Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/40ef41-31f4-420d-badc-c574158502c8/1/SyttKl1BMFYPYXlj2fvJNELcHM0.mft
File: SyttKl1BMFYPYXlj2fvJNELcHM0.mft (raw, json)
Hash identifier: 9yXLwzzr7w1Fc1ERECThq5wa3oMwnTG01+e6uB0ph2w=
Subject key identifier: C3:6E:86:F3:4E:A8:3F:B6:0A:0A:B0:DC:AF:C2:F0:51:E5:07:FD:B1
Authority key identifier: 4B:2B:6D:2A:5D:41:30:56:0F:61:79:63:D9:FB:C9:34:42:DC:1C:CD
Certificate issuer: /CN=4b2b6d2a5d4130560f617963d9fbc93442dc1ccd
Certificate serial: 019872CFC7C15E9A49CDF666E844039AF900
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SyttKl1BMFYPYXlj2fvJNELcHM0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/40ef41-31f4-420d-badc-c574158502c8/1/SyttKl1BMFYPYXlj2fvJNELcHM0.mft
Manifest number: 15A9
Signing time: Mon 04 Aug 2025 02:01:16 +0000
Manifest this update: Mon 04 Aug 2025 02:01:16 +0000
Manifest next update: Tue 05 Aug 2025 02:01:16 +0000
Files and hashes: 1: M4qXtzk7m1_HROVvWg529-GrNdE.roa (hash: edioIsxmBILO0oJIeA0UJ1H6nLNxCIDowpitLjgAj8U=)
2: SyttKl1BMFYPYXlj2fvJNELcHM0.crl (hash: 9w3D159QHE2J0EhYxvjwT8OtK0T3ijjU53L6XbH4uiE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/40ef41-31f4-420d-badc-c574158502c8/1/SyttKl1BMFYPYXlj2fvJNELcHM0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c9/40ef41-31f4-420d-badc-c574158502c8/1/SyttKl1BMFYPYXlj2fvJNELcHM0.mft
rsync://rpki.ripe.net/repository/DEFAULT/SyttKl1BMFYPYXlj2fvJNELcHM0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 02:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:cf:c7:c1:5e:9a:49:cd:f6:66:e8:44:03:9a:f9:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b2b6d2a5d4130560f617963d9fbc93442dc1ccd
Validity
Not Before: Aug 4 02:01:16 2025 GMT
Not After : Aug 5 02:01:16 2025 GMT
Subject: CN=c36e86f34ea83fb60a0ab0dcafc2f051e507fdb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:fb:81:c8:78:28:ff:22:a0:30:ed:79:71:44:
26:cd:9c:20:7a:91:fb:cc:4a:b6:85:1a:2d:64:c7:
db:8c:e3:29:c5:dc:91:14:96:41:3b:d1:8e:63:15:
93:33:04:32:3d:f9:60:b5:bb:ca:99:db:50:b1:e2:
ac:4a:cc:b2:56:ea:35:6c:f6:ea:29:39:8f:c9:b5:
6f:c6:d8:a1:c6:e1:38:2c:c9:cb:10:8a:d0:21:50:
25:d5:bf:97:8b:19:43:3f:3a:82:7a:b2:7a:5b:9e:
15:60:82:48:ba:6b:5d:5f:87:ab:f9:51:15:53:d8:
1c:99:dd:f4:aa:64:48:83:34:15:08:7e:3a:21:29:
13:fd:22:4d:c7:99:a5:a9:40:2d:5c:57:48:32:89:
20:ac:b9:8e:04:5c:c1:bb:54:94:18:eb:20:f8:6b:
dc:f6:c4:e6:b2:e1:28:45:5c:3b:2b:ae:a2:8a:21:
34:1c:3e:e0:a3:70:4a:0a:4a:41:2d:29:99:e4:c8:
d4:45:c5:bc:bc:0b:05:4f:20:5e:37:22:9b:87:51:
38:07:e5:cd:15:e7:c5:5f:81:21:3b:04:ee:42:c4:
69:7a:ce:0b:c5:2b:31:c6:aa:0e:e8:6d:07:94:66:
5b:8e:29:f8:34:cc:35:ea:6a:2c:83:3a:d0:17:28:
27:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:6E:86:F3:4E:A8:3F:B6:0A:0A:B0:DC:AF:C2:F0:51:E5:07:FD:B1
X509v3 Authority Key Identifier:
keyid:4B:2B:6D:2A:5D:41:30:56:0F:61:79:63:D9:FB:C9:34:42:DC:1C:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SyttKl1BMFYPYXlj2fvJNELcHM0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/40ef41-31f4-420d-badc-c574158502c8/1/SyttKl1BMFYPYXlj2fvJNELcHM0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/40ef41-31f4-420d-badc-c574158502c8/1/SyttKl1BMFYPYXlj2fvJNELcHM0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:3e:14:37:37:89:fb:e3:cd:50:1f:ab:72:f1:96:b4:cd:0f:
4a:7c:89:12:4f:a4:8e:ca:ce:85:6b:01:ec:96:4a:1d:3d:b1:
0c:7e:0b:90:47:a9:49:0e:71:e5:de:b1:23:a1:49:90:16:72:
41:78:0e:37:2b:f0:c4:c2:9d:cd:1d:70:e3:1a:b3:bb:37:03:
8e:ad:9b:ed:67:ba:8b:14:8f:03:f3:a4:32:21:13:c6:d6:82:
3a:54:df:b4:99:83:f2:5f:44:94:94:39:11:b4:3d:81:f2:5f:
fb:91:24:99:39:c0:e8:df:50:3c:8d:a2:3e:19:48:2a:44:0f:
3a:50:4a:d0:82:a5:63:84:fb:d4:7d:c2:3d:1e:aa:87:5f:53:
8a:c5:3a:b7:bd:19:e4:58:be:bb:0d:f0:4a:ce:98:a2:27:43:
46:d4:41:fd:74:8d:74:cc:15:4f:ab:e3:6e:e0:d7:4a:94:b8:
a4:f4:0d:dd:cd:31:c0:1a:34:8c:7b:06:a1:6c:fe:d6:c4:0f:
1b:bb:8e:48:2e:29:95:e3:16:32:a1:83:31:90:8f:42:9c:aa:
b7:f1:42:79:ef:08:35:b6:36:86:01:c8:90:bd:97:a0:b7:26:
18:35:c3:53:d9:c1:2c:62:92:a4:f6:51:65:74:a6:67:8c:d0:
5b:fa:72:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:02:52 2025 by rpki-client