Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/SYbHOZTQLZH8l9kW6YCabZgeaxc.mft
File: SYbHOZTQLZH8l9kW6YCabZgeaxc.mft (raw, json)
Hash identifier: dyZLLCkHeb7rPcWz+I8mvHTacZOskIcvy4mvhj/qVUA=
Subject key identifier: 51:F9:B9:C9:31:C6:85:C9:E1:CF:15:C3:00:10:66:33:4B:B2:E0:99
Authority key identifier: 49:86:C7:39:94:D0:2D:91:FC:97:D9:16:E9:80:9A:6D:98:1E:6B:17
Certificate issuer: /CN=4986c73994d02d91fc97d916e9809a6d981e6b17
Certificate serial: 0198D5F1CBB77C464120FBADB46C73547B7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SYbHOZTQLZH8l9kW6YCabZgeaxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/SYbHOZTQLZH8l9kW6YCabZgeaxc.mft
Manifest number: 16CA
Signing time: Sat 23 Aug 2025 08:00:49 +0000
Manifest this update: Sat 23 Aug 2025 08:00:49 +0000
Manifest next update: Sun 24 Aug 2025 08:00:49 +0000
Files and hashes: 1: 0bnoilJqdREsxptDb-ivl7D9RO8.roa (hash: xwj9p29IkVHnJneRSxNDQqnx9KWrH7LG11fEPkl1kbA=)
2: 2H8bk0scnZWZCejbJpVwKzPODxU.roa (hash: hMVwt69RjByg01GyzZs8pwlz2+q4Wpy8Ui3CHMqWQVM=)
3: 4eOCFNOBECX2Vv6GWaN08OGzQEk.roa (hash: SHh7w4LZwKE1It7Jc8tpdQbiqOFLXylf+YxEAvmby8E=)
4: 6eTh4HjpwhP0yy4gl6mlpnwuhNo.roa (hash: X74Sl2aaVeXnMe6YeKSUm/NLH9L0iQzrWyncVKk85OU=)
5: NTSXzohORWZtttaszZbsV3DOOYA.roa (hash: MaEVUaFakhLRs6dfJtYL3YU29Q2ZDO5rsA2rJVtVQpY=)
6: SYbHOZTQLZH8l9kW6YCabZgeaxc.crl (hash: vyv+ctaObemhIWIjA7iRsy+rfuT6QDtu96SMfm8KMT0=)
7: dEkWV8xPj6ZjKfgx5t3dIacQr1A.roa (hash: ZOk1wKX5K0Mx4fspQclTvx+3kOne5shTmWgvCBY9O/Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/SYbHOZTQLZH8l9kW6YCabZgeaxc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/SYbHOZTQLZH8l9kW6YCabZgeaxc.mft
rsync://rpki.ripe.net/repository/DEFAULT/SYbHOZTQLZH8l9kW6YCabZgeaxc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:cb:b7:7c:46:41:20:fb:ad:b4:6c:73:54:7b:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4986c73994d02d91fc97d916e9809a6d981e6b17
Validity
Not Before: Aug 23 08:00:49 2025 GMT
Not After : Aug 24 08:00:49 2025 GMT
Subject: CN=51f9b9c931c685c9e1cf15c3001066334bb2e099
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:e5:b9:03:49:1a:fb:1b:c5:8c:9e:95:5b:e7:
ba:62:b4:46:43:10:ba:46:9b:4e:97:2c:f0:d2:05:
06:03:44:a7:a2:23:3c:18:fd:dc:ed:b1:c9:1a:86:
4d:ce:f0:98:aa:ca:1f:c2:42:c0:f6:ff:8f:ba:aa:
ea:2c:f7:5c:98:e2:9b:d9:91:87:4e:79:87:33:88:
d5:6d:68:53:8d:4d:0b:d3:9a:dd:c7:2c:11:c8:a8:
de:30:93:7b:c6:d9:87:7c:54:6c:2e:3b:94:cb:5e:
02:06:02:02:ab:94:7f:95:10:ae:25:da:da:0d:d7:
ca:cd:f7:0f:8c:57:52:39:68:46:82:16:d0:b7:4b:
5b:21:ad:22:0d:05:35:ac:9c:97:c6:21:c1:d8:29:
b2:8d:51:f3:e9:f0:ea:95:e4:af:b3:1a:1d:27:e6:
a8:24:ab:e9:b6:50:31:b4:45:d3:ed:9a:1a:af:23:
8d:ad:18:05:fe:e7:5c:83:2c:da:e9:d6:8d:9d:3b:
31:33:ae:51:00:e7:52:ec:52:6a:8d:fe:77:1e:6d:
a7:1a:a7:d0:1f:24:d1:59:d7:e4:a3:02:6d:4d:4e:
95:5d:59:b4:89:42:84:fc:aa:a8:1d:d6:db:00:0d:
50:1d:33:7d:ef:0e:42:12:9b:4b:4f:25:76:8c:eb:
80:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:F9:B9:C9:31:C6:85:C9:E1:CF:15:C3:00:10:66:33:4B:B2:E0:99
X509v3 Authority Key Identifier:
keyid:49:86:C7:39:94:D0:2D:91:FC:97:D9:16:E9:80:9A:6D:98:1E:6B:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SYbHOZTQLZH8l9kW6YCabZgeaxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/SYbHOZTQLZH8l9kW6YCabZgeaxc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/SYbHOZTQLZH8l9kW6YCabZgeaxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:b1:55:65:80:6c:03:17:2b:cb:82:0e:a9:3c:22:ad:2e:d5:
ba:29:b8:b7:cf:54:fb:b8:70:2f:14:e7:97:71:9e:71:cc:62:
7b:63:3a:9f:d3:e2:37:2f:61:a7:b0:0f:85:5f:2c:4d:a8:5e:
6b:89:b1:c1:70:33:5c:4e:d2:58:6e:13:30:56:ff:10:b7:1f:
0d:6b:df:43:d2:22:7e:ab:16:71:1e:dc:25:0c:3d:72:45:9d:
79:46:94:93:1c:d0:e6:b2:53:0f:f9:65:2d:46:9c:f1:9e:1d:
fd:86:b2:19:72:9b:d3:31:b1:c3:8b:25:66:66:83:a4:3f:51:
74:b9:bf:ef:97:ed:5b:61:4d:cc:9f:f8:44:12:7a:6c:cc:33:
f2:66:59:d9:19:e5:9c:28:ac:e7:b7:c8:02:61:51:fd:42:20:
73:7e:3c:fc:ce:67:e8:68:71:e0:67:00:39:bb:f1:f2:f5:4c:
c9:4a:8f:29:dd:70:f8:7f:b5:e7:fa:94:a5:fd:4c:7b:e8:ed:
11:cc:f9:6f:30:69:44:30:2d:4d:66:0c:a8:79:ab:74:c6:3b:
9a:7a:51:45:3e:9b:d5:44:20:f8:9b:04:24:9b:a2:eb:37:08:
18:86:e5:de:fe:a5:df:76:42:ef:b0:6b:fa:0a:0b:cb:e0:c6:
2c:c5:d7:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:50:58 2025 by rpki-client