Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft
File: S2MqdYtZMJ6GEInWVTruBnprNT8.mft (raw, json)
Hash identifier: bN/I9zQAG3Dniq4uWu7H83qn9GekIQuRtrfAgAtX+F4=
Subject key identifier: AE:5F:5F:E4:67:9A:7A:EF:F3:4D:2F:7B:0E:F1:6A:C7:D0:AC:A9:0A
Authority key identifier: 4B:63:2A:75:8B:59:30:9E:86:10:89:D6:55:3A:EE:06:7A:6B:35:3F
Certificate issuer: /CN=4b632a758b59309e861089d6553aee067a6b353f
Certificate serial: 0198D5BC52FB1A52A075ECF24C949A773B52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S2MqdYtZMJ6GEInWVTruBnprNT8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft
Manifest number: 164B
Signing time: Sat 23 Aug 2025 07:02:25 +0000
Manifest this update: Sat 23 Aug 2025 07:02:25 +0000
Manifest next update: Sun 24 Aug 2025 07:02:25 +0000
Files and hashes: 1: BFmKhRFnCi2AJyutOk-Yxml708c.roa (hash: 30fgE+QkDlz/nOmXI9WzL3BXCW8rLDMyhnps4H9jCSs=)
2: S2MqdYtZMJ6GEInWVTruBnprNT8.crl (hash: GwOAmjC7ruBEPddn+32OeSmSzV5NFG4qc+FsybKcieE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft
rsync://rpki.ripe.net/repository/DEFAULT/S2MqdYtZMJ6GEInWVTruBnprNT8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:52:fb:1a:52:a0:75:ec:f2:4c:94:9a:77:3b:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b632a758b59309e861089d6553aee067a6b353f
Validity
Not Before: Aug 23 07:02:25 2025 GMT
Not After : Aug 24 07:02:25 2025 GMT
Subject: CN=ae5f5fe4679a7aeff34d2f7b0ef16ac7d0aca90a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:7d:e2:7b:9c:04:5c:66:48:d7:20:4c:f3:74:
98:df:0d:18:3f:e2:da:25:97:3d:c8:c2:4e:be:cb:
ba:f6:d0:b3:a0:51:1d:13:dc:be:e2:b9:c2:97:f3:
04:ba:72:cd:6a:86:3e:5a:9d:23:69:3e:ff:2b:3a:
67:0f:ca:89:0d:f6:fc:cc:a4:f8:1b:6e:0f:ca:05:
30:ec:66:98:d9:83:7c:4d:34:1d:d9:41:cd:cb:cf:
cc:cf:12:1a:d6:d6:b5:d7:0a:a6:3d:fa:82:9b:b4:
c3:03:1a:ec:c9:39:2f:14:5a:01:03:9f:2b:fd:87:
f2:d7:cb:75:40:2d:f3:3b:d9:48:bd:ce:29:9c:1d:
0c:aa:59:78:c6:87:18:97:41:1e:84:2a:96:30:74:
38:cc:7f:ba:1d:d6:ab:d5:a3:dd:a2:0c:3a:16:7e:
a6:f2:91:f5:f8:79:d5:cd:f8:48:71:dc:29:0f:ca:
b3:f0:d4:dd:7e:19:0d:b1:e0:6f:7c:e9:e9:9d:a1:
6c:fb:01:c2:16:10:ef:07:7e:a9:35:7a:a7:93:90:
4d:44:38:02:66:68:62:83:07:97:c1:c6:f9:49:c1:
27:f3:e4:81:71:f2:fa:00:f1:8b:66:49:96:a6:63:
59:a9:04:e2:bc:68:ff:43:ff:f8:60:7f:12:1c:95:
e3:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:5F:5F:E4:67:9A:7A:EF:F3:4D:2F:7B:0E:F1:6A:C7:D0:AC:A9:0A
X509v3 Authority Key Identifier:
keyid:4B:63:2A:75:8B:59:30:9E:86:10:89:D6:55:3A:EE:06:7A:6B:35:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S2MqdYtZMJ6GEInWVTruBnprNT8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:b9:35:7e:17:5f:ab:e7:8a:8d:a4:07:20:6a:08:7b:43:0c:
f2:96:5b:0f:98:f6:93:e7:57:5c:e0:cc:d4:3d:13:42:5a:fd:
fb:c4:c9:f5:96:d8:ba:74:57:8c:aa:4c:a3:b3:ad:fa:67:5d:
13:a0:41:30:23:38:64:af:50:57:28:42:66:ce:de:0e:34:ef:
78:25:cf:f8:5d:78:20:a2:1f:a7:ba:fc:d6:2e:ae:a3:fe:f0:
a9:29:df:42:fb:5b:15:04:61:04:40:7b:bd:b6:e0:2c:50:0a:
bc:db:dd:9a:a1:3d:5b:76:6d:57:cc:3b:73:a0:b6:48:26:9f:
bb:c6:d4:54:c1:d9:e5:27:4c:ed:a1:78:d7:86:e7:83:03:49:
c0:ce:fb:80:2b:f8:0b:3f:f5:ba:9b:36:fe:37:f5:14:b1:79:
5d:92:7a:0a:4f:75:94:3f:64:3f:94:c1:b8:16:7b:f4:0b:17:
6b:2d:82:03:97:a6:34:ca:b5:34:ed:d9:2b:81:f0:1a:56:34:
cc:c8:80:95:9a:6d:31:cb:f7:da:ef:a0:06:92:c1:04:a0:c9:
f9:fe:b1:60:22:fe:4e:0f:25:7e:27:54:8e:de:d1:ae:2e:f7:
63:90:c0:92:1e:25:c5:e3:5c:a8:4f:6a:fe:4e:da:b3:cc:c5:
dc:2f:f6:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:26:29 2025 by rpki-client