Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/3b2bfd-60eb-4cbf-9f7f-136257e3076e/1/S_xaKUEPH_z03ipacFj1FiCzC3k.mft
File: S_xaKUEPH_z03ipacFj1FiCzC3k.mft (raw, json)
Hash identifier: nSKUV954ocjS8HS5gk6K9pqMJ/edx/WYVAEgKsUqXI0=
Subject key identifier: 4D:30:39:63:B3:59:F6:1D:13:2F:51:7D:75:2B:0A:67:59:A8:96:79
Authority key identifier: 4B:FC:5A:29:41:0F:1F:FC:F4:DE:2A:5A:70:58:F5:16:20:B3:0B:79
Certificate issuer: /CN=4bfc5a29410f1ffcf4de2a5a7058f51620b30b79
Certificate serial: 0198469B3BF41A56ADAD15C6BBBBDE136D51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S_xaKUEPH_z03ipacFj1FiCzC3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/3b2bfd-60eb-4cbf-9f7f-136257e3076e/1/S_xaKUEPH_z03ipacFj1FiCzC3k.mft
Manifest number: 0DB2
Signing time: Sat 26 Jul 2025 12:00:35 +0000
Manifest this update: Sat 26 Jul 2025 12:00:35 +0000
Manifest next update: Sun 27 Jul 2025 12:00:35 +0000
Files and hashes: 1: S_xaKUEPH_z03ipacFj1FiCzC3k.crl (hash: JKBefPpa1UUlLF4V0Eok1upLbBlP3NJzZAxihky/9Mo=)
2: bgx026u65bEUIofoNprJyhzn_S4.roa (hash: mkA02/DFrwmq5MSNIOugSkJaE1Y0Xy5Utto0dixWmsQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/3b2bfd-60eb-4cbf-9f7f-136257e3076e/1/S_xaKUEPH_z03ipacFj1FiCzC3k.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/3b2bfd-60eb-4cbf-9f7f-136257e3076e/1/S_xaKUEPH_z03ipacFj1FiCzC3k.mft
rsync://rpki.ripe.net/repository/DEFAULT/S_xaKUEPH_z03ipacFj1FiCzC3k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 11:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:46:9b:3b:f4:1a:56:ad:ad:15:c6:bb:bb:de:13:6d:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4bfc5a29410f1ffcf4de2a5a7058f51620b30b79
Validity
Not Before: Jul 26 12:00:35 2025 GMT
Not After : Jul 27 12:00:35 2025 GMT
Subject: CN=4d303963b359f61d132f517d752b0a6759a89679
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:2b:da:7c:9d:f8:fa:23:22:55:1c:16:d8:fd:
b6:63:87:f0:14:45:ae:e8:fe:16:f6:e6:fd:7e:52:
83:26:37:de:b1:8b:12:53:70:f5:ab:45:a6:93:44:
34:99:04:54:31:f2:f4:dc:6b:a3:7b:e1:1f:89:a6:
f6:0a:aa:49:95:c9:65:8c:59:ed:b1:31:79:20:18:
89:73:4d:24:29:93:c6:3e:d2:9d:91:64:a9:50:9c:
8b:a8:80:a3:5c:81:6d:93:07:d6:1b:31:ed:7d:30:
7c:d9:17:54:f7:3d:7e:d7:35:7f:86:eb:0b:ca:a5:
82:78:9d:a5:97:95:bb:66:9f:7e:ec:b0:3c:bf:7e:
0f:7e:5c:fe:f6:b3:9e:4e:e6:69:d4:74:61:25:bb:
8b:b9:1f:c4:2e:8a:a8:d1:97:6e:eb:17:72:2e:b3:
4b:34:22:52:6b:21:ca:d5:8e:61:ee:b2:6d:e9:d9:
ea:b9:9a:28:1b:82:a7:95:3f:3e:26:6c:b3:d4:27:
4e:cf:b1:78:13:34:6f:ae:02:6d:a5:83:ba:5c:2c:
c0:e6:2c:ac:77:84:2f:3c:81:42:f3:c2:83:9b:50:
5f:c5:49:04:84:fb:1f:5d:f3:5d:40:54:09:39:1a:
22:8e:4a:49:55:01:4a:f8:fe:4d:4e:31:1d:17:04:
4b:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:30:39:63:B3:59:F6:1D:13:2F:51:7D:75:2B:0A:67:59:A8:96:79
X509v3 Authority Key Identifier:
keyid:4B:FC:5A:29:41:0F:1F:FC:F4:DE:2A:5A:70:58:F5:16:20:B3:0B:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S_xaKUEPH_z03ipacFj1FiCzC3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/3b2bfd-60eb-4cbf-9f7f-136257e3076e/1/S_xaKUEPH_z03ipacFj1FiCzC3k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/3b2bfd-60eb-4cbf-9f7f-136257e3076e/1/S_xaKUEPH_z03ipacFj1FiCzC3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:42:b6:0c:5c:f3:25:c3:12:9b:bb:08:3d:e6:e5:dd:21:88:
91:d1:0f:9c:14:4a:01:da:3b:32:2d:d1:44:0d:81:53:10:fd:
08:21:a2:91:7f:7c:6b:08:eb:0e:8d:e1:cf:39:ec:c0:be:73:
16:d9:67:4e:ba:11:24:a8:5f:15:4d:03:3f:7d:c6:ce:37:bf:
cd:31:a5:6b:92:d7:41:d5:2b:73:d9:a8:44:b3:03:d6:83:1e:
b7:9e:48:3d:f3:92:49:83:c1:ae:d6:36:3b:54:81:c6:99:dd:
02:14:ba:40:b6:87:f1:9c:fa:76:3a:53:39:e8:a2:ab:fa:e5:
ab:c0:79:a6:b6:40:33:86:a6:a9:e8:bf:e9:56:5b:b3:fb:21:
f6:85:e6:60:24:fb:05:90:a0:9b:6a:fb:b7:85:4b:14:2d:3f:
68:7c:74:d4:bf:bc:b9:5a:c8:8b:c1:8c:b5:a7:85:89:8e:fa:
6f:85:33:09:b7:e7:34:bd:64:b4:dd:cf:03:72:e1:ab:f4:60:
cb:eb:4a:c0:8c:a6:46:a2:ab:6a:57:fb:9e:05:89:78:b2:19:
3e:f5:43:66:05:20:c9:1f:91:c9:6e:9f:79:db:4c:86:39:40:
f6:ed:8f:12:28:b1:27:85:64:bf:7e:15:73:f5:2a:4f:4d:0c:
ed:35:35:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 20:48:32 2025 by rpki-client