Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/fd53f7-8315-40d2-915b-cd0f59c28d2d/1/Sy7AqbnmDoZSFoymnZI58nMHw3I.mft
File: Sy7AqbnmDoZSFoymnZI58nMHw3I.mft (raw, json)
Hash identifier: l8igQLbaiO5GL0aZDhwpIsHhzm4ay2S2ktRxRitFljY=
Subject key identifier: 35:C3:77:7B:A8:4D:8D:53:9C:63:12:16:B8:44:98:51:78:88:8E:1B
Authority key identifier: 4B:2E:C0:A9:B9:E6:0E:86:52:16:8C:A6:9D:92:39:F2:73:07:C3:72
Certificate issuer: /CN=4b2ec0a9b9e60e8652168ca69d9239f27307c372
Certificate serial: 0198729851F6BDE32DCCC107D0ECFB1B9FAB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sy7AqbnmDoZSFoymnZI58nMHw3I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/fd53f7-8315-40d2-915b-cd0f59c28d2d/1/Sy7AqbnmDoZSFoymnZI58nMHw3I.mft
Manifest number: 157B
Signing time: Mon 04 Aug 2025 01:00:41 +0000
Manifest this update: Mon 04 Aug 2025 01:00:41 +0000
Manifest next update: Tue 05 Aug 2025 01:00:41 +0000
Files and hashes: 1: I0uKuQxKXFKWPHV3tWp8USg1X-E.roa (hash: WXxoeNxUFy+lmF1DwKWF+FMyVOrtNM4sTEwb6rXBq/g=)
2: Sy7AqbnmDoZSFoymnZI58nMHw3I.crl (hash: VC8j8w6ZMPKu+Qjeng9zTjAXKeSLXG5h9Nd/9gpfW2A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/fd53f7-8315-40d2-915b-cd0f59c28d2d/1/Sy7AqbnmDoZSFoymnZI58nMHw3I.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/fd53f7-8315-40d2-915b-cd0f59c28d2d/1/Sy7AqbnmDoZSFoymnZI58nMHw3I.mft
rsync://rpki.ripe.net/repository/DEFAULT/Sy7AqbnmDoZSFoymnZI58nMHw3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 01:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:98:51:f6:bd:e3:2d:cc:c1:07:d0:ec:fb:1b:9f:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b2ec0a9b9e60e8652168ca69d9239f27307c372
Validity
Not Before: Aug 4 01:00:41 2025 GMT
Not After : Aug 5 01:00:41 2025 GMT
Subject: CN=35c3777ba84d8d539c631216b844985178888e1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:bf:75:0d:1a:79:fb:7b:85:ce:79:bf:30:6a:
c9:5f:e0:67:2e:1d:2c:8a:48:2e:99:81:be:49:18:
71:4f:3f:e9:50:0a:fe:89:8f:5b:d5:fa:b7:b8:14:
f3:63:53:63:de:3b:45:18:97:a9:bb:3b:37:57:de:
df:b0:d2:b7:92:2c:79:da:25:23:3b:2c:1c:2d:7b:
02:18:e4:67:dc:7f:01:91:53:d9:80:80:f0:8c:2f:
08:7e:c5:c5:db:b7:65:8e:e6:6b:8c:5c:bf:8b:e3:
17:8d:50:7c:24:79:72:49:7a:2f:fa:f2:c5:95:25:
ad:ab:19:59:d7:81:63:d2:0a:d6:16:71:9d:33:03:
ab:76:db:7a:a1:8f:5d:2d:df:1d:3f:7a:79:d8:6e:
9c:1a:44:32:75:a1:55:4f:33:59:6b:25:5f:b5:e8:
52:92:1d:b3:ad:22:33:8a:16:d7:43:a6:d0:78:70:
d6:66:2b:0c:00:16:c9:68:81:e5:b4:d7:d6:03:a6:
4f:f8:fe:36:b3:34:9b:62:7a:b9:41:26:85:00:72:
e6:b1:54:c6:ac:26:7e:46:01:87:28:62:d1:e2:a6:
56:54:01:b8:7c:11:d7:ba:c8:5f:a6:d4:c0:f4:a9:
14:54:87:c4:96:e3:f0:0a:ad:81:7e:3e:dd:bd:96:
1d:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:C3:77:7B:A8:4D:8D:53:9C:63:12:16:B8:44:98:51:78:88:8E:1B
X509v3 Authority Key Identifier:
keyid:4B:2E:C0:A9:B9:E6:0E:86:52:16:8C:A6:9D:92:39:F2:73:07:C3:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sy7AqbnmDoZSFoymnZI58nMHw3I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/fd53f7-8315-40d2-915b-cd0f59c28d2d/1/Sy7AqbnmDoZSFoymnZI58nMHw3I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/fd53f7-8315-40d2-915b-cd0f59c28d2d/1/Sy7AqbnmDoZSFoymnZI58nMHw3I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:84:fd:53:bf:cb:e8:14:3f:59:6b:ac:65:4d:f5:a4:e4:a4:
46:a5:23:f3:da:ed:b1:1e:13:3d:2b:bc:f6:d1:fd:ef:73:e5:
71:4a:05:94:7e:13:b5:f6:ee:5c:b5:09:88:e1:34:28:00:8b:
d9:92:aa:18:eb:a2:38:14:47:36:6e:d4:19:7d:69:fb:6e:1f:
58:4f:6d:a8:67:e8:bc:ec:fd:0a:da:da:60:6c:8d:fd:9b:d6:
65:ee:a3:6a:ed:21:c9:16:a0:27:b9:8c:25:be:ca:33:d9:29:
ee:81:4d:8d:cb:da:0a:ad:f5:1f:ee:1f:e7:6b:c9:19:fd:5a:
c4:83:f5:65:66:4b:66:2e:66:4f:fe:82:e1:b3:01:a2:45:13:
02:77:55:9b:12:63:6d:81:9a:d6:3c:cd:df:44:e2:d8:9e:72:
e7:3f:1c:20:a5:22:1b:e7:c5:ad:d2:34:d3:8f:d5:32:86:e9:
1e:6a:a7:f4:b4:0f:33:15:92:c6:96:bb:74:b2:2a:b2:dd:e0:
6f:36:81:3b:fe:cc:17:27:d1:b3:3e:fa:3a:ea:d5:6f:c5:64:
f7:95:dc:3b:8b:c2:11:d0:67:82:a1:b5:02:58:50:f1:f5:ff:
0c:1a:41:4e:83:04:2e:8e:be:c8:86:db:5c:91:da:eb:21:93:
6e:15:8a:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:00:31 2025 by rpki-client