Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/7a13ee-b731-4ff9-bef0-4b1581f09d3b/1/S-iWpBlThdS5S3KVmIzPv6ismcU.mft
File: S-iWpBlThdS5S3KVmIzPv6ismcU.mft (raw, json)
Hash identifier: Pb33eKReOjGxlt+Su+BnKPcLc/r6z0lPeEZi/XFQMOk=
Subject key identifier: AA:80:16:F2:B1:64:7C:E4:FE:38:52:54:50:C1:A2:C0:A8:32:2D:EA
Authority key identifier: 4B:E8:96:A4:19:53:85:D4:B9:4B:72:95:98:8C:CF:BF:A8:AC:99:C5
Certificate issuer: /CN=4be896a4195385d4b94b7295988ccfbfa8ac99c5
Certificate serial: 0198D6982739079263BB3E22534B6E0AB930
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S-iWpBlThdS5S3KVmIzPv6ismcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/7a13ee-b731-4ff9-bef0-4b1581f09d3b/1/S-iWpBlThdS5S3KVmIzPv6ismcU.mft
Manifest number: 0CDE
Signing time: Sat 23 Aug 2025 11:02:32 +0000
Manifest this update: Sat 23 Aug 2025 11:02:32 +0000
Manifest next update: Sun 24 Aug 2025 11:02:32 +0000
Files and hashes: 1: 6KASjwCz7ilKa_zbYR8rA5RUBrc.roa (hash: T4+QVQXXLI7KFzCBe08m6pD6fADi9vWJFsV+O2tzwnA=)
2: S-iWpBlThdS5S3KVmIzPv6ismcU.crl (hash: zfsoq1+CFebT3ddGv9sC9Oz8vok9Jl7L9kNlSNvJcdI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/7a13ee-b731-4ff9-bef0-4b1581f09d3b/1/S-iWpBlThdS5S3KVmIzPv6ismcU.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/7a13ee-b731-4ff9-bef0-4b1581f09d3b/1/S-iWpBlThdS5S3KVmIzPv6ismcU.mft
rsync://rpki.ripe.net/repository/DEFAULT/S-iWpBlThdS5S3KVmIzPv6ismcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 11:02:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:98:27:39:07:92:63:bb:3e:22:53:4b:6e:0a:b9:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4be896a4195385d4b94b7295988ccfbfa8ac99c5
Validity
Not Before: Aug 23 11:02:32 2025 GMT
Not After : Aug 24 11:02:32 2025 GMT
Subject: CN=aa8016f2b1647ce4fe38525450c1a2c0a8322dea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:0e:43:10:91:62:40:17:91:62:a8:e9:c7:42:
ef:c8:e4:69:64:3b:99:e4:08:1c:9e:de:c6:65:c0:
1d:9c:cd:42:92:f8:a8:3d:f3:84:db:49:8f:da:24:
5f:9c:b3:a3:0a:c0:4c:b2:54:32:a4:89:76:d7:bd:
45:f1:52:8a:4b:0f:7a:e0:19:93:f4:2b:f0:9a:79:
7c:31:0b:ec:41:e8:5a:cf:be:e4:be:a0:62:d1:60:
4a:17:d1:14:57:1d:8e:68:07:ac:15:b3:63:c7:44:
be:8e:cc:e1:44:55:03:88:2c:0e:9e:1f:18:d0:61:
29:9f:41:f4:ec:dd:7c:8c:4e:62:65:0a:b2:7e:48:
c1:1f:43:6b:6d:b3:c4:13:67:8d:f5:8b:9a:17:ac:
4c:b4:75:d1:da:77:e2:73:ff:ff:fb:fa:e1:63:8d:
99:6a:48:4b:c1:16:68:75:cc:65:78:70:85:76:7a:
fb:e0:f9:5c:ac:57:02:84:52:87:30:38:08:71:0b:
36:54:2e:d4:e8:14:ef:7e:69:9b:c0:8c:83:7f:bd:
cd:53:dc:fa:f1:75:dd:87:f1:cf:d8:dc:35:d7:06:
1b:2f:ce:4f:28:a3:1b:46:46:07:3a:7c:62:61:96:
98:9b:cc:d6:99:23:74:de:a7:a9:22:a3:82:c0:2b:
f9:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:80:16:F2:B1:64:7C:E4:FE:38:52:54:50:C1:A2:C0:A8:32:2D:EA
X509v3 Authority Key Identifier:
keyid:4B:E8:96:A4:19:53:85:D4:B9:4B:72:95:98:8C:CF:BF:A8:AC:99:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S-iWpBlThdS5S3KVmIzPv6ismcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/7a13ee-b731-4ff9-bef0-4b1581f09d3b/1/S-iWpBlThdS5S3KVmIzPv6ismcU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/7a13ee-b731-4ff9-bef0-4b1581f09d3b/1/S-iWpBlThdS5S3KVmIzPv6ismcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:37:32:ac:ab:a4:86:f3:51:e1:45:23:01:0e:81:c1:5e:1f:
a6:67:c3:44:92:78:91:ed:8e:81:12:c2:b6:a2:dc:3b:34:0b:
ef:fb:7e:a8:00:36:f9:4f:b8:fd:f0:96:fb:71:6c:4b:7a:eb:
72:0e:a6:50:fc:c1:71:d9:9a:d6:6a:4c:a0:51:d9:37:d7:28:
ae:5b:f4:e5:f9:d9:e6:5a:d1:8c:60:52:91:6c:dc:5f:c5:4b:
bf:e1:60:15:e2:28:68:d8:0b:f5:ca:1d:9d:74:f1:a1:be:22:
c7:e0:b7:cc:ba:e1:b7:f7:ee:b6:45:07:32:ee:8e:41:30:46:
66:4f:62:18:fa:19:44:76:50:5e:98:95:f9:97:3d:f7:ce:17:
0e:90:7d:8e:c6:61:14:f1:8b:77:e5:e1:c2:d1:d3:f2:f1:fa:
5b:ce:3c:3c:da:19:dc:a6:a3:05:00:db:c6:9e:5f:49:57:e0:
a2:b1:de:79:fc:45:d5:0e:10:df:ce:48:33:62:0b:fd:f5:56:
af:a6:ad:7b:43:1f:d6:d6:34:4b:b1:2c:8a:ac:31:70:a7:39:
5c:40:ee:25:f7:e6:94:bc:a7:60:32:76:0a:5e:59:f7:cb:83:
9a:53:b7:b4:b5:c7:80:76:00:8c:34:2b:7f:76:16:ae:00:d8:
3b:43:d6:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:43:52 2025 by rpki-client