Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/a64b09-64df-470c-a64d-1f6991877b26/1/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.mft
File: S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.mft (raw, json)
Hash identifier: I5WPBkZw4AcUwA38BfHjbDjaAqjcz93eOCUZY5a947M=
Subject key identifier: 59:43:A8:EA:41:4F:62:0A:69:AE:37:99:4E:2B:AB:43:AE:9E:63:92
Authority key identifier: 4B:72:06:6D:7E:6C:A8:AD:2F:FA:62:A6:9B:06:79:23:A4:2D:F9:6F
Certificate issuer: /CN=4b72066d7e6ca8ad2ffa62a69b067923a42df96f
Certificate serial: 0199233148401031FB3A60B238795EEB82AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/a64b09-64df-470c-a64d-1f6991877b26/1/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.mft
Manifest number: 130C
Signing time: Sun 07 Sep 2025 08:00:56 +0000
Manifest this update: Sun 07 Sep 2025 08:00:56 +0000
Manifest next update: Mon 08 Sep 2025 08:00:56 +0000
Files and hashes: 1: 1D0kryG-hg5X4kNtLF0_L_6fbtc.roa (hash: Zop4UA3qvwcLs+PgF6ZAbdQWhdOq1xNbvhqjWudAWN0=)
2: S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.crl (hash: p2+jBd2Yoane4dzsZQRnRnU6aXEqtKKtnW+C/1XW7jw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/a64b09-64df-470c-a64d-1f6991877b26/1/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/a64b09-64df-470c-a64d-1f6991877b26/1/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.mft
rsync://rpki.ripe.net/repository/DEFAULT/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:31:48:40:10:31:fb:3a:60:b2:38:79:5e:eb:82:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b72066d7e6ca8ad2ffa62a69b067923a42df96f
Validity
Not Before: Sep 7 08:00:56 2025 GMT
Not After : Sep 8 08:00:56 2025 GMT
Subject: CN=5943a8ea414f620a69ae37994e2bab43ae9e6392
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:fb:ec:1a:3f:b5:87:af:cb:af:8e:60:33:27:
e2:50:60:74:38:d8:0e:d2:b4:92:10:7c:6d:0e:d3:
eb:02:d9:47:e2:1b:8d:49:f8:b5:93:76:c9:97:89:
66:e2:47:b0:0d:3f:1d:eb:9b:08:95:cf:df:ec:49:
93:e4:2c:c7:de:3e:aa:f7:30:c8:5f:cc:bb:18:23:
88:d5:64:af:39:ac:a3:e8:61:a3:9b:28:96:32:b0:
fc:a0:f1:01:76:f5:45:c3:d6:b0:72:d9:69:13:b5:
be:94:0f:13:f3:aa:6d:57:c2:cf:3e:38:95:41:56:
80:58:7d:c2:a0:92:0b:cf:55:7e:a8:fa:b1:58:47:
22:8e:8d:bd:88:8e:e7:d4:93:7d:08:8d:da:55:39:
52:6d:ce:f7:bc:fb:b3:db:22:58:c3:d1:56:f1:5d:
1c:89:dc:a4:48:b4:db:7a:b9:fe:1a:00:1d:07:a8:
1f:6f:f5:87:c9:eb:8a:24:c0:73:52:1c:b1:80:90:
ad:86:db:b4:a2:f5:fa:5c:fb:0f:c8:00:e3:c5:eb:
b1:28:35:52:b7:52:3b:e9:99:c9:bf:84:30:9a:69:
95:c8:f6:55:90:8f:2e:7f:7f:f9:b8:25:96:5b:46:
f4:a3:18:05:1a:60:63:a4:e7:07:bc:f0:cd:42:ee:
1a:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:43:A8:EA:41:4F:62:0A:69:AE:37:99:4E:2B:AB:43:AE:9E:63:92
X509v3 Authority Key Identifier:
keyid:4B:72:06:6D:7E:6C:A8:AD:2F:FA:62:A6:9B:06:79:23:A4:2D:F9:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/a64b09-64df-470c-a64d-1f6991877b26/1/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/a64b09-64df-470c-a64d-1f6991877b26/1/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:00:82:d9:d9:d0:50:06:fc:33:d8:35:75:a0:5a:a4:85:51:
6f:6f:95:fa:4a:0b:4c:17:30:94:dd:b3:91:8c:5d:ad:7b:18:
93:86:77:31:f8:cf:cc:68:ab:ae:bb:57:61:e6:fe:8b:4b:6b:
10:a0:df:76:44:99:c8:e6:c0:f6:0a:39:2e:75:de:0c:5a:b0:
b0:9e:46:03:d3:a5:b2:ff:87:cd:61:84:f8:0c:51:b8:51:6d:
ee:a6:cc:42:ce:e8:e5:87:6e:90:29:37:a4:81:c7:1e:c0:e7:
54:da:55:2e:3f:3c:72:c2:01:f5:8b:f9:65:cb:73:db:22:9e:
73:bf:71:ff:11:66:f5:84:bb:09:8f:b5:93:e2:ff:7b:51:a8:
04:fa:38:10:25:74:78:90:5d:d0:17:73:50:05:e6:89:42:72:
16:dc:c7:f8:b7:04:e8:8a:fb:a8:31:9f:40:2a:5c:49:6e:c1:
a3:ed:43:25:5a:9c:44:ba:33:bd:ee:cb:03:dc:89:3a:a7:4f:
61:30:e3:3a:04:1f:c2:80:90:08:7c:8d:06:1c:d2:c6:05:cc:
06:c7:3b:df:25:ba:06:22:f5:3d:8b:5c:f1:4f:c1:2b:80:32:
e7:21:56:ee:4c:8b:2a:fe:23:1a:6c:61:67:92:4a:92:a0:bd:
ca:25:9a:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:56:11 2025 by rpki-client