Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/af31ab-2e34-47fb-9611-223a4d94709e/1/syu38vqMQUxnGIvau_t2IVaTuoc.mft
File: syu38vqMQUxnGIvau_t2IVaTuoc.mft (raw, json)
Hash identifier: 3p0lV1tPj0DBGgfEeZCco7XqnK7TFqeAi7DjXoeqQhg=
Subject key identifier: 1A:64:B0:1B:34:31:17:2D:FC:43:A1:8C:22:C3:07:6B:10:9A:A2:D7
Authority key identifier: B3:2B:B7:F2:FA:8C:41:4C:67:18:8B:DA:BB:FB:76:21:56:93:BA:87
Certificate issuer: /CN=b32bb7f2fa8c414c67188bdabbfb76215693ba87
Certificate serial: 0199233111865EBEA4CFA2FDABB5434769DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/syu38vqMQUxnGIvau_t2IVaTuoc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/af31ab-2e34-47fb-9611-223a4d94709e/1/syu38vqMQUxnGIvau_t2IVaTuoc.mft
Manifest number: 046D
Signing time: Sun 07 Sep 2025 08:00:42 +0000
Manifest this update: Sun 07 Sep 2025 08:00:42 +0000
Manifest next update: Mon 08 Sep 2025 08:00:42 +0000
Files and hashes: 1: dlFU-VFKr3DcjZAchl6XqyqKK5c.roa (hash: neVLf32lP2kuQND5P5wXOeNSgGn0qOcZGwTsUoY1fZs=)
2: syu38vqMQUxnGIvau_t2IVaTuoc.crl (hash: meXwGx+mrY4n7+IRTLdjObfjs9JpzPNQAELez3m9y7I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/af31ab-2e34-47fb-9611-223a4d94709e/1/syu38vqMQUxnGIvau_t2IVaTuoc.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/af31ab-2e34-47fb-9611-223a4d94709e/1/syu38vqMQUxnGIvau_t2IVaTuoc.mft
rsync://rpki.ripe.net/repository/DEFAULT/syu38vqMQUxnGIvau_t2IVaTuoc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:31:11:86:5e:be:a4:cf:a2:fd:ab:b5:43:47:69:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b32bb7f2fa8c414c67188bdabbfb76215693ba87
Validity
Not Before: Sep 7 08:00:42 2025 GMT
Not After : Sep 8 08:00:42 2025 GMT
Subject: CN=1a64b01b3431172dfc43a18c22c3076b109aa2d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:6b:2d:67:f2:94:e5:f0:5d:a1:d2:f2:77:4c:
3e:8e:87:f5:dd:c7:d1:4f:7c:3e:a8:bd:d3:aa:f2:
22:9c:77:fd:d6:dc:bc:45:36:29:df:e8:f2:8d:40:
df:b1:3b:c1:b3:7d:ce:66:56:88:1c:cf:95:46:6d:
1f:78:62:42:a9:6b:01:1f:48:8e:e6:8a:42:5d:39:
8a:2a:7f:75:a1:bd:13:f5:82:5f:09:0b:7a:48:68:
88:88:54:0b:9f:fc:9b:fa:f8:f3:6d:20:8c:29:9f:
33:b3:c9:f1:be:e6:3e:4b:cb:c3:6b:af:67:95:fb:
17:a4:75:db:f1:4d:d3:99:ab:fd:fd:41:82:6a:13:
34:d2:c8:e6:5a:e3:15:74:cb:82:20:d0:8d:4d:e8:
fe:8c:af:3b:75:c0:86:ee:b5:96:8d:fc:8f:de:7f:
ee:03:fe:3b:18:0d:8b:9f:b2:8a:b9:68:d1:1d:cc:
d3:4e:18:2c:e4:f7:8a:84:6c:b7:4f:b8:40:0f:f3:
c4:93:24:8b:ee:6e:89:17:d7:54:5c:a2:fc:34:a4:
7f:90:1e:74:9e:50:8f:08:2e:0d:ef:70:d8:ce:cb:
f5:9e:b0:d6:26:10:02:d4:17:0c:2d:88:10:8e:42:
56:24:52:ee:cc:9e:12:49:de:87:27:cf:2d:84:35:
5e:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:64:B0:1B:34:31:17:2D:FC:43:A1:8C:22:C3:07:6B:10:9A:A2:D7
X509v3 Authority Key Identifier:
keyid:B3:2B:B7:F2:FA:8C:41:4C:67:18:8B:DA:BB:FB:76:21:56:93:BA:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/syu38vqMQUxnGIvau_t2IVaTuoc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/af31ab-2e34-47fb-9611-223a4d94709e/1/syu38vqMQUxnGIvau_t2IVaTuoc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/af31ab-2e34-47fb-9611-223a4d94709e/1/syu38vqMQUxnGIvau_t2IVaTuoc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:99:df:83:1e:d3:68:90:50:9c:0e:71:a5:4a:68:33:88:88:
ad:d1:75:97:c4:e7:9d:a0:63:7d:08:dc:d7:f2:03:97:c2:58:
6f:41:91:c9:5c:05:43:43:21:d7:86:3a:82:41:2c:67:ac:69:
56:79:95:ad:46:c7:2c:5f:e6:e1:bb:cb:33:97:6a:e8:b6:d5:
30:53:2b:ff:fa:39:d5:81:78:01:39:8f:8f:01:9c:21:b3:be:
2a:f7:92:87:18:b5:62:af:ec:58:38:d2:2a:22:10:af:a4:db:
9b:97:c5:c9:15:92:15:a8:92:ed:6a:f2:db:03:44:fe:06:5b:
1f:d2:2f:4c:d1:7e:b9:2d:b7:0d:50:a6:06:b9:76:90:db:a7:
e9:1e:3d:da:ef:e9:fa:cd:c4:6a:c4:6c:52:78:d5:e5:bd:d3:
11:0e:14:d1:04:eb:41:fa:66:62:83:a2:6b:c3:32:f0:20:31:
60:ba:89:b2:c2:64:b1:7f:e5:b6:99:09:14:34:f4:86:3b:40:
f9:11:00:ed:7c:67:27:bd:b2:45:d9:4b:35:33:43:b2:c5:2f:
0e:88:84:d6:2c:4d:cc:ac:85:91:52:6a:4c:36:28:c0:21:8c:
dc:54:f4:9d:7f:a7:e7:8b:c5:f7:1e:08:e2:5a:19:be:c5:01:
64:42:4d:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:30:49 2025 by rpki-client