Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/af4e4b-2026-4bbb-9628-f08a0ae92b8d/1/sYxKQwCDfE6hetHjghoJrVN2QIc.mft
File: sYxKQwCDfE6hetHjghoJrVN2QIc.mft (raw, json)
Hash identifier: 7C+EbbYBz2Z81cSbGxgxNnwEsE8w32tcdNOCRx9D1Qk=
Subject key identifier: DC:AC:67:6E:62:88:5B:E0:34:71:19:09:13:22:E1:3E:71:96:70:FC
Authority key identifier: B1:8C:4A:43:00:83:7C:4E:A1:7A:D1:E3:82:1A:09:AD:53:76:40:87
Certificate issuer: /CN=b18c4a4300837c4ea17ad1e3821a09ad53764087
Certificate serial: 019A24790AAA73233E35C625E0238F94453C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sYxKQwCDfE6hetHjghoJrVN2QIc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/af4e4b-2026-4bbb-9628-f08a0ae92b8d/1/sYxKQwCDfE6hetHjghoJrVN2QIc.mft
Manifest number: 0F8F
Signing time: Mon 27 Oct 2025 07:01:43 +0000
Manifest this update: Mon 27 Oct 2025 07:01:43 +0000
Manifest next update: Tue 28 Oct 2025 07:01:43 +0000
Files and hashes: 1: 2pelV4FedV45XCLKgpg6a9aqnGU.roa (hash: JAMnQ7Ljsuvl5vUTIxSzwNI1IGVq+RkAOKUEPceEiRc=)
2: sYxKQwCDfE6hetHjghoJrVN2QIc.crl (hash: aJX1lHWJW11tEiBF3ySULTWUyUpwAagxEJOuZqLuwtE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/af4e4b-2026-4bbb-9628-f08a0ae92b8d/1/sYxKQwCDfE6hetHjghoJrVN2QIc.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/af4e4b-2026-4bbb-9628-f08a0ae92b8d/1/sYxKQwCDfE6hetHjghoJrVN2QIc.mft
rsync://rpki.ripe.net/repository/DEFAULT/sYxKQwCDfE6hetHjghoJrVN2QIc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 07:01:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:24:79:0a:aa:73:23:3e:35:c6:25:e0:23:8f:94:45:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b18c4a4300837c4ea17ad1e3821a09ad53764087
Validity
Not Before: Oct 27 07:01:43 2025 GMT
Not After : Oct 28 07:01:43 2025 GMT
Subject: CN=dcac676e62885be0347119091322e13e719670fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:97:8d:d9:c5:fb:e9:62:65:22:2c:d5:4a:b0:
18:c6:74:ca:4f:56:24:bb:1a:fb:10:97:3f:ba:7f:
f2:88:52:93:b5:72:60:3e:82:5f:1f:da:da:7a:70:
24:c4:e7:31:e7:3c:b3:db:71:e1:ef:70:b5:66:18:
ed:63:c7:8c:8c:37:0d:f1:e5:79:95:9c:d8:d8:d8:
20:a9:e4:a3:ca:d0:a9:96:89:75:e8:c9:0c:71:0f:
ea:d8:e2:9e:40:cd:62:21:06:b6:f4:25:1f:05:27:
08:61:f2:07:0a:fe:8f:76:87:2b:f8:bd:df:0d:7d:
4b:83:7f:24:fe:56:46:9c:1e:b1:15:1d:cb:74:39:
1b:d2:37:10:2f:f7:98:c3:8b:58:f0:5c:bd:3c:5f:
f7:df:b0:e0:c8:bf:94:df:ad:fe:21:39:78:3a:3d:
c3:e1:9e:6b:f8:2f:03:db:12:03:cc:a3:e1:c1:2d:
b7:b7:61:ae:69:f8:1f:d6:64:73:bc:3b:2c:a3:96:
56:f8:fb:9a:2f:be:9a:cb:e4:ac:24:61:5f:a1:96:
63:af:e7:ae:72:95:d1:e3:9c:d8:f1:eb:f8:73:80:
74:7a:78:5e:2d:13:2a:6f:22:2c:34:f8:15:1c:ec:
77:32:ff:c2:4f:89:60:fc:20:43:74:f6:bc:6f:54:
15:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:AC:67:6E:62:88:5B:E0:34:71:19:09:13:22:E1:3E:71:96:70:FC
X509v3 Authority Key Identifier:
keyid:B1:8C:4A:43:00:83:7C:4E:A1:7A:D1:E3:82:1A:09:AD:53:76:40:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sYxKQwCDfE6hetHjghoJrVN2QIc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/af4e4b-2026-4bbb-9628-f08a0ae92b8d/1/sYxKQwCDfE6hetHjghoJrVN2QIc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/af4e4b-2026-4bbb-9628-f08a0ae92b8d/1/sYxKQwCDfE6hetHjghoJrVN2QIc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:f6:7a:76:c7:98:c7:72:7a:ee:70:1c:af:9b:fc:d3:98:2a:
8d:17:92:69:49:0e:7e:73:d3:5e:91:7b:52:02:e9:be:44:61:
20:29:b2:17:10:40:ec:93:71:f0:4f:39:47:d8:75:b4:25:f1:
37:32:5d:83:8f:8c:d6:96:d6:1c:dd:ca:7f:93:2c:88:ee:09:
32:4d:0d:9c:15:2d:61:f2:b3:f4:3b:6b:da:91:94:75:d6:30:
fe:4c:33:5e:69:bf:37:78:bc:65:9f:6d:8d:dd:e4:70:8f:30:
65:64:15:54:29:48:7d:95:e4:fd:0d:88:7e:fc:7e:46:bd:95:
78:2a:f9:91:89:dc:49:1a:b8:38:4e:44:36:54:64:11:8e:44:
08:ea:35:4b:77:bd:9d:4c:2e:7a:bc:5d:cc:34:01:65:12:65:
b6:eb:6a:58:07:10:32:1c:e2:92:9d:37:d5:41:a3:82:03:84:
33:32:f5:95:d2:d2:eb:cc:b8:38:cf:a8:91:79:64:0a:dc:4a:
42:49:05:20:5f:66:cd:f4:48:42:46:69:b4:1a:84:32:e6:a0:
bd:a8:c2:73:23:0d:59:0d:30:ac:d1:8a:36:ad:2d:0a:f9:eb:
f1:f7:a6:8e:c4:bb:c4:24:f1:ed:c5:df:df:18:06:99:c3:7e:
1e:a5:c8:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 09:34:53 2025 by rpki-client