Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/af31ab-2e34-47fb-9611-223a4d94709e/1/syu38vqMQUxnGIvau_t2IVaTuoc.mft
File: syu38vqMQUxnGIvau_t2IVaTuoc.mft (raw, json)
Hash identifier: tOQiS7dMr31PN//cTTO7DY+0wcHZJN9URREBekTzt/A=
Subject key identifier: 87:48:81:E8:58:28:14:9D:C8:B3:B1:D7:22:EA:A8:7F:E8:48:FB:F0
Authority key identifier: B3:2B:B7:F2:FA:8C:41:4C:67:18:8B:DA:BB:FB:76:21:56:93:BA:87
Certificate issuer: /CN=b32bb7f2fa8c414c67188bdabbfb76215693ba87
Certificate serial: 019A7149A6F09FDCC2EBB22C26DFEF968451
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/syu38vqMQUxnGIvau_t2IVaTuoc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/af31ab-2e34-47fb-9611-223a4d94709e/1/syu38vqMQUxnGIvau_t2IVaTuoc.mft
Manifest number: 051A
Signing time: Tue 11 Nov 2025 05:00:43 +0000
Manifest this update: Tue 11 Nov 2025 05:00:43 +0000
Manifest next update: Wed 12 Nov 2025 05:00:43 +0000
Files and hashes: 1: dlFU-VFKr3DcjZAchl6XqyqKK5c.roa (hash: neVLf32lP2kuQND5P5wXOeNSgGn0qOcZGwTsUoY1fZs=)
2: syu38vqMQUxnGIvau_t2IVaTuoc.crl (hash: wKfY+w2CsObRijStpbghm7Y7fd76VdI4R5b495OTBUg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/af31ab-2e34-47fb-9611-223a4d94709e/1/syu38vqMQUxnGIvau_t2IVaTuoc.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/af31ab-2e34-47fb-9611-223a4d94709e/1/syu38vqMQUxnGIvau_t2IVaTuoc.mft
rsync://rpki.ripe.net/repository/DEFAULT/syu38vqMQUxnGIvau_t2IVaTuoc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:49:a6:f0:9f:dc:c2:eb:b2:2c:26:df:ef:96:84:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b32bb7f2fa8c414c67188bdabbfb76215693ba87
Validity
Not Before: Nov 11 05:00:43 2025 GMT
Not After : Nov 12 05:00:43 2025 GMT
Subject: CN=874881e85828149dc8b3b1d722eaa87fe848fbf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:9d:94:17:79:9f:2d:ca:0e:a0:8f:59:57:66:
f0:63:df:12:46:0d:ee:a3:0f:58:52:6e:64:be:cb:
e3:df:26:a4:94:10:ae:31:40:33:bb:28:3c:58:ee:
e5:9f:eb:9c:77:f6:f5:a2:06:0d:58:07:d0:c4:76:
1f:3a:8b:50:9e:cf:00:e0:80:01:b1:86:cd:3c:e3:
cd:bd:3b:b4:52:73:9e:dd:15:64:ab:8d:7f:44:b2:
c1:02:5a:e5:14:d0:1d:94:7d:8c:3f:d2:c9:b6:ad:
ef:70:fa:6f:55:03:70:5f:70:9c:ad:ce:7a:13:86:
35:62:c6:27:a7:df:e1:7e:8a:1d:87:09:16:d9:47:
38:77:b7:af:1e:a0:2c:2b:48:df:a7:f7:5d:72:8c:
f3:e2:31:b4:00:36:ed:34:ce:14:67:02:97:aa:58:
77:c0:97:f2:c4:7a:5e:a2:7c:14:f8:bf:39:a2:2b:
36:ca:bb:e2:8c:0b:55:0f:5b:f7:91:c1:8c:09:0e:
3a:ed:92:dd:f2:12:37:f8:dd:24:79:e7:4e:47:41:
e8:6b:0d:eb:79:63:5b:b4:16:da:d8:2d:01:6b:63:
bd:a6:f2:a2:4c:ab:8c:11:05:86:64:ee:f1:76:47:
d8:64:96:a3:b5:bf:5c:6f:cb:39:98:ba:fb:47:7a:
66:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:48:81:E8:58:28:14:9D:C8:B3:B1:D7:22:EA:A8:7F:E8:48:FB:F0
X509v3 Authority Key Identifier:
keyid:B3:2B:B7:F2:FA:8C:41:4C:67:18:8B:DA:BB:FB:76:21:56:93:BA:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/syu38vqMQUxnGIvau_t2IVaTuoc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/af31ab-2e34-47fb-9611-223a4d94709e/1/syu38vqMQUxnGIvau_t2IVaTuoc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/af31ab-2e34-47fb-9611-223a4d94709e/1/syu38vqMQUxnGIvau_t2IVaTuoc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:c6:a1:e9:ef:bf:45:61:b7:9a:5c:e7:f7:55:04:73:8f:d2:
ef:92:26:1a:6d:04:9d:8a:67:9d:4e:70:62:eb:16:33:8b:52:
6f:fa:99:fb:80:99:6e:f6:1e:a0:c0:48:5f:be:97:86:22:a0:
48:0a:a6:cb:ce:dd:23:64:85:1b:95:00:f8:f5:9b:a2:81:9e:
7b:38:4e:fe:d6:25:f4:d7:db:32:72:38:cf:fd:fc:9a:7f:43:
99:d8:4a:0a:ce:b4:4b:8c:84:06:14:e4:e3:a8:95:9c:74:f6:
b4:ae:53:ed:48:a2:dd:35:03:65:29:c7:9e:c0:06:39:b8:8f:
08:dd:00:b8:ae:db:90:4b:28:9b:2d:ab:3a:16:22:da:9d:13:
2c:6b:d1:fd:ba:b0:cd:3b:17:65:dd:f5:f6:c7:87:47:ab:10:
63:30:45:f2:d4:6d:48:1e:f0:8c:85:1f:de:f7:c1:d5:09:a7:
0d:86:e7:32:80:54:2f:80:0b:5b:6b:11:f1:b6:7c:2f:a6:60:
cd:9a:99:58:b0:d4:9c:9c:fe:19:87:31:c2:d1:23:35:43:4e:
48:01:05:9d:3c:56:78:b9:f9:7d:8a:4f:0d:29:97:49:22:8d:
ad:9d:c9:50:11:c7:95:9a:20:7f:f3:60:69:c9:aa:ea:68:0c:
ae:09:e1:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:08:43 2025 by rpki-client