Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft
File: S1KaTSL67yMTXW7_iRImZiPEklU.mft (raw, json)
Hash identifier: XgqkVR+022kGaDdVvYET73Mp1tJ7iTRPPXgPryTFb3o=
Subject key identifier: 06:D0:C5:1E:AA:BC:2E:E1:23:D7:33:87:0F:A0:72:8A:1F:A6:B6:D6
Authority key identifier: 4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55
Certificate issuer: /CN=4b529a4d22faef23135d6eff8912266623c49255
Certificate serial: 0197B632BBDA11E9BCC0870DE89FDC3936AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft
Manifest number: 15D2
Signing time: Sat 28 Jun 2025 11:01:07 +0000
Manifest this update: Sat 28 Jun 2025 11:01:07 +0000
Manifest next update: Sun 29 Jun 2025 11:01:07 +0000
Files and hashes: 1: 1-dpFpZ66BUopKTWddAy3aYd5Q58.roa (hash: a/nFyI+oVdi7douUuLnGlPqM2YOH9iXTA2Ltk7+EQUM=)
2: DL1hBwC058Ly5gbOYmTudqMnhLY.roa (hash: ZP95RnK2lnoKaBDaVLfKRWdtbqYZIJodq0FZ93fqmj4=)
3: S1KaTSL67yMTXW7_iRImZiPEklU.crl (hash: p0TWdMuisnCxng8yTCHXjgXhexv8rOwORsk22GJPDxg=)
4: TSdQZeiJv87sxq_OJ-PJSQE8GTQ.roa (hash: zeHI0YzPke/O83NDkRPiKpR8/sA4EMZWB7tgWAf8HNc=)
5: YG4GH2kbor4nZ_HdlU4bXsM_ISU.roa (hash: orPHPnq001m59xqGhWWhOTcNNv+UhgU5D7ZAydlYwJ0=)
6: _YciLAUMll_l6Ad-S-3jEr-WUP0.roa (hash: YLNVgwBOiutPhe7HbfVw0eYS7E9cfJJEs9zT8+FOZFI=)
7: ct-_W27EwoC0fOGDJoYPaUOCh1k.roa (hash: Ry7d3ypfHQ+1XBY6nTPep5IZIfXf1osPEMavue76/1w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft
rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:32:bb:da:11:e9:bc:c0:87:0d:e8:9f:dc:39:36:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b529a4d22faef23135d6eff8912266623c49255
Validity
Not Before: Jun 28 11:01:07 2025 GMT
Not After : Jun 29 11:01:07 2025 GMT
Subject: CN=06d0c51eaabc2ee123d733870fa0728a1fa6b6d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:74:6b:99:8a:bd:6b:c6:60:bb:52:bc:dc:b0:
8f:15:8f:e2:25:c2:7f:a2:b8:a8:a7:30:43:97:1f:
f6:ad:fa:75:92:30:b7:d0:88:50:52:51:f3:4a:e9:
26:90:93:3a:14:e8:1e:e3:95:7c:d1:ca:32:10:e3:
25:e1:d4:fa:6e:f0:4f:1c:ee:e9:cd:0e:1c:d7:b2:
41:13:e6:f9:45:a8:8c:07:aa:4d:aa:75:74:71:98:
b4:eb:35:71:56:3e:7b:39:90:c6:38:81:a8:3e:be:
c6:cb:02:c3:b9:d8:ec:d8:5f:3d:d1:c0:04:c8:57:
4c:5c:de:15:c2:d1:c5:92:47:64:8e:ae:c9:77:9b:
27:43:d9:3c:2c:a6:1e:d8:25:4e:91:71:c9:04:43:
f6:a5:a7:de:74:b1:65:37:18:09:8a:55:a5:2a:0f:
bf:3c:bd:0e:91:41:fa:52:ab:81:7b:9d:1e:05:f7:
6f:10:96:84:c4:ac:19:fe:44:e7:8a:78:29:bb:10:
cf:dc:d6:1d:a6:1c:aa:5d:c5:56:9a:c0:aa:e2:0a:
53:b9:5d:60:4b:54:90:a4:e0:f7:7e:cc:fe:69:f0:
69:0e:35:c3:04:15:e7:40:30:c0:a1:5b:71:dd:a9:
c1:f7:5d:3b:02:d0:61:db:30:c8:cb:50:93:7c:4d:
67:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:D0:C5:1E:AA:BC:2E:E1:23:D7:33:87:0F:A0:72:8A:1F:A6:B6:D6
X509v3 Authority Key Identifier:
keyid:4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:8f:ed:d3:fd:5c:cb:02:ec:86:a9:8d:73:ae:ab:74:2c:f0:
4b:11:16:36:ca:0a:a0:37:64:25:f3:f8:13:e2:65:9f:51:61:
4a:0b:82:c9:ae:38:eb:85:f7:4f:eb:be:e3:56:33:d5:8e:e3:
55:a7:fc:87:20:08:84:1c:ab:fc:74:50:c2:35:11:0d:6c:cf:
4a:70:a3:a8:68:1a:a0:30:f6:25:d9:ef:8e:7a:5c:f8:e3:88:
f1:b5:0b:a0:50:02:3b:76:cb:f6:88:a2:4c:18:b0:33:3a:7b:
8a:17:fd:1f:92:32:f4:56:4d:99:3a:b1:bb:93:e1:ad:8d:ba:
dc:9c:f4:e8:2d:1f:78:17:fd:07:1d:86:ed:ee:53:f0:9e:b5:
a9:85:a2:7f:82:7e:e7:8f:ce:e5:f3:07:84:21:46:93:b0:a1:
61:3d:7b:c6:8f:75:c5:35:a9:76:35:eb:54:b0:87:e0:c0:58:
5c:10:31:4b:68:cc:52:3c:10:40:00:3d:64:23:b4:2c:04:34:
2f:30:e9:08:18:88:6b:78:c4:40:ed:29:e0:f2:89:25:8f:0c:
87:5d:95:93:48:88:18:a9:38:04:52:f5:bb:d0:84:53:7f:1a:
2a:d3:af:d2:31:39:5f:24:d9:c8:47:15:ad:72:4a:c5:dd:27:
86:7a:5f:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:13:04 2025 by rpki-client