Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/40ef41-31f4-420d-badc-c574158502c8/1/SyttKl1BMFYPYXlj2fvJNELcHM0.mft
File: SyttKl1BMFYPYXlj2fvJNELcHM0.mft (raw, json)
Hash identifier: jUkDEYMAhNB90mr9I7hLTf4HJ8jmHITEOVmW8wkWwD4=
Subject key identifier: 3D:2F:81:11:D6:07:10:70:F7:63:0A:DE:75:7D:22:51:D4:96:E1:CF
Authority key identifier: 4B:2B:6D:2A:5D:41:30:56:0F:61:79:63:D9:FB:C9:34:42:DC:1C:CD
Certificate issuer: /CN=4b2b6d2a5d4130560f617963d9fbc93442dc1ccd
Certificate serial: 019CAAC6F1460A9F37DD85FB6A7097BE22C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SyttKl1BMFYPYXlj2fvJNELcHM0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/40ef41-31f4-420d-badc-c574158502c8/1/SyttKl1BMFYPYXlj2fvJNELcHM0.mft
Manifest number: 17D9
Signing time: Sun 01 Mar 2026 19:01:30 +0000
Manifest this update: Sun 01 Mar 2026 19:01:30 +0000
Manifest next update: Mon 02 Mar 2026 19:01:30 +0000
Files and hashes: 1: SyttKl1BMFYPYXlj2fvJNELcHM0.crl (hash: zcHipY7b6jIvBenWv0XWeUqGQ6sDhAQxes5N604Q2W4=)
2: VYoAIFinaQHxNkoLpaPUIWea3QQ.roa (hash: fC8G8UEbQdEhs80n+8gVQ40HDgx8OQKG34YhOp+AKow=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/40ef41-31f4-420d-badc-c574158502c8/1/SyttKl1BMFYPYXlj2fvJNELcHM0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c9/40ef41-31f4-420d-badc-c574158502c8/1/SyttKl1BMFYPYXlj2fvJNELcHM0.mft
rsync://rpki.ripe.net/repository/DEFAULT/SyttKl1BMFYPYXlj2fvJNELcHM0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:f1:46:0a:9f:37:dd:85:fb:6a:70:97:be:22:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b2b6d2a5d4130560f617963d9fbc93442dc1ccd
Validity
Not Before: Mar 1 19:01:30 2026 GMT
Not After : Mar 2 19:01:30 2026 GMT
Subject: CN=3d2f8111d6071070f7630ade757d2251d496e1cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:79:f2:f8:bf:b4:0d:d1:a5:14:cb:84:85:c0:
e9:f1:77:a2:4f:f3:d2:31:80:da:c2:2f:c3:67:32:
86:5d:27:ae:e4:6a:49:cf:fc:a9:7d:44:44:4b:15:
a8:8a:69:fe:a5:e4:7b:5c:2a:d0:9f:12:e6:6a:7b:
e2:9f:3f:ba:96:ea:47:c8:5a:e6:98:bd:85:e5:fe:
8b:0c:10:a2:03:71:50:68:42:3d:8d:c9:b1:96:51:
a0:7e:d8:cd:72:5d:5c:7a:aa:be:70:94:6b:bc:c6:
7e:b7:70:56:19:05:5c:a0:c7:5e:b3:c2:a2:81:ba:
57:0f:f1:7a:b9:69:d1:8a:e5:fd:bd:6c:d5:b6:6b:
20:cb:6f:1e:89:57:f4:b3:f2:ff:71:22:4e:04:d5:
51:31:8b:9c:9b:d8:68:42:93:3b:1d:03:2d:4a:45:
2a:74:40:40:ff:cd:8e:89:d5:5f:38:28:ac:7b:45:
3d:9c:c4:45:51:31:14:70:61:a4:49:71:1a:46:b9:
9d:9e:47:32:2d:ff:19:98:26:2a:7d:b3:ec:6d:b0:
56:1b:03:4b:45:1b:c5:0a:f0:4f:e5:12:4b:c5:d2:
c3:80:5e:39:3c:44:9c:71:b6:85:71:b5:69:51:08:
4e:25:b9:ca:8b:3d:0a:5a:27:4e:49:3b:c1:6d:b4:
fa:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:2F:81:11:D6:07:10:70:F7:63:0A:DE:75:7D:22:51:D4:96:E1:CF
X509v3 Authority Key Identifier:
keyid:4B:2B:6D:2A:5D:41:30:56:0F:61:79:63:D9:FB:C9:34:42:DC:1C:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SyttKl1BMFYPYXlj2fvJNELcHM0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/40ef41-31f4-420d-badc-c574158502c8/1/SyttKl1BMFYPYXlj2fvJNELcHM0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/40ef41-31f4-420d-badc-c574158502c8/1/SyttKl1BMFYPYXlj2fvJNELcHM0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:50:97:9b:7c:02:56:61:6a:9a:05:db:ff:79:16:88:07:33:
03:6c:93:1a:66:a4:a9:cb:08:e2:77:79:d3:59:c3:39:ba:38:
58:8b:1c:ed:52:e3:1d:ca:84:c7:9a:5e:a7:12:bb:e9:26:03:
ee:d4:76:bd:78:ac:d2:f5:d0:2b:c8:85:7f:8d:53:62:63:d8:
06:99:12:07:f2:fb:5a:f0:ee:1f:69:ae:ce:d1:0b:1b:91:bc:
ef:89:a1:e8:b9:a2:2a:55:e6:45:0d:08:3a:34:0c:34:07:a4:
0e:32:8b:f9:ce:a0:42:d2:8f:e7:ea:b2:b1:44:0b:bf:b9:30:
7d:58:62:8e:86:de:ec:cc:5c:00:3a:cc:37:8d:f6:44:18:ab:
44:68:89:bc:77:2f:ae:27:66:4d:e6:59:31:e5:34:e1:4d:39:
70:4f:8d:88:6b:16:c0:0d:6b:2d:bd:b6:37:08:53:88:88:e6:
0f:7f:b1:65:42:6e:9b:2b:7c:57:bf:05:75:98:b0:99:ea:0b:
9a:ef:83:a1:29:b9:56:cd:0f:ec:f1:d7:e4:e2:04:9c:21:c8:
7b:ac:44:d4:3c:41:ef:55:9f:16:1d:d0:5a:46:85:48:b0:26:
df:8d:c9:86:d3:74:27:79:86:be:b8:ac:fe:4b:91:fc:cb:95:
4c:04:ef:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:52:07 2026 by rpki-client