Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft
File: S1KaTSL67yMTXW7_iRImZiPEklU.mft (raw, json)
Hash identifier: w5uUZ9ViWMPua2mQeDPUQi7H5ik6oEWjrGlV5Ky62GU=
Subject key identifier: 02:DA:4B:92:06:98:FF:BF:26:81:FD:F0:5C:DE:68:0F:18:C5:EC:39
Authority key identifier: 4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55
Certificate issuer: /CN=4b529a4d22faef23135d6eff8912266623c49255
Certificate serial: 019A48BB4F3A3FE60722EA12EC6A24101A24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft
Manifest number: 1727
Signing time: Mon 03 Nov 2025 08:00:26 +0000
Manifest this update: Mon 03 Nov 2025 08:00:26 +0000
Manifest next update: Tue 04 Nov 2025 08:00:26 +0000
Files and hashes: 1: 1-dpFpZ66BUopKTWddAy3aYd5Q58.roa (hash: a/nFyI+oVdi7douUuLnGlPqM2YOH9iXTA2Ltk7+EQUM=)
2: DL1hBwC058Ly5gbOYmTudqMnhLY.roa (hash: ZP95RnK2lnoKaBDaVLfKRWdtbqYZIJodq0FZ93fqmj4=)
3: S1KaTSL67yMTXW7_iRImZiPEklU.crl (hash: KSEQR7W6Qo+IpbjIgvVmBP89MeMwT6R7H23EPqUowY4=)
4: TSdQZeiJv87sxq_OJ-PJSQE8GTQ.roa (hash: zeHI0YzPke/O83NDkRPiKpR8/sA4EMZWB7tgWAf8HNc=)
5: YG4GH2kbor4nZ_HdlU4bXsM_ISU.roa (hash: orPHPnq001m59xqGhWWhOTcNNv+UhgU5D7ZAydlYwJ0=)
6: _YciLAUMll_l6Ad-S-3jEr-WUP0.roa (hash: YLNVgwBOiutPhe7HbfVw0eYS7E9cfJJEs9zT8+FOZFI=)
7: ct-_W27EwoC0fOGDJoYPaUOCh1k.roa (hash: Ry7d3ypfHQ+1XBY6nTPep5IZIfXf1osPEMavue76/1w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft
rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 04 Nov 2025 08:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:48:bb:4f:3a:3f:e6:07:22:ea:12:ec:6a:24:10:1a:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b529a4d22faef23135d6eff8912266623c49255
Validity
Not Before: Nov 3 08:00:26 2025 GMT
Not After : Nov 4 08:00:26 2025 GMT
Subject: CN=02da4b920698ffbf2681fdf05cde680f18c5ec39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:f7:b4:99:38:08:a9:df:df:88:f7:59:4b:aa:
1c:34:88:6b:59:01:e0:ab:2d:7e:46:45:43:97:93:
c6:2d:7c:1f:6f:8a:7f:16:75:3b:b9:45:ac:74:3e:
fa:df:c8:5e:ee:74:b2:9c:1c:28:f3:38:b4:a7:b2:
0a:ee:b7:de:72:6f:45:f8:c5:87:b0:d3:db:12:9a:
3c:c6:31:16:79:d1:52:97:26:60:f5:38:31:98:70:
fe:07:74:4a:76:bd:d4:12:e4:22:34:c6:b1:2f:8d:
c5:81:36:f7:f6:ad:7a:7e:09:49:20:bd:66:bc:20:
41:a4:48:c5:4a:8e:a6:90:cd:6c:e3:22:5e:0d:52:
fb:97:58:42:f4:e3:4e:d7:35:df:13:fc:4f:da:31:
4e:a1:52:ab:89:e4:b9:06:77:46:64:18:2b:b7:75:
28:57:9c:d9:4d:e5:a5:49:4a:5a:49:03:bb:15:22:
d4:20:ed:3b:b2:43:39:69:9e:b2:c3:b9:41:12:58:
0f:13:64:ef:85:74:08:2e:fb:e3:73:22:98:e1:d2:
b4:4e:38:b4:f2:b1:32:d4:f0:d2:5f:ae:a2:77:44:
ee:d3:01:9d:ec:07:9e:31:6d:f9:a4:99:af:4f:b3:
6c:24:6e:f8:62:c2:f6:f6:8a:00:42:3e:90:eb:85:
39:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:DA:4B:92:06:98:FF:BF:26:81:FD:F0:5C:DE:68:0F:18:C5:EC:39
X509v3 Authority Key Identifier:
keyid:4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:0f:a5:3a:a5:85:33:7a:8c:82:3d:a2:be:52:1f:dd:de:b0:
fa:51:e1:0d:93:df:f4:1d:33:58:3a:1c:d4:49:61:3b:59:f9:
b1:af:56:f0:7a:7e:36:9e:3e:d6:18:ca:00:9c:db:04:c4:7e:
af:35:bb:fb:ed:f3:f8:4f:9d:48:a8:4a:7b:8e:11:c8:f4:a4:
2c:b5:ab:f4:4c:2e:a3:b1:ee:01:2c:ca:ba:d3:56:d2:0e:38:
dd:c1:d8:30:bf:ec:46:f2:f4:38:c0:c5:df:51:f2:66:7f:3e:
99:4f:98:93:0f:13:c7:4a:2e:2b:62:79:51:c5:1a:74:38:1b:
56:e5:20:eb:47:34:b5:c1:bf:39:0f:cb:f4:a3:fe:4f:61:03:
f1:fb:1e:e3:b2:50:25:63:b4:93:fa:0e:2b:c2:11:e9:ae:e2:
d5:d3:63:ac:6e:0b:41:6c:b0:52:0d:5e:dd:eb:b0:e8:af:25:
f4:59:e3:94:60:41:17:ae:d7:3e:ba:f0:a1:f4:4f:e6:55:14:
53:e7:65:c2:1a:b8:72:bb:a7:a7:ba:cf:1e:d3:66:d2:ff:de:
d5:ea:b5:46:31:98:7b:1c:a8:cc:f5:cd:2f:bd:04:1e:1b:0a:
3d:01:fe:0d:d7:73:7b:07:cb:75:ee:c8:f6:c9:dd:0b:73:29:
d1:ca:32:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 3 17:51:45 2025 by rpki-client