Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/775017-a45b-4637-a3a0-af1a0e00f823/1/sx0cKJHYgEaaINi38Y5M2GVDAEY.mft
File: sx0cKJHYgEaaINi38Y5M2GVDAEY.mft (raw, json)
Hash identifier: JDssm0pl3MuCsJnK5/HaWQaxw03cfEeUQmLXM7gO3X8=
Subject key identifier: 93:BC:28:02:66:7F:1B:30:E3:5D:12:F4:68:41:17:19:B5:51:D5:6E
Authority key identifier: B3:1D:1C:28:91:D8:80:46:9A:20:D8:B7:F1:8E:4C:D8:65:43:00:46
Certificate issuer: /CN=b31d1c2891d880469a20d8b7f18e4cd865430046
Certificate serial: 019A4D7405D7345532B605EBB550ABA3BF55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sx0cKJHYgEaaINi38Y5M2GVDAEY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/775017-a45b-4637-a3a0-af1a0e00f823/1/sx0cKJHYgEaaINi38Y5M2GVDAEY.mft
Manifest number: 03EE
Signing time: Tue 04 Nov 2025 06:00:40 +0000
Manifest this update: Tue 04 Nov 2025 06:00:40 +0000
Manifest next update: Wed 05 Nov 2025 06:00:40 +0000
Files and hashes: 1: K12F-uP3adhB5XYkvRWOwtyWFxQ.roa (hash: 4K99rP4m/GgxDIw4+Su5OB+ocoFQK/2aIqkgeWKmoU4=)
2: sx0cKJHYgEaaINi38Y5M2GVDAEY.crl (hash: aIJ9DgR9Zbv3jdY637X6HPcT6krJuZd1dlgVpW8gM7w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/775017-a45b-4637-a3a0-af1a0e00f823/1/sx0cKJHYgEaaINi38Y5M2GVDAEY.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/775017-a45b-4637-a3a0-af1a0e00f823/1/sx0cKJHYgEaaINi38Y5M2GVDAEY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sx0cKJHYgEaaINi38Y5M2GVDAEY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 06:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:74:05:d7:34:55:32:b6:05:eb:b5:50:ab:a3:bf:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b31d1c2891d880469a20d8b7f18e4cd865430046
Validity
Not Before: Nov 4 06:00:40 2025 GMT
Not After : Nov 5 06:00:40 2025 GMT
Subject: CN=93bc2802667f1b30e35d12f468411719b551d56e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:15:cd:78:66:c0:69:d2:17:a8:e8:22:6d:e8:
40:2d:f6:de:a7:da:ff:fa:71:e1:7f:6f:4b:30:6b:
f4:cb:78:9d:12:e8:6d:04:a4:5d:96:0d:7e:3a:b2:
ad:60:7e:19:c2:9e:f8:9a:11:09:77:08:3c:3e:da:
65:86:f5:c2:36:a0:17:34:c2:5f:db:17:44:20:8a:
54:f9:0d:7c:f3:bc:52:18:47:3b:0e:76:bf:2f:2d:
b7:9c:e0:73:73:64:63:89:80:67:4c:9c:52:fe:88:
ee:44:ae:2f:c6:57:27:8d:14:f2:76:02:e4:49:f4:
a9:2e:21:aa:3c:af:cc:6f:b6:2e:95:27:18:58:7a:
fa:22:17:7f:5a:6a:31:e7:30:3b:5b:b1:b0:77:01:
89:d6:0e:de:8f:71:4c:99:65:b8:26:e8:6b:41:3b:
da:8c:c3:96:71:7a:14:54:23:34:91:f7:a7:b3:2d:
53:bc:00:bf:d1:b8:49:6a:b8:6e:e7:41:f2:0e:80:
3d:46:7d:91:01:f5:b7:f7:a8:63:d0:b8:c0:a2:ac:
80:6b:f1:e4:82:f0:0b:f9:e8:1b:82:dc:8f:f8:01:
d8:c8:79:3d:c3:9b:3f:48:fb:35:71:bf:3d:3b:86:
82:0f:40:8f:90:a9:8c:ee:ae:8f:63:7a:92:29:35:
e1:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:BC:28:02:66:7F:1B:30:E3:5D:12:F4:68:41:17:19:B5:51:D5:6E
X509v3 Authority Key Identifier:
keyid:B3:1D:1C:28:91:D8:80:46:9A:20:D8:B7:F1:8E:4C:D8:65:43:00:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sx0cKJHYgEaaINi38Y5M2GVDAEY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/775017-a45b-4637-a3a0-af1a0e00f823/1/sx0cKJHYgEaaINi38Y5M2GVDAEY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/775017-a45b-4637-a3a0-af1a0e00f823/1/sx0cKJHYgEaaINi38Y5M2GVDAEY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:1a:b5:2d:41:e6:b1:39:9f:11:67:9f:b0:99:a8:50:9f:45:
b5:ec:dc:6a:15:4c:d0:8a:d1:fe:89:7c:01:b1:c4:b6:b7:f7:
c9:56:78:3e:4f:46:cd:0f:b1:a9:99:08:35:b0:a0:a0:60:dc:
47:0d:aa:24:b2:6d:bc:a7:52:f1:25:a1:33:6e:32:2f:d0:88:
75:24:05:ca:79:39:ec:c5:67:32:50:7c:50:1c:05:8f:ba:bb:
49:0f:a4:39:b3:3e:da:78:10:63:66:27:b6:c4:20:24:70:ab:
9d:a0:b2:c8:78:94:d6:17:39:2e:b9:f8:c7:eb:f0:5a:fa:57:
80:e5:b0:70:a2:a0:3f:ef:1d:79:ea:45:9f:06:5a:54:7f:74:
4d:c5:52:d4:d7:d9:c9:ca:e9:ac:85:95:de:a1:f7:1e:68:ac:
ce:2c:43:e5:c1:eb:d0:7a:36:ab:63:78:35:5a:41:76:4e:74:
04:56:9c:8b:40:04:07:7c:e8:06:0f:de:69:9c:ec:dc:0f:a8:
9a:ff:21:60:7b:07:72:82:3e:88:dc:d1:90:2f:7e:d1:99:8f:
aa:ea:3a:6d:4b:52:d3:4c:9d:64:fc:f8:65:dc:3d:4b:61:64:
7f:c9:9f:fe:3e:ab:1b:0e:c5:cc:6a:a7:72:1a:87:fb:24:fc:
dd:5f:84:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:53:30 2025 by rpki-client