Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/40ef41-31f4-420d-badc-c574158502c8/1/SyttKl1BMFYPYXlj2fvJNELcHM0.mft
File: SyttKl1BMFYPYXlj2fvJNELcHM0.mft (raw, json)
Hash identifier: cy/zpve8sT3YT2bZARFrRN/BkHpqocoDgL3Q55/Cn4Q=
Subject key identifier: A1:52:12:11:46:37:F9:B9:BB:9B:2F:E6:3A:46:92:80:20:E7:91:FF
Authority key identifier: 4B:2B:6D:2A:5D:41:30:56:0F:61:79:63:D9:FB:C9:34:42:DC:1C:CD
Certificate issuer: /CN=4b2b6d2a5d4130560f617963d9fbc93442dc1ccd
Certificate serial: 01976C2B1A59701CA0FE41372B2467F77170
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SyttKl1BMFYPYXlj2fvJNELcHM0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/40ef41-31f4-420d-badc-c574158502c8/1/SyttKl1BMFYPYXlj2fvJNELcHM0.mft
Manifest number: 1521
Signing time: Sat 14 Jun 2025 02:00:53 +0000
Manifest this update: Sat 14 Jun 2025 02:00:53 +0000
Manifest next update: Sun 15 Jun 2025 02:00:53 +0000
Files and hashes: 1: M4qXtzk7m1_HROVvWg529-GrNdE.roa (hash: edioIsxmBILO0oJIeA0UJ1H6nLNxCIDowpitLjgAj8U=)
2: SyttKl1BMFYPYXlj2fvJNELcHM0.crl (hash: jaKDlSZXN5b9hEvPSXuLCNCriJ1pa8mOYHgi9iNs3IQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/40ef41-31f4-420d-badc-c574158502c8/1/SyttKl1BMFYPYXlj2fvJNELcHM0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c9/40ef41-31f4-420d-badc-c574158502c8/1/SyttKl1BMFYPYXlj2fvJNELcHM0.mft
rsync://rpki.ripe.net/repository/DEFAULT/SyttKl1BMFYPYXlj2fvJNELcHM0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:2b:1a:59:70:1c:a0:fe:41:37:2b:24:67:f7:71:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b2b6d2a5d4130560f617963d9fbc93442dc1ccd
Validity
Not Before: Jun 14 02:00:53 2025 GMT
Not After : Jun 15 02:00:53 2025 GMT
Subject: CN=a15212114637f9b9bb9b2fe63a46928020e791ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:62:7f:57:1c:1e:b4:c3:88:45:1f:35:dd:2d:
d8:38:d5:c2:14:7d:67:09:28:f1:70:25:76:a2:1f:
23:a8:65:eb:d6:c5:55:aa:a0:da:a0:5e:1a:74:58:
3d:e9:d0:d3:c7:83:3c:f6:66:74:d0:f4:8d:44:f0:
97:46:18:5d:f8:44:3f:31:83:cf:8a:ba:af:b6:a2:
61:95:e7:49:76:49:a5:b6:5e:f0:00:66:71:4c:9b:
a1:9a:75:47:0b:cf:74:58:b1:5d:62:94:25:ff:10:
84:a1:90:d2:01:d4:93:38:08:18:0d:09:07:d4:9f:
0b:e0:f9:e5:a5:78:9e:8d:0b:3d:da:b0:a7:25:79:
63:74:c0:e1:aa:f8:4e:3b:8c:88:57:86:85:0d:85:
3c:c5:85:0a:0a:ab:a6:07:01:09:36:91:2b:da:6a:
ba:cf:38:4a:bf:af:26:4b:53:78:f6:f0:8e:79:c0:
0a:38:b3:c2:52:57:31:a2:6f:21:eb:42:2e:6c:cb:
5c:56:8a:7f:5d:be:13:74:59:7f:c1:05:25:0f:04:
52:9c:84:57:d6:b1:ad:eb:9d:03:2b:96:9a:e7:61:
76:37:de:ae:c9:ee:d1:b7:75:93:64:72:2e:f2:be:
21:b3:4b:e0:c4:e7:06:94:46:9b:3f:77:93:4f:a1:
67:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:52:12:11:46:37:F9:B9:BB:9B:2F:E6:3A:46:92:80:20:E7:91:FF
X509v3 Authority Key Identifier:
keyid:4B:2B:6D:2A:5D:41:30:56:0F:61:79:63:D9:FB:C9:34:42:DC:1C:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SyttKl1BMFYPYXlj2fvJNELcHM0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/40ef41-31f4-420d-badc-c574158502c8/1/SyttKl1BMFYPYXlj2fvJNELcHM0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/40ef41-31f4-420d-badc-c574158502c8/1/SyttKl1BMFYPYXlj2fvJNELcHM0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:9b:7b:65:5a:06:97:6c:4d:4a:1c:1e:ba:78:d5:bc:69:d5:
50:86:ae:0a:55:21:0d:4c:54:7e:23:92:e3:d4:69:26:7e:a0:
6d:27:0f:70:b3:f9:f5:b1:3f:2a:cd:af:b1:f4:2e:64:06:2b:
6c:b4:af:2a:64:9f:f1:05:3b:3f:65:78:8b:31:a2:23:74:df:
05:3c:05:97:50:75:30:0c:0f:8d:ab:af:16:7f:53:40:ec:59:
59:72:37:25:54:04:f1:f4:c9:65:9e:18:f6:f5:87:7f:48:b2:
03:3c:5d:86:32:d1:9d:cf:47:b8:f9:54:98:81:4c:62:6e:8b:
ac:30:98:d4:59:94:dd:d0:b4:2a:86:54:89:9b:14:05:5c:ce:
87:e6:ad:14:a9:b5:98:b3:55:8f:45:80:e8:04:85:e9:11:81:
23:ff:4b:19:59:d1:71:25:51:f6:1c:f2:a9:d8:40:b4:5e:b3:
db:67:eb:11:14:60:8a:10:cb:ec:ac:63:49:f0:33:09:3e:e6:
b3:cb:33:db:23:69:d6:92:61:75:86:49:55:fc:da:87:57:74:
13:c7:4e:5e:1e:b9:1b:f9:77:d4:7c:1b:e6:06:f3:c1:af:67:
db:b4:5a:18:dc:b4:87:18:53:c8:a7:e5:d7:42:23:27:a3:a2:
70:a7:b5:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:10:47 2025 by rpki-client