Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/ccaa1a-9daa-44b8-9e26-87f341888560/1/syHLgokI9DB0nuOl8qYt5fgi99E.mft
File: syHLgokI9DB0nuOl8qYt5fgi99E.mft (raw, json)
Hash identifier: wYRYfTVazyvZDGihPOUAfpH7kHQBsSkpUcrqvkubAmc=
Subject key identifier: 14:C8:20:D9:7A:5E:8E:20:C4:C0:3A:C2:FC:FB:A3:BC:13:06:B3:CA
Authority key identifier: B3:21:CB:82:89:08:F4:30:74:9E:E3:A5:F2:A6:2D:E5:F8:22:F7:D1
Certificate issuer: /CN=b321cb828908f430749ee3a5f2a62de5f822f7d1
Certificate serial: 0198741947055A2693065DB67D1EB65D902D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/syHLgokI9DB0nuOl8qYt5fgi99E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/ccaa1a-9daa-44b8-9e26-87f341888560/1/syHLgokI9DB0nuOl8qYt5fgi99E.mft
Manifest number: 1157
Signing time: Mon 04 Aug 2025 08:01:10 +0000
Manifest this update: Mon 04 Aug 2025 08:01:10 +0000
Manifest next update: Tue 05 Aug 2025 08:01:10 +0000
Files and hashes: 1: 7Vf5R0kVboHfQe1HmwZydUmPy3w.roa (hash: CSR8lVlOICslmIH5THMhkf2ZR8pm8M7MZ0mWBD2ElFE=)
2: syHLgokI9DB0nuOl8qYt5fgi99E.crl (hash: Qp+kpGU8OOD76YYXtPRlpNqGEWJXmyTjZGxHQLmBMh8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/ccaa1a-9daa-44b8-9e26-87f341888560/1/syHLgokI9DB0nuOl8qYt5fgi99E.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/ccaa1a-9daa-44b8-9e26-87f341888560/1/syHLgokI9DB0nuOl8qYt5fgi99E.mft
rsync://rpki.ripe.net/repository/DEFAULT/syHLgokI9DB0nuOl8qYt5fgi99E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 08:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:19:47:05:5a:26:93:06:5d:b6:7d:1e:b6:5d:90:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b321cb828908f430749ee3a5f2a62de5f822f7d1
Validity
Not Before: Aug 4 08:01:10 2025 GMT
Not After : Aug 5 08:01:10 2025 GMT
Subject: CN=14c820d97a5e8e20c4c03ac2fcfba3bc1306b3ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:0b:af:6b:44:7b:01:d8:8e:84:3f:3b:21:31:
fe:3b:aa:24:2c:10:e3:62:82:d9:53:f7:21:4b:2e:
5b:78:73:92:c3:11:a1:4b:58:12:9e:9a:6a:14:9c:
21:45:d4:53:12:c6:88:55:20:f6:07:6c:16:a4:51:
93:67:15:5e:8e:69:66:18:1e:dc:45:09:64:8c:7b:
4e:39:30:9d:2a:0a:df:9b:05:4b:96:48:cc:42:25:
5d:c4:de:45:6d:eb:09:b2:f1:e4:a6:af:1f:a5:30:
22:fd:bf:6a:d7:e1:a9:a5:57:6f:83:c3:73:f7:44:
32:43:92:da:bf:f9:1b:ec:4d:84:6c:66:f7:ab:c4:
25:6b:77:c9:8f:61:9f:27:86:22:3a:a5:2b:e7:43:
96:3e:07:7d:02:6f:d8:bc:40:bd:52:2c:ed:bc:4a:
d1:94:ff:a9:70:c6:a6:35:9b:43:c8:b4:21:60:bf:
4f:40:6d:8c:43:d2:77:68:45:de:21:b7:4f:04:4f:
88:c0:20:21:17:bd:cc:e1:46:f5:93:71:5c:83:21:
9f:5f:1a:59:7a:96:05:03:40:c8:6e:16:21:ee:97:
d9:35:34:5b:2d:c0:c1:6f:1e:51:4c:18:01:b1:4a:
40:33:fe:69:35:00:fe:24:4e:9a:1c:1c:8c:8f:f3:
0d:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:C8:20:D9:7A:5E:8E:20:C4:C0:3A:C2:FC:FB:A3:BC:13:06:B3:CA
X509v3 Authority Key Identifier:
keyid:B3:21:CB:82:89:08:F4:30:74:9E:E3:A5:F2:A6:2D:E5:F8:22:F7:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/syHLgokI9DB0nuOl8qYt5fgi99E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/ccaa1a-9daa-44b8-9e26-87f341888560/1/syHLgokI9DB0nuOl8qYt5fgi99E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/ccaa1a-9daa-44b8-9e26-87f341888560/1/syHLgokI9DB0nuOl8qYt5fgi99E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:d9:8b:a8:5c:ec:3a:b1:b5:74:1d:8a:cd:66:c4:71:df:c0:
6c:a0:21:f8:a8:f8:2d:63:0c:f5:b3:a8:d9:09:27:91:31:9d:
7d:49:45:01:be:6f:0b:4d:80:f0:8e:96:15:22:cc:9f:11:dd:
b0:78:e9:2b:7e:93:7a:07:c5:cf:1b:ea:d1:2a:34:7c:02:d2:
36:1d:95:3a:a9:85:86:0b:42:10:76:71:cb:5d:65:90:81:5e:
04:8d:9e:67:92:87:8b:9e:24:66:21:19:b7:59:04:a9:d5:07:
2d:5d:eb:74:1a:03:09:aa:94:18:b3:4a:10:71:7e:93:f5:12:
2c:55:99:de:88:af:b5:6f:02:fa:61:cb:f2:be:2f:9f:39:2a:
91:cd:57:6f:c4:1e:31:54:b6:2e:e1:17:92:df:64:e0:16:cc:
31:3e:60:01:4a:9c:12:78:c3:ea:25:c6:93:39:93:68:b7:be:
e9:d8:fe:c3:08:0a:2e:35:84:d2:a0:bb:f9:75:d3:4a:8c:25:
da:cb:1d:c5:29:65:a7:00:22:4c:0e:9d:89:4f:9e:2b:8c:94:
5c:05:b2:19:8d:8b:26:d3:bb:05:5a:86:3c:91:e4:f9:c3:ae:
20:64:6b:a9:c6:3d:12:35:00:24:0b:a4:05:7a:3f:cb:4c:3c:
d9:af:f7:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 18:55:24 2025 by rpki-client