Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/6b9ec0-9b10-4443-b5e6-c4fd53ebeb67/1/S2HMijZcxAOCox2tVPbLcj9YdYo.mft
File: S2HMijZcxAOCox2tVPbLcj9YdYo.mft (raw, json)
Hash identifier: T6hL9JYqKsfFHDxaMPF3YKSxCF8Bkt/pUSe8nYHDsvg=
Subject key identifier: 92:64:C9:5B:43:FA:E3:26:D5:6E:12:B0:9C:69:43:CD:72:80:4E:79
Authority key identifier: 4B:61:CC:8A:36:5C:C4:03:82:A3:1D:AD:54:F6:CB:72:3F:58:75:8A
Certificate issuer: /CN=4b61cc8a365cc40382a31dad54f6cb723f58758a
Certificate serial: 0198971385327335614C46258D1D2A974030
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S2HMijZcxAOCox2tVPbLcj9YdYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/6b9ec0-9b10-4443-b5e6-c4fd53ebeb67/1/S2HMijZcxAOCox2tVPbLcj9YdYo.mft
Manifest number: 162A
Signing time: Mon 11 Aug 2025 03:01:35 +0000
Manifest this update: Mon 11 Aug 2025 03:01:35 +0000
Manifest next update: Tue 12 Aug 2025 03:01:35 +0000
Files and hashes: 1: 5dOeHmReGHpglp9CPLficnPxbRA.roa (hash: u/adm8/lzLOzXE337fHeCi8QttPIgGUNVZ/GPwCUh0o=)
2: S2HMijZcxAOCox2tVPbLcj9YdYo.crl (hash: etWLLuMvOfRQZuxo5v6rglkRbUosVpSXmgkF4LqzP/4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/6b9ec0-9b10-4443-b5e6-c4fd53ebeb67/1/S2HMijZcxAOCox2tVPbLcj9YdYo.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/6b9ec0-9b10-4443-b5e6-c4fd53ebeb67/1/S2HMijZcxAOCox2tVPbLcj9YdYo.mft
rsync://rpki.ripe.net/repository/DEFAULT/S2HMijZcxAOCox2tVPbLcj9YdYo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 02:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:97:13:85:32:73:35:61:4c:46:25:8d:1d:2a:97:40:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b61cc8a365cc40382a31dad54f6cb723f58758a
Validity
Not Before: Aug 11 03:01:35 2025 GMT
Not After : Aug 12 03:01:35 2025 GMT
Subject: CN=9264c95b43fae326d56e12b09c6943cd72804e79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:88:de:62:f5:79:83:e2:27:da:a5:29:22:30:
e9:b2:2b:6f:7f:c4:fd:d6:f3:fc:10:c2:dd:c3:b0:
7d:f7:06:e2:0b:ff:93:06:f5:a7:f2:de:d3:66:e1:
0d:8f:3d:76:fc:6e:1c:ea:c6:1c:00:5a:6d:fc:c1:
b0:81:57:e3:d7:25:28:2e:15:fd:5c:e5:c8:90:15:
35:aa:4b:80:91:f0:26:72:a7:e4:6d:d8:77:e3:0f:
b2:54:a2:80:2d:b9:c9:49:a0:e6:98:35:d4:30:a1:
b6:fc:87:a4:69:c5:ae:c3:01:9d:c6:5c:f0:6c:ca:
8e:e3:ee:d0:c6:7f:13:07:00:42:77:e0:e0:c9:2a:
8c:46:3f:f3:8a:59:c6:07:2f:ba:85:22:b9:73:92:
d6:f0:db:df:de:66:f7:e0:ad:bf:74:d1:90:03:45:
57:e7:12:75:e8:0a:7b:bb:e1:cd:66:8a:cb:97:6d:
4e:b5:e9:f8:9e:b3:b4:bf:3f:5e:3a:7a:d1:49:6f:
d5:8a:5a:5e:aa:2d:a4:76:1e:60:1f:4a:ee:19:36:
2e:26:c3:1c:d0:55:b4:70:2b:b5:2a:e1:eb:60:66:
c7:89:2f:1f:0a:65:a1:aa:54:4c:62:7c:34:46:78:
be:71:bf:51:c4:74:a1:13:69:d6:8d:8d:5a:ff:9c:
a2:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:64:C9:5B:43:FA:E3:26:D5:6E:12:B0:9C:69:43:CD:72:80:4E:79
X509v3 Authority Key Identifier:
keyid:4B:61:CC:8A:36:5C:C4:03:82:A3:1D:AD:54:F6:CB:72:3F:58:75:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S2HMijZcxAOCox2tVPbLcj9YdYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/6b9ec0-9b10-4443-b5e6-c4fd53ebeb67/1/S2HMijZcxAOCox2tVPbLcj9YdYo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/6b9ec0-9b10-4443-b5e6-c4fd53ebeb67/1/S2HMijZcxAOCox2tVPbLcj9YdYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c5:7c:4d:c5:5d:b3:4c:e7:a0:96:cb:24:69:2d:7c:fc:ad:bc:
ae:71:d3:ef:43:e0:be:e0:0d:91:c7:f9:fa:8f:69:e5:e2:5d:
70:13:3c:c5:f3:ff:25:12:0d:cf:ef:18:2d:dd:48:b8:41:33:
af:71:bb:66:44:f8:89:ba:b8:c3:14:22:64:17:29:b3:5e:f3:
32:07:75:ea:f5:db:db:7f:6b:8c:46:1d:dd:a7:ad:1c:29:8b:
17:26:43:a7:88:14:e0:ea:c2:9f:6b:0e:38:f1:7a:f8:97:c6:
5f:b3:c7:38:86:83:78:63:62:b2:13:f7:1a:8e:6e:aa:b7:a9:
af:4a:1b:ef:1f:06:5c:e2:6e:2c:65:e9:24:a6:78:11:48:93:
6c:4d:1b:6b:39:44:56:b1:bb:02:16:2b:fb:c0:8c:87:3b:ff:
f1:8c:ec:ee:4d:5c:d8:5e:f3:e7:8d:3b:00:df:5a:0d:6d:84:
f8:78:1a:fe:f9:f9:1d:df:d5:4b:19:4e:82:c0:7b:e0:a7:cb:
54:85:f0:05:07:1b:82:43:57:47:a8:a5:85:38:ed:61:3d:03:
f8:28:8d:71:ce:57:fd:dc:d4:d0:f8:31:85:ea:be:e2:8a:c3:
f9:67:ae:32:ae:84:6a:84:8f:5b:b3:2d:aa:85:07:40:7e:b8:
35:dc:cf:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 10:50:38 2025 by rpki-client