Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/af4e4b-2026-4bbb-9628-f08a0ae92b8d/1/sYxKQwCDfE6hetHjghoJrVN2QIc.mft
File: sYxKQwCDfE6hetHjghoJrVN2QIc.mft (raw, json)
Hash identifier: smFLggjLKfQdnfnMtZK88bR0jad4vvxbPsGamxIsH04=
Subject key identifier: 0D:59:F9:A5:74:71:1D:F3:6F:A3:24:33:5A:DC:D6:13:9E:23:93:79
Authority key identifier: B1:8C:4A:43:00:83:7C:4E:A1:7A:D1:E3:82:1A:09:AD:53:76:40:87
Certificate issuer: /CN=b18c4a4300837c4ea17ad1e3821a09ad53764087
Certificate serial: 019936F0835334BA2FFEEE1880D044B257EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sYxKQwCDfE6hetHjghoJrVN2QIc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/af4e4b-2026-4bbb-9628-f08a0ae92b8d/1/sYxKQwCDfE6hetHjghoJrVN2QIc.mft
Manifest number: 0F14
Signing time: Thu 11 Sep 2025 04:02:35 +0000
Manifest this update: Thu 11 Sep 2025 04:02:35 +0000
Manifest next update: Fri 12 Sep 2025 04:02:35 +0000
Files and hashes: 1: 2pelV4FedV45XCLKgpg6a9aqnGU.roa (hash: JAMnQ7Ljsuvl5vUTIxSzwNI1IGVq+RkAOKUEPceEiRc=)
2: sYxKQwCDfE6hetHjghoJrVN2QIc.crl (hash: 2iAHUE+Viitv0lPChFEXgtlVhTV85jbF0nY0s7wcBt8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/af4e4b-2026-4bbb-9628-f08a0ae92b8d/1/sYxKQwCDfE6hetHjghoJrVN2QIc.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/af4e4b-2026-4bbb-9628-f08a0ae92b8d/1/sYxKQwCDfE6hetHjghoJrVN2QIc.mft
rsync://rpki.ripe.net/repository/DEFAULT/sYxKQwCDfE6hetHjghoJrVN2QIc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Sep 2025 04:02:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:36:f0:83:53:34:ba:2f:fe:ee:18:80:d0:44:b2:57:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b18c4a4300837c4ea17ad1e3821a09ad53764087
Validity
Not Before: Sep 11 04:02:35 2025 GMT
Not After : Sep 12 04:02:35 2025 GMT
Subject: CN=0d59f9a574711df36fa324335adcd6139e239379
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:49:ff:bb:d3:3a:06:95:84:fb:60:53:4f:30:
28:e3:e2:55:af:04:58:a5:aa:96:e0:b6:ad:00:15:
69:eb:84:d2:20:05:05:7e:de:13:e8:38:6c:a5:ef:
bf:0c:46:6b:dd:6e:28:60:f6:3a:4a:56:13:44:20:
38:00:71:f8:9b:18:d4:57:af:bd:fb:cb:3d:f6:86:
5d:e2:bb:40:7f:ce:04:f9:81:ce:c5:c2:3d:68:4a:
50:2e:1b:96:23:b1:c0:c8:94:f0:4d:a0:10:3e:9c:
ca:c1:37:c6:c8:d3:79:8a:89:1f:db:1c:bd:8c:b9:
29:45:db:b7:4c:71:69:72:a9:45:73:83:c9:b3:4f:
f4:7b:ac:c1:d9:0c:a8:6f:d8:51:09:a0:0d:c6:3c:
0c:48:67:a5:00:5b:98:a3:13:3c:d9:bb:8e:55:b7:
fe:ce:e4:36:42:37:19:f1:29:93:94:c2:57:c0:c4:
b7:cf:91:09:30:93:0e:62:9b:ed:20:58:90:44:c0:
d0:d3:4b:39:2d:7c:92:f5:41:f6:fe:cd:81:44:2b:
51:3e:54:19:25:ce:75:45:2e:e8:b7:89:d0:82:29:
d8:4b:5b:98:fc:7a:e4:d4:7e:1c:d0:ab:8d:51:e7:
a8:c3:63:82:4c:1f:ca:20:64:ba:ad:58:6d:03:ef:
11:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:59:F9:A5:74:71:1D:F3:6F:A3:24:33:5A:DC:D6:13:9E:23:93:79
X509v3 Authority Key Identifier:
keyid:B1:8C:4A:43:00:83:7C:4E:A1:7A:D1:E3:82:1A:09:AD:53:76:40:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sYxKQwCDfE6hetHjghoJrVN2QIc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/af4e4b-2026-4bbb-9628-f08a0ae92b8d/1/sYxKQwCDfE6hetHjghoJrVN2QIc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/af4e4b-2026-4bbb-9628-f08a0ae92b8d/1/sYxKQwCDfE6hetHjghoJrVN2QIc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:96:c9:b6:db:c2:bc:70:46:47:89:68:ae:cc:ed:7e:5d:fd:
87:b6:29:5e:19:76:80:89:b5:20:44:a6:7f:37:1f:00:6b:28:
a6:f4:01:5d:02:7b:65:66:07:24:80:04:38:66:ef:00:29:70:
c7:2d:80:2c:25:16:ae:53:42:a8:c4:cc:d2:9c:1a:a9:13:9b:
ef:49:12:41:9f:80:d8:57:ff:10:da:90:4a:66:07:f6:10:94:
ef:71:b0:b2:42:4d:ab:7d:ad:da:74:54:57:5a:f0:8b:5a:26:
cb:be:9a:0d:8f:a9:d9:b2:de:de:6e:0c:e1:47:87:44:44:62:
74:3e:7a:7f:82:10:4b:99:af:7b:3f:ca:98:a4:91:19:c3:ec:
01:6e:8f:94:f8:8a:6b:13:48:26:e7:ed:d6:6e:c1:cc:ac:8f:
a3:21:7e:ee:69:90:35:b2:15:db:10:83:32:2d:be:37:60:45:
87:11:f4:54:8d:b5:31:32:b0:51:0c:60:c5:dc:b0:ca:3b:48:
9b:ad:fd:6c:d8:cc:c0:ff:3b:2e:98:4d:2f:44:ad:b8:d3:eb:
20:ab:26:5c:d3:75:1b:f7:eb:36:78:d5:54:40:a9:46:59:7a:
0d:c4:94:16:cb:45:85:99:cf:bf:17:58:56:76:ce:ec:cc:a7:
5d:03:82:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 08:14:57 2025 by rpki-client