Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft
File: S1KaTSL67yMTXW7_iRImZiPEklU.mft (raw, json)
Hash identifier: LL9uT7J0QUYz5RE3STqJuFL34+Kt2O+kwe2F8KAURMc=
Subject key identifier: 23:F4:E7:11:B6:DB:B5:B3:52:7C:24:27:08:44:DF:0A:46:49:D0:FE
Authority key identifier: 4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55
Certificate issuer: /CN=4b529a4d22faef23135d6eff8912266623c49255
Certificate serial: 0198D5F147DEE5C884FA174B8C1DEB70CE34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft
Manifest number: 1667
Signing time: Sat 23 Aug 2025 08:00:16 +0000
Manifest this update: Sat 23 Aug 2025 08:00:16 +0000
Manifest next update: Sun 24 Aug 2025 08:00:16 +0000
Files and hashes: 1: 1-dpFpZ66BUopKTWddAy3aYd5Q58.roa (hash: a/nFyI+oVdi7douUuLnGlPqM2YOH9iXTA2Ltk7+EQUM=)
2: DL1hBwC058Ly5gbOYmTudqMnhLY.roa (hash: ZP95RnK2lnoKaBDaVLfKRWdtbqYZIJodq0FZ93fqmj4=)
3: S1KaTSL67yMTXW7_iRImZiPEklU.crl (hash: Q1QYSoryzC/QcMaZE7BO4/BRdFjn+Pxdjiwl/4wj8L8=)
4: TSdQZeiJv87sxq_OJ-PJSQE8GTQ.roa (hash: zeHI0YzPke/O83NDkRPiKpR8/sA4EMZWB7tgWAf8HNc=)
5: YG4GH2kbor4nZ_HdlU4bXsM_ISU.roa (hash: orPHPnq001m59xqGhWWhOTcNNv+UhgU5D7ZAydlYwJ0=)
6: _YciLAUMll_l6Ad-S-3jEr-WUP0.roa (hash: YLNVgwBOiutPhe7HbfVw0eYS7E9cfJJEs9zT8+FOZFI=)
7: ct-_W27EwoC0fOGDJoYPaUOCh1k.roa (hash: Ry7d3ypfHQ+1XBY6nTPep5IZIfXf1osPEMavue76/1w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft
rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:47:de:e5:c8:84:fa:17:4b:8c:1d:eb:70:ce:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b529a4d22faef23135d6eff8912266623c49255
Validity
Not Before: Aug 23 08:00:16 2025 GMT
Not After : Aug 24 08:00:16 2025 GMT
Subject: CN=23f4e711b6dbb5b3527c24270844df0a4649d0fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:0c:cc:aa:0a:66:35:e9:5b:24:17:84:bb:75:
ab:ca:e7:f9:6e:76:b1:05:49:93:d6:b1:63:d6:aa:
0f:02:39:05:19:b8:75:3c:3b:56:5b:c6:fd:6d:db:
4c:2e:07:c1:ba:e3:3d:19:44:dc:a5:29:2b:16:b4:
3d:6c:7f:9f:20:08:82:a2:f6:f8:43:9f:43:dd:9e:
14:04:ba:17:f9:3a:99:06:d3:1d:4c:7c:fe:10:74:
82:54:6d:6b:ee:89:dd:bb:1c:91:1b:5f:aa:9b:7f:
67:37:aa:b2:a4:37:3e:b9:77:96:c2:21:af:44:34:
28:12:51:7a:65:6b:a5:01:63:14:3c:a9:94:61:e6:
13:8e:e2:ef:4e:a2:07:c1:45:cc:fd:78:53:09:ad:
8a:41:ad:0e:44:46:f2:cd:1a:59:f9:97:0a:34:2f:
12:a6:07:8c:56:f6:ef:20:fd:22:cb:08:9d:89:a6:
6c:8a:9c:99:30:d7:f0:04:dc:bf:b6:b5:6b:4f:db:
39:49:a4:24:31:06:ad:9f:4c:e2:7b:3a:1f:2b:40:
b9:a3:51:cb:8c:d6:0c:40:e1:d3:42:dd:fe:08:43:
4e:4f:42:00:15:0e:9c:9c:05:d0:ec:e6:64:d3:cf:
9c:5b:ff:b4:b9:23:9d:3d:66:24:02:52:47:58:1c:
37:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:F4:E7:11:B6:DB:B5:B3:52:7C:24:27:08:44:DF:0A:46:49:D0:FE
X509v3 Authority Key Identifier:
keyid:4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:f8:24:20:e6:43:d4:3a:5a:48:b2:3f:0d:67:cc:94:77:a3:
de:08:53:c4:3b:4a:c0:9e:16:5e:5c:b1:eb:b2:a6:87:f9:06:
40:45:24:53:7d:55:db:f8:49:59:e3:c5:ba:f9:35:e5:61:75:
32:f3:40:95:c1:9a:16:3e:47:47:98:b1:97:07:53:9c:42:a2:
85:99:31:22:e5:d6:44:5f:13:28:d1:ee:bc:d2:ac:a4:b4:bd:
0f:f5:a7:7a:4b:c8:12:b9:f0:7a:45:37:2d:ee:7a:ce:3b:79:
af:e1:63:16:a2:a5:bc:c1:6a:c9:bc:4d:09:f5:94:71:c4:b1:
3b:e5:93:7e:3f:48:d1:14:35:32:a0:77:4b:50:e9:ee:05:fc:
a2:2d:b3:14:a8:e9:9c:67:f1:f3:65:89:09:1c:c8:d7:53:49:
c6:fb:6b:66:26:82:68:5a:d8:39:33:0b:a7:49:22:86:20:ee:
aa:05:a6:c5:6a:7c:29:79:96:7e:b0:9b:83:4e:45:ce:fd:ef:
21:96:0b:4b:c1:d4:22:25:11:02:57:f2:7b:76:d0:4c:3a:12:
18:02:8c:2a:84:fa:08:a2:56:04:ed:9a:2d:2d:dd:98:df:f3:
b7:d6:e1:3b:df:c6:79:30:72:dd:ad:f6:1a:79:2c:69:6f:8d:
8e:a3:51:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:52:09 2025 by rpki-client