
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft
File: S1KaTSL67yMTXW7_iRImZiPEklU.mft (raw, json)
Hash identifier: dStLfzTwOUN9vQJDbU4HarfsyPjBQl2qTT1kWJIFZpw=
Subject key identifier: A4:0D:8C:A9:2A:6F:B8:27:48:2F:BE:D1:0E:2F:4E:FA:6D:B6:13:68
Authority key identifier: 4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55
Certificate issuer: /CN=4b529a4d22faef23135d6eff8912266623c49255
Certificate serial: 01987374131009177003F58361436B76FD69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft
Manifest number: 1634
Signing time: Mon 04 Aug 2025 05:00:43 +0000
Manifest this update: Mon 04 Aug 2025 05:00:43 +0000
Manifest next update: Tue 05 Aug 2025 05:00:43 +0000
Files and hashes: 1: 1-dpFpZ66BUopKTWddAy3aYd5Q58.roa (hash: a/nFyI+oVdi7douUuLnGlPqM2YOH9iXTA2Ltk7+EQUM=)
2: DL1hBwC058Ly5gbOYmTudqMnhLY.roa (hash: ZP95RnK2lnoKaBDaVLfKRWdtbqYZIJodq0FZ93fqmj4=)
3: S1KaTSL67yMTXW7_iRImZiPEklU.crl (hash: x/FA598ejNhdeLN3XxUhC3IdQIoDf1MySORzM1RAbfo=)
4: TSdQZeiJv87sxq_OJ-PJSQE8GTQ.roa (hash: zeHI0YzPke/O83NDkRPiKpR8/sA4EMZWB7tgWAf8HNc=)
5: YG4GH2kbor4nZ_HdlU4bXsM_ISU.roa (hash: orPHPnq001m59xqGhWWhOTcNNv+UhgU5D7ZAydlYwJ0=)
6: _YciLAUMll_l6Ad-S-3jEr-WUP0.roa (hash: YLNVgwBOiutPhe7HbfVw0eYS7E9cfJJEs9zT8+FOZFI=)
7: ct-_W27EwoC0fOGDJoYPaUOCh1k.roa (hash: Ry7d3ypfHQ+1XBY6nTPep5IZIfXf1osPEMavue76/1w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft
rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:74:13:10:09:17:70:03:f5:83:61:43:6b:76:fd:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b529a4d22faef23135d6eff8912266623c49255
Validity
Not Before: Aug 4 05:00:43 2025 GMT
Not After : Aug 5 05:00:43 2025 GMT
Subject: CN=a40d8ca92a6fb827482fbed10e2f4efa6db61368
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:6b:3c:2a:9e:63:38:1b:95:d1:a9:32:fd:62:
2f:91:45:20:32:7e:02:68:c6:49:fe:8e:c9:5e:d5:
58:53:33:8b:fb:85:05:3d:e8:ab:3c:ef:c5:29:82:
e3:57:e3:a6:78:47:21:3f:53:be:91:a5:df:ae:b1:
3d:c2:3c:0a:07:7c:bb:9f:00:2d:44:5c:95:93:c6:
62:af:08:4d:db:bf:e4:73:fa:88:45:0a:15:fd:41:
f4:6b:bd:62:38:41:53:93:17:ba:c0:e1:af:79:7f:
f7:2f:62:83:79:5c:c4:47:d7:80:a0:cd:f9:1a:53:
54:6b:83:49:1c:98:7c:21:ed:e3:53:88:a7:c1:ca:
c5:4f:ad:ff:74:d3:79:12:31:7d:45:b8:85:e4:70:
8b:47:f5:f5:fc:04:c9:cc:46:55:a0:e1:69:1f:07:
28:53:df:83:e3:fb:dd:61:13:31:ad:e4:a6:44:c7:
02:f3:5d:ab:e6:d8:88:fd:5c:00:8c:fe:66:c4:40:
6b:c2:12:54:ba:fb:3b:71:43:0a:a2:e4:92:c2:2f:
d1:b1:27:a8:c4:18:86:a5:da:87:b9:75:63:c7:01:
fe:04:86:31:a5:36:66:18:5d:8f:58:a1:92:72:c1:
43:13:cb:ab:e2:5d:2e:a2:e7:a8:03:3d:df:2b:3a:
7b:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:0D:8C:A9:2A:6F:B8:27:48:2F:BE:D1:0E:2F:4E:FA:6D:B6:13:68
X509v3 Authority Key Identifier:
keyid:4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:3e:95:ce:1e:29:12:8a:df:a4:7d:5b:cc:be:be:9c:23:77:
fc:c9:1c:58:50:b3:8a:ac:8b:09:40:52:48:2c:de:3a:30:64:
ef:49:3b:7a:93:a6:c5:6a:1b:73:ec:45:25:94:6e:2f:98:01:
01:c4:ea:c9:99:d3:c0:f7:c4:6d:83:73:77:47:96:9f:6d:08:
01:58:96:77:b9:7e:d0:fc:f4:c5:07:28:9f:9b:56:48:15:11:
a7:b7:aa:e0:3a:94:66:03:4f:c7:fd:46:a0:9c:cf:2b:90:e9:
0b:f7:a9:9b:92:da:b2:30:e2:77:5e:16:8c:7f:37:3b:9c:56:
44:da:a9:75:a3:1c:a9:76:1f:84:4d:f2:42:a7:4d:9b:57:3a:
7c:a8:ea:80:c7:c7:f6:b7:86:0d:4c:aa:89:1b:c9:32:c7:c8:
4d:3d:31:d8:74:44:ad:e1:db:54:6d:59:46:e4:41:0e:85:68:
db:8c:29:f1:57:c9:a2:c9:7f:ee:b5:69:37:00:8d:ed:d2:bf:
0e:aa:90:d3:1b:bd:fd:50:fd:41:13:d6:8e:6e:ab:51:4c:ad:
bf:78:a4:52:01:76:56:62:22:18:66:1c:3b:62:4d:f3:60:ea:
c0:76:82:72:d7:ee:c7:cf:cd:17:dc:6e:1b:d1:3b:e5:bd:87:
9f:55:48:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:06:27 2025 by rpki-client