Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/ccaa1a-9daa-44b8-9e26-87f341888560/1/syHLgokI9DB0nuOl8qYt5fgi99E.mft
File: syHLgokI9DB0nuOl8qYt5fgi99E.mft (raw, json)
Hash identifier: JY+wuralktmd7TTrlVz04Qr/+8z0/RhK/0Xq27M1TfM=
Subject key identifier: AC:2E:97:DE:F6:17:2C:2B:23:EA:8E:99:A1:56:44:EE:E2:19:80:1E
Authority key identifier: B3:21:CB:82:89:08:F4:30:74:9E:E3:A5:F2:A6:2D:E5:F8:22:F7:D1
Certificate issuer: /CN=b321cb828908f430749ee3a5f2a62de5f822f7d1
Certificate serial: 019CAB343D8FF21A24544F53614316951002
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/syHLgokI9DB0nuOl8qYt5fgi99E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/ccaa1a-9daa-44b8-9e26-87f341888560/1/syHLgokI9DB0nuOl8qYt5fgi99E.mft
Manifest number: 1386
Signing time: Sun 01 Mar 2026 21:00:53 +0000
Manifest this update: Sun 01 Mar 2026 21:00:53 +0000
Manifest next update: Mon 02 Mar 2026 21:00:53 +0000
Files and hashes: 1: lTiIdOCkR7HQgUlBuUv00XWG8n8.roa (hash: 5GQQkbQ8C7wWLUQ4RuOd8R+85EFkyHaFY8FEJbVGNpw=)
2: syHLgokI9DB0nuOl8qYt5fgi99E.crl (hash: 45OPEG1hvwm3hm3TAgqKcOTcg7U9cUBvtYvdHXeEBXk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/ccaa1a-9daa-44b8-9e26-87f341888560/1/syHLgokI9DB0nuOl8qYt5fgi99E.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/ccaa1a-9daa-44b8-9e26-87f341888560/1/syHLgokI9DB0nuOl8qYt5fgi99E.mft
rsync://rpki.ripe.net/repository/DEFAULT/syHLgokI9DB0nuOl8qYt5fgi99E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:34:3d:8f:f2:1a:24:54:4f:53:61:43:16:95:10:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b321cb828908f430749ee3a5f2a62de5f822f7d1
Validity
Not Before: Mar 1 21:00:53 2026 GMT
Not After : Mar 2 21:00:53 2026 GMT
Subject: CN=ac2e97def6172c2b23ea8e99a15644eee219801e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:61:7b:1a:bd:c4:24:f1:84:7a:5d:92:0f:48:
6d:2d:ad:b3:ac:58:a9:3f:16:5f:4e:65:74:da:9c:
c1:c8:7d:e5:7d:95:64:fa:6e:8d:de:ca:4d:c3:3c:
fc:13:13:7d:03:45:83:3d:5c:a7:6f:52:4d:42:f4:
85:18:65:cf:15:c4:c9:a4:19:f6:f4:e6:a9:39:df:
22:a1:d4:08:2f:7c:40:87:1d:b8:c7:6d:c9:40:40:
d8:9b:4f:46:9d:a0:be:19:7f:58:fd:bd:0a:1c:c5:
30:54:cd:03:e5:db:1b:38:21:90:66:c7:bc:2c:8f:
5b:dd:15:7c:a3:71:aa:b1:1c:c9:80:98:43:f2:e2:
e5:66:09:a3:06:2e:19:6d:d5:33:c5:5c:0d:c5:19:
92:db:72:78:25:dc:e2:6c:f3:1b:b1:10:94:32:09:
a4:a4:d0:ce:5e:9b:94:a3:9b:55:77:40:ec:f1:e0:
bb:d4:55:ce:4b:64:d9:35:1c:a7:e1:59:39:69:a5:
65:f8:2e:f1:86:11:a5:13:e2:ee:c8:7a:5a:a9:e8:
71:f6:bf:b6:74:48:0b:2f:93:44:75:59:92:22:6f:
c1:be:46:32:fe:97:a8:ad:ce:df:83:3b:e5:c7:2d:
72:60:3c:73:d2:e2:4e:6d:cc:cb:fc:0e:bc:49:64:
a3:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:2E:97:DE:F6:17:2C:2B:23:EA:8E:99:A1:56:44:EE:E2:19:80:1E
X509v3 Authority Key Identifier:
keyid:B3:21:CB:82:89:08:F4:30:74:9E:E3:A5:F2:A6:2D:E5:F8:22:F7:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/syHLgokI9DB0nuOl8qYt5fgi99E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/ccaa1a-9daa-44b8-9e26-87f341888560/1/syHLgokI9DB0nuOl8qYt5fgi99E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/ccaa1a-9daa-44b8-9e26-87f341888560/1/syHLgokI9DB0nuOl8qYt5fgi99E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
de:bf:47:19:3d:26:df:45:ce:39:b9:2e:2e:14:2d:66:ef:27:
6b:52:07:4e:14:a9:f7:ba:6b:b3:71:40:b9:f4:17:d2:07:47:
a2:09:5a:03:a8:8c:54:77:6a:86:64:74:8c:61:1d:f4:24:fd:
14:1e:a0:88:b9:8f:03:8a:ba:4f:0b:d9:58:38:45:f7:06:76:
43:b0:df:28:60:8f:41:84:10:67:72:39:0a:8d:ae:52:06:2a:
e6:b0:22:cd:0e:22:a9:2a:cd:7f:52:08:ba:02:db:79:6e:ce:
42:ff:2d:de:0d:65:53:77:d1:f2:d3:61:e4:06:71:02:b0:f7:
30:37:41:e7:d4:1a:96:a5:65:9c:c9:c1:ed:ba:9b:26:50:2d:
e1:13:a1:0f:18:e6:af:c7:2d:d3:14:aa:ad:30:57:c4:41:74:
40:74:e6:dd:71:46:d2:3f:a8:e7:82:38:46:32:ed:22:70:49:
9c:7a:75:d0:75:e1:51:e3:21:1b:19:c4:57:44:6b:00:27:4e:
62:00:04:bc:49:cc:f7:eb:05:dc:2f:52:d2:4f:a0:38:ed:a9:
7e:6a:13:0f:c0:2c:70:f8:b7:b5:99:dd:07:26:ed:1b:de:bf:
0c:e8:4c:3a:86:01:87:f5:88:8e:c0:7a:78:f7:d7:68:b8:86:
20:83:01:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:06:27 2026 by rpki-client