Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft
File: S2MqdYtZMJ6GEInWVTruBnprNT8.mft (raw, json)
Hash identifier: iQJEOTY8KyRaAh+gVdPv0InFID0bLkF2Rq1B1PAo+0U=
Subject key identifier: 95:A4:E5:3F:FD:31:A8:55:C7:6F:B8:C9:00:0F:72:5B:5E:A2:35:86
Authority key identifier: 4B:63:2A:75:8B:59:30:9E:86:10:89:D6:55:3A:EE:06:7A:6B:35:3F
Certificate issuer: /CN=4b632a758b59309e861089d6553aee067a6b353f
Certificate serial: 0197B7EABB4D2274288B62079D235318C2DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S2MqdYtZMJ6GEInWVTruBnprNT8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft
Manifest number: 15B7
Signing time: Sat 28 Jun 2025 19:01:43 +0000
Manifest this update: Sat 28 Jun 2025 19:01:43 +0000
Manifest next update: Sun 29 Jun 2025 19:01:43 +0000
Files and hashes: 1: BFmKhRFnCi2AJyutOk-Yxml708c.roa (hash: 30fgE+QkDlz/nOmXI9WzL3BXCW8rLDMyhnps4H9jCSs=)
2: S2MqdYtZMJ6GEInWVTruBnprNT8.crl (hash: Jhp89tiIFVmbq1M3TbiBUr6HnZQqzo5Tam+yz98re6M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft
rsync://rpki.ripe.net/repository/DEFAULT/S2MqdYtZMJ6GEInWVTruBnprNT8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:bb:4d:22:74:28:8b:62:07:9d:23:53:18:c2:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b632a758b59309e861089d6553aee067a6b353f
Validity
Not Before: Jun 28 19:01:43 2025 GMT
Not After : Jun 29 19:01:43 2025 GMT
Subject: CN=95a4e53ffd31a855c76fb8c9000f725b5ea23586
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:9d:78:42:56:71:57:ef:d2:11:25:6b:dd:bc:
9e:5c:a6:68:c5:ce:c5:44:9f:67:5d:22:b5:2c:8a:
ab:39:a0:76:2a:aa:d2:fa:e9:55:8a:83:a2:cd:71:
f7:0f:8f:80:ac:45:db:3d:f6:b0:91:81:74:d4:b3:
c1:55:ac:90:5a:5e:a4:79:e4:45:b8:6a:ad:ac:c2:
f2:ee:cb:8d:19:46:b1:0d:82:87:f3:3f:fd:b5:cd:
86:f6:4e:db:8c:3d:7b:e4:a2:6a:8a:b1:47:0d:07:
99:50:cd:9c:a5:64:61:58:6f:18:d2:52:3d:1d:18:
3f:65:09:0b:b7:77:85:18:57:63:0d:4c:a9:61:99:
80:69:49:46:a7:3a:59:01:17:ad:4b:f4:cc:7f:d4:
14:1a:4c:0f:30:7d:21:92:08:07:58:2a:20:d6:a5:
27:ce:cf:d0:13:da:06:27:c5:af:e7:03:7d:96:46:
23:42:d9:76:01:f0:84:01:ff:1c:e5:92:0b:05:f2:
e0:39:04:c7:7e:7d:27:3c:53:2f:b4:52:c5:69:12:
3b:a6:00:b4:30:f5:ad:d7:0f:d1:5d:30:75:0d:9f:
b8:4b:be:0e:ee:52:46:3d:44:64:3f:a7:30:1f:8e:
d9:a4:95:3a:df:f9:4c:e3:2d:3f:a2:f9:5d:ff:3d:
1d:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:A4:E5:3F:FD:31:A8:55:C7:6F:B8:C9:00:0F:72:5B:5E:A2:35:86
X509v3 Authority Key Identifier:
keyid:4B:63:2A:75:8B:59:30:9E:86:10:89:D6:55:3A:EE:06:7A:6B:35:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S2MqdYtZMJ6GEInWVTruBnprNT8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:5c:4a:26:ac:8a:10:bd:ca:1c:d7:d0:18:c0:3c:41:38:df:
63:05:d6:e9:3a:99:e4:9b:ba:a7:af:9e:ae:af:a4:fd:1b:bf:
27:e3:3e:d1:bd:c5:57:ac:6f:fe:56:c5:1e:31:41:fd:4a:d1:
be:5e:17:db:20:88:0e:a2:bc:cd:fb:11:ee:8d:9d:52:6e:83:
e5:c0:32:a4:39:11:90:ed:0b:0f:ca:a1:3d:3f:0c:a0:0b:51:
1e:1a:68:39:20:5a:82:4b:82:b8:65:e7:74:01:c1:06:6d:0a:
27:2b:b0:58:b7:71:90:01:40:76:c3:47:6c:ec:5b:7c:22:6b:
11:9e:19:b4:b7:5e:b5:53:ba:a3:48:b2:78:2b:60:70:bc:1a:
95:33:72:d4:11:c8:df:1d:c1:69:9a:23:86:99:ee:55:af:3f:
35:c1:0d:fc:84:c2:23:74:c7:93:3c:10:d7:3c:b7:eb:76:5f:
53:f0:79:d5:5b:eb:9b:4e:a6:da:2a:93:33:f5:f9:47:2e:13:
97:95:5d:f9:37:ba:85:53:28:5a:71:d6:63:d2:cd:d1:d9:c8:
d1:43:ee:de:9d:68:a7:0b:1f:e2:ed:77:d1:ee:64:6e:d9:d8:
bf:4f:60:6c:c3:ef:a7:2c:a6:a7:f8:92:16:ea:c4:b7:22:39:
df:e3:60:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:02:58 2025 by rpki-client