Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/ccaa1a-9daa-44b8-9e26-87f341888560/1/syHLgokI9DB0nuOl8qYt5fgi99E.mft
File: syHLgokI9DB0nuOl8qYt5fgi99E.mft (raw, json)
Hash identifier: pugr4IsZtgBClv5L1v2sp3MMP2Na0zZnpat/NnR7QMQ=
Subject key identifier: F1:E8:44:89:35:0A:DA:44:B8:7A:12:9E:C4:28:6A:90:1F:A6:4C:09
Authority key identifier: B3:21:CB:82:89:08:F4:30:74:9E:E3:A5:F2:A6:2D:E5:F8:22:F7:D1
Certificate issuer: /CN=b321cb828908f430749ee3a5f2a62de5f822f7d1
Certificate serial: 019A4D3D47E03A6E229E8940C53400FA7F7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/syHLgokI9DB0nuOl8qYt5fgi99E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/ccaa1a-9daa-44b8-9e26-87f341888560/1/syHLgokI9DB0nuOl8qYt5fgi99E.mft
Manifest number: 124C
Signing time: Tue 04 Nov 2025 05:00:52 +0000
Manifest this update: Tue 04 Nov 2025 05:00:52 +0000
Manifest next update: Wed 05 Nov 2025 05:00:52 +0000
Files and hashes: 1: 7Vf5R0kVboHfQe1HmwZydUmPy3w.roa (hash: CSR8lVlOICslmIH5THMhkf2ZR8pm8M7MZ0mWBD2ElFE=)
2: syHLgokI9DB0nuOl8qYt5fgi99E.crl (hash: IEoOsgCU9xMr8HcP4vcHQkPCA/fkgX3zwcUlWszjqCM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/ccaa1a-9daa-44b8-9e26-87f341888560/1/syHLgokI9DB0nuOl8qYt5fgi99E.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/ccaa1a-9daa-44b8-9e26-87f341888560/1/syHLgokI9DB0nuOl8qYt5fgi99E.mft
rsync://rpki.ripe.net/repository/DEFAULT/syHLgokI9DB0nuOl8qYt5fgi99E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 05:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:3d:47:e0:3a:6e:22:9e:89:40:c5:34:00:fa:7f:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b321cb828908f430749ee3a5f2a62de5f822f7d1
Validity
Not Before: Nov 4 05:00:52 2025 GMT
Not After : Nov 5 05:00:52 2025 GMT
Subject: CN=f1e84489350ada44b87a129ec4286a901fa64c09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:cb:12:1e:d3:e7:30:0f:da:f7:07:2a:dc:e9:
db:37:8d:d1:2e:1f:91:2b:a5:d3:5e:14:e6:94:cc:
dd:01:41:fd:b4:4d:59:4f:61:01:ef:56:06:f9:6c:
8c:27:6c:f2:00:3b:c0:65:af:6b:ce:c7:fc:7c:11:
26:c2:1a:f5:04:a6:f6:36:de:6d:7e:0a:1a:2b:a6:
7a:ab:41:12:40:c8:4d:a8:b2:3b:35:8a:70:13:12:
0b:d1:9d:ed:4b:31:d4:8b:61:c4:56:8c:98:49:a5:
e4:2e:2c:48:97:2e:48:f6:cc:50:23:fa:73:b5:b0:
6d:63:30:9a:bf:ed:2e:ba:0d:38:de:63:f5:e4:bb:
d5:f9:cf:00:0a:26:6d:3d:1d:b1:ce:8d:27:ed:c5:
54:24:f1:cb:91:21:45:81:88:3a:f2:7a:a9:93:0f:
ca:96:9e:ab:e9:59:db:64:b1:05:30:91:4b:be:db:
48:c9:60:ff:51:d2:a4:f7:85:86:f2:89:96:6a:e7:
30:97:05:a7:e5:5b:bd:4c:30:41:18:c6:0e:95:72:
d4:80:43:a5:ec:f3:64:09:fb:4f:f1:19:58:8d:fb:
6e:a0:13:f8:87:c9:28:80:e4:af:cd:13:7b:5d:81:
18:dc:ae:1a:e2:fc:a5:88:f8:30:4d:3e:5a:4c:5f:
2b:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:E8:44:89:35:0A:DA:44:B8:7A:12:9E:C4:28:6A:90:1F:A6:4C:09
X509v3 Authority Key Identifier:
keyid:B3:21:CB:82:89:08:F4:30:74:9E:E3:A5:F2:A6:2D:E5:F8:22:F7:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/syHLgokI9DB0nuOl8qYt5fgi99E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/ccaa1a-9daa-44b8-9e26-87f341888560/1/syHLgokI9DB0nuOl8qYt5fgi99E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/ccaa1a-9daa-44b8-9e26-87f341888560/1/syHLgokI9DB0nuOl8qYt5fgi99E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:66:d6:30:d4:ba:66:d2:cb:86:8c:89:94:bb:63:e6:17:04:
4d:8c:75:19:dd:f3:bb:83:f5:57:03:70:95:d8:05:56:65:e5:
4b:4f:64:76:d0:23:19:5d:f8:51:45:d2:a7:0a:41:68:fd:0e:
b5:38:32:36:ab:a2:74:e9:e9:09:15:f3:13:4a:7f:a9:ff:36:
e2:67:9d:a8:77:72:f1:b7:a5:47:99:b4:e0:6d:73:16:05:ce:
1c:53:d9:a1:5c:8c:22:e8:42:ad:50:7c:52:82:fc:e9:ed:a0:
d2:b4:ea:cf:bf:6b:59:e9:b6:92:0f:ca:29:8c:e6:7d:83:ff:
8f:c0:86:15:37:0c:15:61:4f:93:5d:cd:a1:9d:c3:c1:6b:be:
43:ee:43:b4:30:46:55:b0:d4:32:6e:23:11:3a:6d:54:e9:24:
e0:85:e2:30:bc:01:f5:25:92:55:1b:c6:d4:55:e1:26:c1:af:
e9:de:9b:25:9c:23:fd:4a:cc:e6:bd:a0:2c:57:c4:00:db:b7:
e7:3f:0b:07:cf:1e:c3:0a:bf:27:bf:01:85:bb:89:d2:42:52:
35:3e:b7:49:b3:47:d9:e3:c2:5e:6a:71:aa:73:3b:95:dd:3f:
15:cd:12:3b:09:9c:50:a3:41:af:53:6a:61:9a:17:10:35:15:
a5:a2:6f:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:47:05 2025 by rpki-client