Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/ccaa1a-9daa-44b8-9e26-87f341888560/1/syHLgokI9DB0nuOl8qYt5fgi99E.mft
File: syHLgokI9DB0nuOl8qYt5fgi99E.mft (raw, json)
Hash identifier: CnJuAvvX9mnPB1hehy/0MePYAXm2/WQGyrFRXsTTH5g=
Subject key identifier: C3:B6:A3:EF:E5:C8:0F:CE:49:DC:8B:94:F5:1B:51:2F:C2:AC:D5:36
Authority key identifier: B3:21:CB:82:89:08:F4:30:74:9E:E3:A5:F2:A6:2D:E5:F8:22:F7:D1
Certificate issuer: /CN=b321cb828908f430749ee3a5f2a62de5f822f7d1
Certificate serial: 019D98BD5C6714453CE23F997CEB2BE935EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/syHLgokI9DB0nuOl8qYt5fgi99E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/ccaa1a-9daa-44b8-9e26-87f341888560/1/syHLgokI9DB0nuOl8qYt5fgi99E.mft
Manifest number: 1401
Signing time: Fri 17 Apr 2026 00:00:39 +0000
Manifest this update: Fri 17 Apr 2026 00:00:39 +0000
Manifest next update: Sat 18 Apr 2026 00:00:39 +0000
Files and hashes: 1: lTiIdOCkR7HQgUlBuUv00XWG8n8.roa (hash: 5GQQkbQ8C7wWLUQ4RuOd8R+85EFkyHaFY8FEJbVGNpw=)
2: syHLgokI9DB0nuOl8qYt5fgi99E.crl (hash: t/9kG0L82TMstWP4zH15A64B+7o/4Vasi9pAzyuaYXA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/ccaa1a-9daa-44b8-9e26-87f341888560/1/syHLgokI9DB0nuOl8qYt5fgi99E.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/ccaa1a-9daa-44b8-9e26-87f341888560/1/syHLgokI9DB0nuOl8qYt5fgi99E.mft
rsync://rpki.ripe.net/repository/DEFAULT/syHLgokI9DB0nuOl8qYt5fgi99E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:bd:5c:67:14:45:3c:e2:3f:99:7c:eb:2b:e9:35:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b321cb828908f430749ee3a5f2a62de5f822f7d1
Validity
Not Before: Apr 17 00:00:39 2026 GMT
Not After : Apr 18 00:00:39 2026 GMT
Subject: CN=c3b6a3efe5c80fce49dc8b94f51b512fc2acd536
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:44:fd:79:0b:1c:12:72:01:b7:17:b1:25:da:
65:9a:30:bb:45:29:71:47:0b:a2:9f:55:06:7d:9f:
10:d3:fd:b8:23:07:9a:11:68:74:f5:3b:63:50:bd:
17:36:73:e0:53:e9:3b:46:cc:e7:18:eb:42:35:7e:
be:0b:89:cc:39:73:d6:3b:8e:9c:df:f6:0f:fa:25:
75:42:91:53:b4:8c:3c:32:cf:22:47:8c:d3:24:64:
e0:4c:73:df:54:6f:34:95:91:1e:9e:45:5a:4a:23:
bd:5d:1a:b2:f2:94:70:34:a6:66:79:f7:81:ec:55:
ac:11:eb:69:5d:33:5d:9a:c1:29:90:6a:35:b1:29:
c2:eb:e7:90:74:da:a9:00:d1:d1:65:ad:24:4d:12:
9f:e9:7a:3c:d0:31:46:17:c6:a5:77:00:4f:95:2d:
5a:93:f5:19:c5:4b:9a:55:41:bf:db:07:b8:93:a6:
ba:10:e7:47:59:e0:cc:9c:df:7b:65:e9:fe:10:63:
c4:1b:b5:0a:d5:51:4d:a1:c9:31:25:49:7f:e1:45:
3f:d8:ac:6e:05:df:30:dd:4e:04:a8:71:54:a7:37:
96:59:67:2f:6a:1a:10:26:67:ba:43:2a:d0:de:3e:
1c:f6:b8:87:ec:b3:b9:74:de:e2:c3:b0:89:90:0e:
d0:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:B6:A3:EF:E5:C8:0F:CE:49:DC:8B:94:F5:1B:51:2F:C2:AC:D5:36
X509v3 Authority Key Identifier:
keyid:B3:21:CB:82:89:08:F4:30:74:9E:E3:A5:F2:A6:2D:E5:F8:22:F7:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/syHLgokI9DB0nuOl8qYt5fgi99E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/ccaa1a-9daa-44b8-9e26-87f341888560/1/syHLgokI9DB0nuOl8qYt5fgi99E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/ccaa1a-9daa-44b8-9e26-87f341888560/1/syHLgokI9DB0nuOl8qYt5fgi99E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:be:82:d7:d6:76:45:e1:c1:60:3f:5b:2f:05:42:02:34:3a:
68:cc:14:17:17:ce:e9:21:33:15:b5:63:65:45:50:c5:b4:22:
9b:36:7f:63:ab:bf:23:3f:73:06:3b:47:64:9e:ae:75:d2:53:
20:df:89:99:0e:64:c1:84:1c:49:80:24:6a:dd:1f:f9:c1:0f:
71:5d:7b:ba:b2:5e:1d:9d:78:fb:e8:8e:cb:63:46:10:49:97:
7b:6a:58:11:04:db:4a:7f:08:ad:73:f4:17:9e:7a:b7:c4:f1:
b8:4e:b5:df:55:ec:9a:c5:6b:2e:16:04:d1:6b:d0:45:a7:4d:
89:71:c2:79:c4:58:1f:ce:72:34:23:de:59:68:da:d5:c8:49:
27:75:58:ef:8a:82:f5:59:d6:05:16:ff:76:b3:f5:1f:58:9b:
66:e0:42:32:3b:03:58:06:41:f1:5b:a5:39:d5:b6:28:50:0a:
97:4e:31:fd:ab:31:03:f3:55:0c:04:87:a9:af:8f:a8:45:fd:
3a:f4:98:7e:7e:c2:07:95:d0:ae:ba:41:85:10:d0:46:b6:62:
58:81:44:c4:1f:26:10:82:d0:b0:a2:7a:63:f4:d8:c0:45:ae:
5c:f3:b1:e1:d5:a3:b3:ef:70:72:f3:e7:30:14:47:5d:b0:73:
4c:aa:51:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:53:20 2026 by rpki-client