/S2HMijZcxAOCox2tVPbLcj9YdYo.mft
Manifest number: 170E
Signing time: Tue 04 Nov 2025 15:00:15 +0000
Manifest this update: Tue 04 Nov 2025 15:00:15 +0000
Manifest next update: Wed 05 Nov 2025 15:00:15 +0000
Files and hashes: 1: 5dOeHmReGHpglp9CPLficnPxbRA.roa (hash: u/adm8/lzLOzXE337fHeCi8QttPIgGUNVZ/GPwCUh0o=)
2: S2HMijZcxAOCox2tVPbLcj9YdYo.crl (hash: ehU9KCsxgWYW8YoNyHn2rb0JXfYukIyxnaFvfAzrZSM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/6b9ec0-9b10-4443-b5e6-c4fd53ebeb67/1/S2HMijZcxAOCox2tVPbLcj9YdYo.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/6b9ec0-9b10-4443-b5e6-c4fd53ebeb67/1/S2HMijZcxAOCox2tVPbLcj9YdYo.mft
rsync://rpki.ripe.net/repository/DEFAULT/S2HMijZcxAOCox2tVPbLcj9YdYo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:62:05:c4:5f:91:82:a7:c4:3b:49:64:9d:54:fe:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b61cc8a365cc40382a31dad54f6cb723f58758a
Validity
Not Before: Nov 4 15:00:15 2025 GMT
Not After : Nov 5 15:00:15 2025 GMT
Subject: CN=8ad877a6c4ec353d7585cc76e7c6b3bfeba9acbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ce:44:fe:04:44:54:92:5b:9d:8c:ab:47:3c:
c9:f8:27:59:08:a1:0e:3b:e8:b2:1a:b4:4c:0f:c8:
3c:3f:0d:9d:26:36:2e:4d:93:61:61:e3:01:4e:27:
a5:59:92:50:fc:22:bf:4e:f4:41:f4:5c:65:a8:65:
6a:84:61:95:35:ae:a3:9c:3e:ee:1e:0a:91:5d:4b:
2d:6b:92:4c:98:3a:1f:b7:8d:d7:c9:5b:8a:43:f7:
89:2c:8f:ab:a8:c1:e1:3d:00:7f:ac:e2:66:e8:ce:
88:91:1a:b0:6f:40:c1:f7:56:e5:9d:9d:75:c2:3c:
48:7b:45:5e:5d:12:2f:2b:90:6f:1b:ff:e9:53:a7:
68:cc:94:e4:5e:ce:fa:35:44:04:ac:47:86:09:6e:
0b:35:c9:ca:89:86:56:89:02:1d:7d:f0:a8:18:67:
52:05:68:7f:93:87:86:64:d1:3d:c2:77:56:ad:40:
1a:be:df:1e:f2:94:93:d9:34:54:32:f0:63:af:bb:
db:a8:c7:ab:bb:cf:83:e3:4b:22:fb:39:b4:17:a9:
c7:ce:d3:3b:95:9b:c7:03:5d:5c:f3:91:12:fc:79:
71:cc:11:29:51:57:fb:28:8e:13:7a:49:4e:f6:bd:
e0:77:7e:19:3d:be:a2:39:6a:59:f0:bb:d0:19:73:
3d:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:D8:77:A6:C4:EC:35:3D:75:85:CC:76:E7:C6:B3:BF:EB:A9:AC:BE
X509v3 Authority Key Identifier:
keyid:4B:61:CC:8A:36:5C:C4:03:82:A3:1D:AD:54:F6:CB:72:3F:58:75:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S2HMijZcxAOCox2tVPbLcj9YdYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/6b9ec0-9b10-4443-b5e6-c4fd53ebeb67/1/S2HMijZcxAOCox2tVPbLcj9YdYo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/6b9ec0-9b10-4443-b5e6-c4fd53ebeb67/1/S2HMijZcxAOCox2tVPbLcj9YdYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cf:23:92:59:d6:b3:ec:1f:8e:44:7c:ad:f9:b2:3d:ef:33:b4:
23:c9:e9:af:9c:ec:31:29:fc:bd:f9:b3:c6:eb:37:2d:2e:44:
b2:7f:90:2d:06:c4:bb:b5:46:38:2f:4e:d5:dd:b9:0a:fd:fe:
5a:28:d5:ad:73:3c:aa:f9:b9:e7:e3:70:d9:41:1b:4e:42:f9:
a7:0b:f6:65:6c:b1:f0:82:3c:13:c0:33:f3:7f:6d:b1:a5:a2:
8e:93:e7:0f:d4:fa:92:f5:ee:b6:c8:6b:59:4e:0a:bf:03:f8:
4e:3a:c8:ce:ac:08:f6:59:e2:21:d1:72:a5:92:bd:48:1c:c6:
96:01:d0:8d:bb:d4:00:07:d7:03:e7:6f:e0:c0:a0:3b:62:9b:
e9:44:d1:be:40:ff:51:3c:8e:c7:5d:1a:b3:3a:2b:5f:15:a6:
15:0a:32:1f:e4:56:11:13:62:b3:1f:28:23:66:b7:4e:8f:89:
e9:24:95:33:48:d2:f0:02:29:15:2c:3b:c5:e1:11:a2:4b:c9:
58:de:b5:26:51:9e:9c:25:71:ac:db:eb:f7:de:47:3d:b8:a8:
ba:46:39:77:40:6a:a3:5b:60:a1:73:94:0c:2a:fa:21:73:1e:
9c:e5:b7:a0:91:76:4d:ef:aa:65:fd:32:13:6e:44:0e:dc:ca:
1a:17:02:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:01:44 2025 by rpki-client