Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/7c1b17-b7b5-4401-b0a7-974720889ffa/1/S5nNYSQguFk0kdhobOTEr4W5CtU.mft
File: S5nNYSQguFk0kdhobOTEr4W5CtU.mft (raw, json)
Hash identifier: aw5xcLALXo9JrnRfB0kmoA7PRpidNfvBbRPOadB7XAA=
Subject key identifier: 02:57:82:42:CC:D8:36:9B:C7:11:6C:51:B2:34:1C:1A:E3:9C:1C:1B
Authority key identifier: 4B:99:CD:61:24:20:B8:59:34:91:D8:68:6C:E4:C4:AF:85:B9:0A:D5
Certificate issuer: /CN=4b99cd612420b8593491d8686ce4c4af85b90ad5
Certificate serial: 019922FA893A1A380B494CB88B7C4B97C7C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S5nNYSQguFk0kdhobOTEr4W5CtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/7c1b17-b7b5-4401-b0a7-974720889ffa/1/S5nNYSQguFk0kdhobOTEr4W5CtU.mft
Manifest number: A2
Signing time: Sun 07 Sep 2025 07:01:08 +0000
Manifest this update: Sun 07 Sep 2025 07:01:08 +0000
Manifest next update: Mon 08 Sep 2025 07:01:08 +0000
Files and hashes: 1: 4qD1Oc9Rkwf3nkPKdA3PqgFhBVg.roa (hash: FAYdaSueDZBgvCYn8/TIySq6P0JIfXLy0IlKcRVzUNU=)
2: S5nNYSQguFk0kdhobOTEr4W5CtU.crl (hash: ymnQs2dw8F7Y29J5YnW6loim22hbDxLrEpgEGl9VX7M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/7c1b17-b7b5-4401-b0a7-974720889ffa/1/S5nNYSQguFk0kdhobOTEr4W5CtU.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/7c1b17-b7b5-4401-b0a7-974720889ffa/1/S5nNYSQguFk0kdhobOTEr4W5CtU.mft
rsync://rpki.ripe.net/repository/DEFAULT/S5nNYSQguFk0kdhobOTEr4W5CtU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:89:3a:1a:38:0b:49:4c:b8:8b:7c:4b:97:c7:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b99cd612420b8593491d8686ce4c4af85b90ad5
Validity
Not Before: Sep 7 07:01:08 2025 GMT
Not After : Sep 8 07:01:08 2025 GMT
Subject: CN=02578242ccd8369bc7116c51b2341c1ae39c1c1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:fd:fa:63:aa:fb:dd:cb:d5:ae:ef:18:5a:d2:
d8:49:de:f6:5c:13:38:d1:d0:55:53:20:86:0c:50:
91:af:57:0a:67:ac:45:b8:88:c7:16:0e:c9:ee:d5:
d5:d6:a5:08:6e:50:05:55:ef:23:05:84:ff:23:2e:
f9:91:fb:47:94:b8:0f:e4:3d:ef:34:8e:19:1f:e2:
04:f9:c7:5f:3c:20:5b:13:c5:06:bf:fe:cb:20:b7:
ef:ce:41:2d:93:3c:d8:8b:4d:33:b1:33:a1:b4:bc:
dd:b0:6e:a3:26:a1:5d:1d:00:61:1f:48:7e:b1:a2:
94:1c:fd:26:b1:09:89:4f:2d:02:f8:49:eb:5b:ec:
97:b4:7e:05:a4:30:79:8c:eb:80:9c:4c:87:f0:92:
0e:40:a6:3d:af:d2:2c:ad:56:ab:5b:2d:b5:91:71:
43:a8:67:fc:a1:93:86:cc:e0:61:61:e7:46:3b:93:
e4:16:ae:42:54:d2:2c:85:ab:b9:ca:65:5e:c6:07:
76:26:34:89:00:4f:76:2d:cd:c0:1f:31:28:7c:03:
63:1d:88:10:52:a7:87:29:88:76:44:95:fd:4c:72:
fe:b7:54:3c:cf:bd:9b:46:d5:e3:13:0f:e1:a8:9b:
36:0a:6f:22:47:d8:29:6d:0d:12:ad:91:91:de:57:
2b:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:57:82:42:CC:D8:36:9B:C7:11:6C:51:B2:34:1C:1A:E3:9C:1C:1B
X509v3 Authority Key Identifier:
keyid:4B:99:CD:61:24:20:B8:59:34:91:D8:68:6C:E4:C4:AF:85:B9:0A:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S5nNYSQguFk0kdhobOTEr4W5CtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/7c1b17-b7b5-4401-b0a7-974720889ffa/1/S5nNYSQguFk0kdhobOTEr4W5CtU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/7c1b17-b7b5-4401-b0a7-974720889ffa/1/S5nNYSQguFk0kdhobOTEr4W5CtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:59:46:b9:9a:5f:ca:c4:01:58:15:fb:a8:b6:8b:1a:75:d8:
c2:ee:19:fd:a0:45:d5:f3:ea:31:5a:0b:73:26:6f:9a:da:ab:
35:cc:69:ba:a8:b6:5b:0a:d1:51:84:17:08:8b:7e:8b:ab:66:
f9:c4:07:9d:5d:7e:b6:d4:8a:38:25:d0:e6:0c:a3:48:38:c0:
53:4b:83:e1:50:34:fd:fc:e2:1d:fa:56:20:51:5d:dd:41:d7:
ca:83:50:75:52:88:ae:18:2e:4c:8d:be:c8:d4:32:52:8f:71:
85:66:e3:1d:b6:15:71:b9:05:6d:40:2a:2d:99:7b:fb:ba:11:
fc:f2:50:fa:2e:2a:5f:88:bf:61:bd:c2:6d:2d:fa:ba:62:80:
3e:41:d0:ae:f7:22:a0:58:de:af:31:d8:00:a8:80:ef:5b:1e:
76:84:9a:05:e5:ac:5f:9d:5a:cd:83:cc:15:dc:1a:c0:7b:74:
64:d5:03:3c:2c:b0:68:1b:a2:84:6f:14:cc:b5:56:1b:53:44:
77:38:e7:8c:01:6c:31:55:48:a1:b6:ec:d6:e2:68:17:be:41:
64:75:0f:0d:62:1d:71:d0:33:5e:d4:fe:3c:fc:7a:de:0e:ed:
31:90:59:a7:9e:7d:fc:08:a9:9e:15:0e:ef:71:dd:d1:97:a8:
22:2e:af:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:07:30 2025 by rpki-client