Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/rs1kyXg317-sBmN92VK97eDCXYU.mft
File: rs1kyXg317-sBmN92VK97eDCXYU.mft (raw, json)
Hash identifier: RlrQ2ruq9iyHEK1gHOhVV4i4Gvsn0NWnzKMcuP/RQz0=
Subject key identifier: C8:A8:09:E8:72:7C:C8:45:F5:47:6C:0D:BF:CF:86:D2:E5:42:D2:68
Authority key identifier: AE:CD:64:C9:78:37:D7:BF:AC:06:63:7D:D9:52:BD:ED:E0:C2:5D:85
Certificate issuer: /CN=aecd64c97837d7bfac06637dd952bdede0c25d85
Certificate serial: 0199FC587083B9C11AE2A3EB3D067D67DDD5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rs1kyXg317-sBmN92VK97eDCXYU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/rs1kyXg317-sBmN92VK97eDCXYU.mft
Manifest number: 1000
Signing time: Sun 19 Oct 2025 12:01:18 +0000
Manifest this update: Sun 19 Oct 2025 12:01:18 +0000
Manifest next update: Mon 20 Oct 2025 12:01:18 +0000
Files and hashes: 1: 1-T8CKegBPOvx5rZQQVTHJ11NZfg.roa (hash: oTgrbLpJLd4bRqFVMFFivKpiZVrk/3YZuKNsOWKM6jM=)
2: 17xOhQoyIYZB59OnKrsT-dwllSw.roa (hash: KCMu12vyicYfkSRRUkeo8o3fEfjAYF/JgjW23i3oXrg=)
3: FsSFEoZYb3Nl-hkkgjVPUd2IvDA.roa (hash: Fqkp/m22ufWmmjenywmk6qhO70aCJ2/zGhbzol+bOEg=)
4: Umj2rbjqE8HIV-ruGeVeqZYwg9s.roa (hash: /89yG0WnFcE05IMFp3mM3/qP9TrscwAHv2Gfhcc6Cj0=)
5: rs1kyXg317-sBmN92VK97eDCXYU.crl (hash: LlqYAqC0Sy4cU4ETyFxXwvPUlZWk8vEEouPZI7BEuTs=)
6: sZB9qJRdylpTdvF1XtaqqpNl-OY.roa (hash: lRBjFzzRtx2AcctUxGDd+P1zYD8sp2IpXYC35kAzyFQ=)
7: vxhTN1By4lMiNMyOzxGwyr7QhR4.roa (hash: Ifos+E1fPLCwRcBMt2WCu8lSioPDUu6uUrn5J7VTK/U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/rs1kyXg317-sBmN92VK97eDCXYU.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/rs1kyXg317-sBmN92VK97eDCXYU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rs1kyXg317-sBmN92VK97eDCXYU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:70:83:b9:c1:1a:e2:a3:eb:3d:06:7d:67:dd:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aecd64c97837d7bfac06637dd952bdede0c25d85
Validity
Not Before: Oct 19 12:01:18 2025 GMT
Not After : Oct 20 12:01:18 2025 GMT
Subject: CN=c8a809e8727cc845f5476c0dbfcf86d2e542d268
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:62:90:cd:60:90:6d:fb:99:11:2e:34:bf:e4:
20:b6:1b:49:21:e5:f0:4f:dc:37:cc:78:38:05:36:
c5:c4:bf:34:5c:ab:b1:4d:02:54:a8:bb:d0:4a:bd:
b6:ea:1e:00:58:ec:16:4b:59:25:70:bf:e6:ba:31:
ce:2b:cf:8e:7f:72:16:90:2a:a6:15:51:35:15:66:
71:cf:2f:2b:2b:9d:95:2e:1b:46:43:3f:0c:b2:59:
02:ee:0d:84:28:90:d1:f6:37:c1:f9:73:bd:25:e7:
66:41:0c:91:29:e9:55:f8:6e:7a:35:1d:5c:8d:64:
48:8c:50:d6:56:ce:2b:1f:d7:ae:1b:dc:9e:95:63:
65:7e:fe:bc:b8:bf:1c:a4:0c:26:96:51:4a:d7:6e:
62:ae:68:10:bf:ea:8f:58:06:63:df:bd:ac:e0:d0:
e4:94:ac:79:9a:d7:00:c0:3f:3a:10:79:67:62:ed:
88:7d:79:79:d6:23:dd:49:00:95:a5:23:7e:d6:26:
06:60:db:cb:a6:2e:db:de:5d:6e:19:a3:ad:88:47:
c5:f2:ca:8c:d8:ad:e0:17:65:1f:a3:cb:fd:50:40:
3a:5e:6b:e0:cc:a5:0b:53:3b:39:94:0b:85:98:75:
7a:4f:48:f8:f3:14:be:93:4d:2d:82:6f:a6:ac:30:
f6:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:A8:09:E8:72:7C:C8:45:F5:47:6C:0D:BF:CF:86:D2:E5:42:D2:68
X509v3 Authority Key Identifier:
keyid:AE:CD:64:C9:78:37:D7:BF:AC:06:63:7D:D9:52:BD:ED:E0:C2:5D:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rs1kyXg317-sBmN92VK97eDCXYU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/rs1kyXg317-sBmN92VK97eDCXYU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/rs1kyXg317-sBmN92VK97eDCXYU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:03:13:11:04:66:3e:e5:90:df:60:5c:be:93:07:21:5a:4e:
d8:e3:88:79:51:3d:36:a1:9e:65:9e:17:03:17:fd:95:94:40:
1c:3b:76:3e:9f:f4:bf:32:1f:64:18:1e:fc:68:17:f5:c9:21:
1a:65:10:b6:41:ee:f5:36:67:02:4f:35:b5:91:14:3f:32:89:
52:53:d4:27:3f:98:43:1c:2b:ee:82:5c:8c:30:3a:a0:a1:34:
83:ef:96:4d:62:5c:cc:af:5b:81:e5:32:2e:52:15:db:5c:25:
2d:bf:f2:a7:0d:78:12:ee:e9:ec:42:8b:7f:17:88:f7:bc:3f:
1d:1e:19:9d:31:7c:1a:ee:0e:e3:49:64:34:42:b9:8d:13:c9:
08:62:b0:ca:f1:4a:d3:38:69:8d:57:4b:dd:af:99:42:1e:4e:
b6:17:33:eb:d7:51:a6:28:8b:8b:b0:b4:de:66:18:20:6a:5e:
79:42:b8:3c:b1:5c:66:04:11:95:4d:b8:b5:31:6d:cd:64:84:
7d:99:de:c3:53:3d:96:e8:34:72:76:15:ce:c1:10:e4:df:d6:
27:6e:83:4e:04:df:c1:19:62:cb:77:2e:9c:38:43:25:7b:49:
23:bb:c5:06:95:45:07:4b:93:24:77:93:f4:80:99:c1:85:d6:
5f:15:5c:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:27:41 2025 by rpki-client