Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft
File: S1KaTSL67yMTXW7_iRImZiPEklU.mft (raw, json)
Hash identifier: vyaz2mowM5STW0W+l1+FxKeDIegsWFHCrFk7rxCwsiw=
Subject key identifier: DA:AF:C8:A2:24:42:7E:7E:83:15:F8:40:E9:24:57:13:8C:77:40:48
Authority key identifier: 4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55
Certificate issuer: /CN=4b529a4d22faef23135d6eff8912266623c49255
Certificate serial: 0199FB7CDA5847637711A5A8E99E8EB7DD2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft
Manifest number: 16FF
Signing time: Sun 19 Oct 2025 08:01:27 +0000
Manifest this update: Sun 19 Oct 2025 08:01:27 +0000
Manifest next update: Mon 20 Oct 2025 08:01:27 +0000
Files and hashes: 1: 1-dpFpZ66BUopKTWddAy3aYd5Q58.roa (hash: a/nFyI+oVdi7douUuLnGlPqM2YOH9iXTA2Ltk7+EQUM=)
2: DL1hBwC058Ly5gbOYmTudqMnhLY.roa (hash: ZP95RnK2lnoKaBDaVLfKRWdtbqYZIJodq0FZ93fqmj4=)
3: S1KaTSL67yMTXW7_iRImZiPEklU.crl (hash: RlrfSbv5Nh+2AkQtshTrZokTVo8DGlCqcQMQVIeJ8dM=)
4: TSdQZeiJv87sxq_OJ-PJSQE8GTQ.roa (hash: zeHI0YzPke/O83NDkRPiKpR8/sA4EMZWB7tgWAf8HNc=)
5: YG4GH2kbor4nZ_HdlU4bXsM_ISU.roa (hash: orPHPnq001m59xqGhWWhOTcNNv+UhgU5D7ZAydlYwJ0=)
6: _YciLAUMll_l6Ad-S-3jEr-WUP0.roa (hash: YLNVgwBOiutPhe7HbfVw0eYS7E9cfJJEs9zT8+FOZFI=)
7: ct-_W27EwoC0fOGDJoYPaUOCh1k.roa (hash: Ry7d3ypfHQ+1XBY6nTPep5IZIfXf1osPEMavue76/1w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft
rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 08:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:da:58:47:63:77:11:a5:a8:e9:9e:8e:b7:dd:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b529a4d22faef23135d6eff8912266623c49255
Validity
Not Before: Oct 19 08:01:27 2025 GMT
Not After : Oct 20 08:01:27 2025 GMT
Subject: CN=daafc8a224427e7e8315f840e92457138c774048
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:8a:23:c4:34:8d:25:2a:77:dd:ec:de:a2:c2:
ea:f9:aa:bd:f6:e8:0f:8a:bf:cc:7e:e9:66:94:4b:
23:5c:42:6d:f3:ff:3e:ca:56:d8:4b:d4:8d:da:21:
b5:d2:e6:5a:c3:6a:e8:60:2c:0d:13:d4:1a:ab:7a:
f1:b3:01:bc:95:fd:d8:ec:97:df:8a:a4:a1:e1:58:
67:f4:71:d8:49:e4:21:17:b5:f9:d0:3f:ba:27:6b:
ce:0b:b2:cd:31:df:ef:ea:3a:4a:23:c7:3a:91:e4:
5b:e3:f7:77:4b:c4:39:73:2b:af:51:bf:82:f0:bd:
0a:fe:a0:dc:23:f3:54:28:67:d0:5d:25:09:6c:c6:
3d:9b:e3:72:97:e4:86:f5:a2:87:1e:b6:33:d2:ab:
97:6f:de:75:60:71:fe:39:ff:2c:7f:a2:75:09:ce:
11:5a:15:8f:7b:73:7a:3b:ee:50:6d:ed:7b:a9:cd:
16:6f:81:3e:91:4a:19:d3:53:02:94:42:2d:b4:fd:
cd:d1:8d:97:42:b7:ac:97:9c:5f:49:e1:26:02:ee:
f3:d8:1d:70:ee:46:20:ec:95:b6:89:ad:07:c9:30:
9a:96:77:6e:ae:53:cb:02:f3:fe:d8:54:46:29:6e:
cf:1a:2f:6c:ee:1c:1b:2e:a6:2e:6f:ba:ce:b1:69:
6a:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:AF:C8:A2:24:42:7E:7E:83:15:F8:40:E9:24:57:13:8C:77:40:48
X509v3 Authority Key Identifier:
keyid:4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:42:57:33:84:4f:7b:e0:02:4d:ff:d0:a8:93:ba:c0:7b:a3:
87:5f:64:9f:e9:7d:0f:7b:35:2a:4d:09:18:30:20:6f:36:22:
bf:14:0d:1f:07:b9:23:b5:4c:18:d6:2c:36:1e:cb:e6:9c:f0:
02:14:89:4d:c7:21:d2:24:6f:ff:a5:e7:fa:2d:15:9a:66:81:
ab:3c:47:21:b0:7a:41:23:4a:cc:f2:e1:e8:e1:b9:6f:89:81:
c4:4a:2a:32:94:53:45:96:69:19:12:46:56:99:b9:61:5a:a1:
bd:2e:76:14:b8:d6:e2:69:fc:b0:4e:e6:a7:72:cd:dd:79:cf:
f7:a9:51:de:79:09:e3:09:8f:ad:a8:f8:b4:9b:f8:92:50:2a:
a0:50:63:5c:fb:4a:93:e7:4b:e6:32:a1:cc:1c:90:69:11:67:
67:20:2c:ac:c8:1f:fd:79:1b:e0:7f:f1:e8:a0:6b:1f:af:e7:
2f:36:71:b6:b1:52:de:95:01:8f:99:2b:f3:e7:9f:ea:88:b3:
23:9c:2b:4f:e8:3c:07:cb:6d:0b:b0:2c:f7:34:c6:fb:a0:12:
66:fe:bf:0e:18:9b:0c:3a:f9:c2:b1:c3:ac:5e:41:5f:3b:d7:
1c:10:63:f7:64:02:f1:7e:dc:62:8c:07:d4:1f:ef:e2:ee:00:
93:3c:5c:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:26:06 2025 by rpki-client