Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/SYbHOZTQLZH8l9kW6YCabZgeaxc.mft
File: SYbHOZTQLZH8l9kW6YCabZgeaxc.mft (raw, json)
Hash identifier: wPiea/+fLXqTbi+LXPdod4vVq6SJP8f9qUehTBWxiro=
Subject key identifier: 33:03:E1:52:70:AD:69:A1:B9:4F:42:67:B0:20:28:09:8E:90:08:E4
Authority key identifier: 49:86:C7:39:94:D0:2D:91:FC:97:D9:16:E9:80:9A:6D:98:1E:6B:17
Certificate issuer: /CN=4986c73994d02d91fc97d916e9809a6d981e6b17
Certificate serial: 019D3262CF4026088E8B37AD4D8B13D189B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SYbHOZTQLZH8l9kW6YCabZgeaxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/SYbHOZTQLZH8l9kW6YCabZgeaxc.mft
Manifest number: 1922
Signing time: Sat 28 Mar 2026 03:00:29 +0000
Manifest this update: Sat 28 Mar 2026 03:00:29 +0000
Manifest next update: Sun 29 Mar 2026 03:00:29 +0000
Files and hashes: 1: 4VyO6tQEDMUP2tLzrE4kzWWMgq8.roa (hash: Ce7KWD1zwmOm3FwKp9C1Y5E8hGZ90tuB7cIXoSzRivQ=)
2: 4jDuY8VO0qUXF7q46qoMV9gLKuM.roa (hash: viGMatLEXcz0cMUCHgF1aDM1PbJJdZT8heBBxrGwjjQ=)
3: 57_pJKO7tOgXH0MplNvXkDg8tRA.roa (hash: LO7AwILSoQbsBv8ZylAG72hZh71ZbQO1+iDt4zC/BEA=)
4: B1VUBVxCvEU8qqs7rAJJmtdKLzE.roa (hash: UEfiOpqf/O8EypdEhRwQmImaHChHVEzYmDVlh0IbMfM=)
5: DblLYXIGEMn10bjafoE3RYpg084.roa (hash: /9cYHrgPsrPV+y83ZtewE2z9k66ot5C9ns5yRKrm9zs=)
6: SYbHOZTQLZH8l9kW6YCabZgeaxc.crl (hash: 4c6nOGcx4pF1P3r7r3ugN6ZIWvx08HQL1y0XYHHGA2Y=)
7: Y3783nUrRTFZBbngMY7aX-quJlo.roa (hash: 5p9sIZIS1RVqID7GzDJiyhaYF7TJdTLEzWd1pXiwNwY=)
8: YyS0FsjSPcRe5OVpS-bddQflhs0.roa (hash: BHCA82IrgZgjYdpNT21uf8Z5RHz1RwAUgryBUXbtYGs=)
9: d8kiYzlEKQLdX-UflZDxlYGnmRo.roa (hash: pIWLP+nuBmaLwVa5s824iZjtnJtxSoE6FNL2XIkxyMI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/SYbHOZTQLZH8l9kW6YCabZgeaxc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/SYbHOZTQLZH8l9kW6YCabZgeaxc.mft
rsync://rpki.ripe.net/repository/DEFAULT/SYbHOZTQLZH8l9kW6YCabZgeaxc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 00:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:32:62:cf:40:26:08:8e:8b:37:ad:4d:8b:13:d1:89:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4986c73994d02d91fc97d916e9809a6d981e6b17
Validity
Not Before: Mar 28 03:00:29 2026 GMT
Not After : Mar 29 03:00:29 2026 GMT
Subject: CN=3303e15270ad69a1b94f4267b02028098e9008e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:9f:e0:ca:75:b2:ff:cf:14:9c:5c:ec:f3:07:
de:39:bc:a9:3f:17:00:42:a7:df:54:ea:ac:0c:0e:
1c:30:de:7c:0b:e5:b0:80:bc:86:d4:45:5a:98:e9:
d3:a9:bc:c7:91:0c:d5:17:10:61:26:6c:93:ca:2b:
dd:56:a3:00:78:37:2e:eb:43:4e:7a:1d:67:64:c2:
61:22:1a:74:51:35:e3:f3:da:f0:c7:03:8b:57:66:
3e:98:b6:b4:4d:4b:08:cc:64:80:6d:3e:20:d7:b8:
8b:7c:a4:c6:51:c9:4a:16:b1:69:6b:07:81:35:3e:
07:5d:5f:24:36:6a:f8:a2:0d:e5:31:06:85:46:0e:
ef:dc:e7:96:30:5f:d3:6c:2d:09:12:74:38:84:fa:
3b:db:bb:cd:de:21:a1:f5:4d:0c:dd:ee:18:90:13:
4c:bd:2e:39:61:69:da:1b:5d:3e:20:92:cd:be:11:
03:f3:ed:21:0c:64:3e:ab:c0:84:eb:8d:cf:d1:5e:
f1:af:61:ad:21:ea:af:ed:9e:50:f0:a3:3b:fb:73:
c3:22:48:53:7c:0c:50:c6:d1:cc:c5:bf:37:c6:7a:
46:85:5e:d7:a9:14:d9:8e:c0:e1:ea:b4:9c:41:5c:
2f:8c:27:c1:38:6b:52:d6:db:5f:7a:9d:6c:a4:1a:
95:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:03:E1:52:70:AD:69:A1:B9:4F:42:67:B0:20:28:09:8E:90:08:E4
X509v3 Authority Key Identifier:
keyid:49:86:C7:39:94:D0:2D:91:FC:97:D9:16:E9:80:9A:6D:98:1E:6B:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SYbHOZTQLZH8l9kW6YCabZgeaxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/SYbHOZTQLZH8l9kW6YCabZgeaxc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/SYbHOZTQLZH8l9kW6YCabZgeaxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:a7:54:9f:45:36:38:c6:6e:1b:3b:d5:4b:1d:b4:7a:27:63:
29:38:63:39:06:99:41:db:be:96:db:e4:32:38:18:38:95:3b:
af:2e:2d:8b:93:98:63:eb:05:9b:b0:26:79:35:c8:1d:bd:07:
1b:e9:4b:91:27:4a:61:1a:02:4c:df:69:a6:11:f8:e4:a4:3f:
05:77:8a:c9:39:45:6b:83:b3:8f:3a:21:d9:47:34:39:0a:ca:
de:f6:b8:84:d5:6f:15:7b:35:2b:5e:7b:d7:0f:01:c3:b0:c5:
b1:db:25:1f:a9:89:7e:3a:f8:4a:82:a6:ab:8a:ea:81:be:c1:
ad:11:e1:1e:f7:1b:ee:af:6e:19:e2:22:02:18:89:42:ea:83:
15:62:6c:02:35:93:62:7d:bb:ee:a5:e0:ac:93:6f:9f:82:46:
32:64:89:ab:5a:15:f8:0d:56:8e:27:bc:ca:8f:72:9d:7c:03:
3f:1f:21:e3:47:97:92:78:d2:ad:48:bc:b5:2b:45:58:a5:c5:
23:5b:c5:93:eb:74:17:25:49:a9:6e:86:ba:35:fa:9c:aa:42:
d8:7c:8e:34:db:4f:f2:9f:bc:19:9c:4d:9b:cf:ad:92:02:ae:
58:b1:d5:69:56:54:e1:a8:a4:f8:fa:c7:ab:53:33:29:b0:05:
db:23:49:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 10:27:58 2026 by rpki-client