Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/f21ee0-d730-45db-97bd-c34be03c15db/1/S5o7nhAjIJXBjSZERAzlxYoTizU.mft
File: S5o7nhAjIJXBjSZERAzlxYoTizU.mft (raw, json)
Hash identifier: lfhxvPaq+cpy2S614x5rJ5qifBNkhEZzzOC3cURiOHs=
Subject key identifier: A3:04:65:CC:12:23:EB:5F:84:3B:99:C7:95:81:B9:79:13:ED:BA:6E
Authority key identifier: 4B:9A:3B:9E:10:23:20:95:C1:8D:26:44:44:0C:E5:C5:8A:13:8B:35
Certificate issuer: /CN=4b9a3b9e10232095c18d2644440ce5c58a138b35
Certificate serial: 019922C3251EDF20974D429AE711C10F29B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S5o7nhAjIJXBjSZERAzlxYoTizU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/f21ee0-d730-45db-97bd-c34be03c15db/1/S5o7nhAjIJXBjSZERAzlxYoTizU.mft
Manifest number: 0E09
Signing time: Sun 07 Sep 2025 06:00:38 +0000
Manifest this update: Sun 07 Sep 2025 06:00:38 +0000
Manifest next update: Mon 08 Sep 2025 06:00:38 +0000
Files and hashes: 1: AGFXaqT3BvJjfsfWKc-WZgyT260.roa (hash: otB7RONJ2iX79r/3n1UHcffodGPsIg2+hKNGewXNd5g=)
2: S5o7nhAjIJXBjSZERAzlxYoTizU.crl (hash: 0Fr2gbntNr+mh/gh9JaklXbcZ/lI27l5c5pzp76sayo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/f21ee0-d730-45db-97bd-c34be03c15db/1/S5o7nhAjIJXBjSZERAzlxYoTizU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/f21ee0-d730-45db-97bd-c34be03c15db/1/S5o7nhAjIJXBjSZERAzlxYoTizU.mft
rsync://rpki.ripe.net/repository/DEFAULT/S5o7nhAjIJXBjSZERAzlxYoTizU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 06:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:25:1e:df:20:97:4d:42:9a:e7:11:c1:0f:29:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b9a3b9e10232095c18d2644440ce5c58a138b35
Validity
Not Before: Sep 7 06:00:38 2025 GMT
Not After : Sep 8 06:00:38 2025 GMT
Subject: CN=a30465cc1223eb5f843b99c79581b97913edba6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:c1:93:70:7c:78:8c:4e:94:2e:98:0d:27:d4:
44:2b:c7:4c:df:f9:93:16:71:4e:f7:74:88:f2:ea:
66:e8:53:8d:ab:9d:ae:10:3c:8e:1d:f0:4a:de:6e:
fc:4f:bb:6d:60:ac:06:5a:02:ff:3b:38:22:0f:e1:
67:f7:60:04:8b:f1:f5:16:b7:98:6c:07:02:dc:d0:
1a:6f:2a:a7:20:24:5b:18:59:d9:4e:1f:c9:90:58:
9a:10:34:ff:ef:88:6b:95:df:29:62:8f:ff:d5:6f:
c7:85:78:65:f6:e4:35:a9:fd:95:0c:64:79:59:90:
be:88:6d:d9:2b:38:5e:79:02:d1:c6:53:0f:16:37:
c1:d6:f7:6d:e2:98:a5:36:fb:61:db:8d:74:6b:e4:
9b:20:44:b6:49:31:eb:ec:27:c7:e3:a4:5f:57:b5:
90:62:5b:e6:24:b4:be:70:64:bd:3e:c0:2b:5f:7a:
fc:0e:7a:b0:b0:04:80:35:df:c3:a7:a8:87:ee:f5:
03:9f:27:9f:ee:76:1d:03:85:f5:3f:c8:66:84:ac:
d0:e7:73:6c:a8:25:6c:5d:87:95:12:9e:b7:46:c9:
e8:03:f8:a7:fd:2f:cb:fb:3c:ce:29:28:1f:f1:49:
77:fe:98:2d:ed:12:d0:6e:1f:2e:4e:c3:7e:bd:31:
42:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:04:65:CC:12:23:EB:5F:84:3B:99:C7:95:81:B9:79:13:ED:BA:6E
X509v3 Authority Key Identifier:
keyid:4B:9A:3B:9E:10:23:20:95:C1:8D:26:44:44:0C:E5:C5:8A:13:8B:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S5o7nhAjIJXBjSZERAzlxYoTizU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f21ee0-d730-45db-97bd-c34be03c15db/1/S5o7nhAjIJXBjSZERAzlxYoTizU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f21ee0-d730-45db-97bd-c34be03c15db/1/S5o7nhAjIJXBjSZERAzlxYoTizU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:33:75:f2:79:26:4d:de:8e:c5:90:26:ec:a5:0f:67:2a:f2:
18:02:58:e8:d8:32:4a:b6:07:57:85:be:03:6f:2e:eb:a6:ae:
55:26:1e:74:db:3b:f0:d3:cf:41:22:b0:31:83:25:76:c7:dd:
57:c2:52:e2:54:3f:62:fc:2a:8c:3f:cb:9d:f8:a1:4a:56:56:
42:45:13:60:24:b4:c9:ca:33:97:8a:c6:fe:09:09:2c:10:b7:
a0:e9:46:3a:c1:fe:21:e2:96:ad:45:8f:f0:25:cb:72:e4:5f:
e0:9a:cd:eb:06:17:bb:68:2a:2e:3d:c3:68:52:2d:7b:29:d0:
53:dc:32:1f:59:0a:cb:fc:16:1a:93:dd:82:d5:64:50:9e:3d:
6e:cb:51:d7:76:42:5a:9c:2e:b0:37:b7:8b:01:12:72:9c:ed:
20:78:82:d4:89:47:23:c3:fb:b9:9a:8d:18:61:a4:57:1e:11:
29:b0:d8:80:69:25:78:13:f9:cc:1a:dc:65:a0:be:ea:a4:f6:
13:d0:12:c5:f7:dd:6c:6c:3f:b6:b0:ed:c1:11:e5:5a:37:98:
8f:7f:fa:5c:cc:2c:f9:26:ea:6c:f6:cf:41:8a:66:9a:c2:d3:
7f:09:a4:0e:2e:de:dc:d3:f5:29:1d:45:f1:19:8d:f8:c5:3f:
af:48:e2:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:08:20 2025 by rpki-client