Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/dcf32f-326d-4e40-85a3-ccc877b5a375/1/sxU2q-49e1S4MDubxpqKq76XAOQ.mft
File: sxU2q-49e1S4MDubxpqKq76XAOQ.mft (raw, json)
Hash identifier: sdKITw0wATlw2TLktl1S65hWplX3EYp5AciT2lb3LT8=
Subject key identifier: B5:0E:B6:5A:D2:93:27:68:E4:AC:51:B7:80:69:49:C6:CD:0F:63:AE
Authority key identifier: B3:15:36:AB:EE:3D:7B:54:B8:30:3B:9B:C6:9A:8A:AB:BE:97:00:E4
Certificate issuer: /CN=b31536abee3d7b54b8303b9bc69a8aabbe9700e4
Certificate serial: 019A50E332B9C3DFE694D6CF5B7EA4422BC5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sxU2q-49e1S4MDubxpqKq76XAOQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/dcf32f-326d-4e40-85a3-ccc877b5a375/1/sxU2q-49e1S4MDubxpqKq76XAOQ.mft
Manifest number: 0923
Signing time: Tue 04 Nov 2025 22:00:58 +0000
Manifest this update: Tue 04 Nov 2025 22:00:58 +0000
Manifest next update: Wed 05 Nov 2025 22:00:58 +0000
Files and hashes: 1: sxU2q-49e1S4MDubxpqKq76XAOQ.crl (hash: FMt0Ye0o2pFWfcLo2JOYLfoDcOh+7R6aVIMntA3U73M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/dcf32f-326d-4e40-85a3-ccc877b5a375/1/sxU2q-49e1S4MDubxpqKq76XAOQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/dcf32f-326d-4e40-85a3-ccc877b5a375/1/sxU2q-49e1S4MDubxpqKq76XAOQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/sxU2q-49e1S4MDubxpqKq76XAOQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:e3:32:b9:c3:df:e6:94:d6:cf:5b:7e:a4:42:2b:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b31536abee3d7b54b8303b9bc69a8aabbe9700e4
Validity
Not Before: Nov 4 22:00:58 2025 GMT
Not After : Nov 5 22:00:58 2025 GMT
Subject: CN=b50eb65ad2932768e4ac51b7806949c6cd0f63ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f3:f9:94:97:fa:66:26:59:da:a9:19:6a:d8:
5f:95:a2:f5:d0:35:c0:97:e1:01:95:c3:46:a3:9f:
6e:8e:d2:98:d1:e4:f1:05:41:9f:81:97:a6:32:4b:
93:9a:19:fe:88:42:be:1a:66:e2:71:5a:87:6c:95:
2c:68:8a:a9:81:22:32:37:33:6e:45:7f:66:ba:92:
c5:69:f5:f9:a7:6e:76:fc:d5:ff:bf:38:a6:f2:2f:
83:ef:0a:2d:51:0d:a9:8f:3d:8e:d4:9d:e6:80:3d:
de:2b:2d:77:7a:2d:09:c4:c2:8c:40:8b:6b:fe:10:
a7:00:9c:33:1b:45:d2:bf:1a:82:05:b5:e6:63:b2:
99:23:ed:2c:75:38:e6:50:11:d3:50:40:b6:69:7d:
56:d2:0f:69:ca:72:4c:af:4b:1c:de:c0:7b:6e:eb:
f1:82:e7:42:f1:6f:44:86:67:fa:49:df:67:9d:1d:
ce:17:8c:6b:14:31:2c:83:f1:18:dd:77:62:3b:6a:
29:21:bb:4a:17:5b:0b:26:90:46:c5:fe:1d:f4:97:
e4:53:41:a5:61:e0:b9:46:ce:98:74:0c:5c:ed:dc:
64:81:8f:39:0c:3f:73:c3:93:94:f2:03:ad:31:25:
c6:f6:b8:99:e5:37:bf:4e:07:2e:0f:16:8f:34:d3:
57:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:0E:B6:5A:D2:93:27:68:E4:AC:51:B7:80:69:49:C6:CD:0F:63:AE
X509v3 Authority Key Identifier:
keyid:B3:15:36:AB:EE:3D:7B:54:B8:30:3B:9B:C6:9A:8A:AB:BE:97:00:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sxU2q-49e1S4MDubxpqKq76XAOQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/dcf32f-326d-4e40-85a3-ccc877b5a375/1/sxU2q-49e1S4MDubxpqKq76XAOQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/dcf32f-326d-4e40-85a3-ccc877b5a375/1/sxU2q-49e1S4MDubxpqKq76XAOQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:1b:b1:95:09:77:13:fa:a7:39:7e:68:db:7a:0e:b2:69:7b:
34:82:28:2a:f1:2a:4e:23:e0:7e:69:95:e4:a2:bb:e1:f8:42:
b0:ff:67:d6:db:0e:f0:00:e8:f0:a5:c0:f1:13:4d:1f:22:ba:
da:3c:09:b7:33:fa:3f:d2:c8:ce:d9:e2:c1:37:03:64:c9:f6:
62:22:eb:49:e3:35:68:1a:04:bc:28:ec:ca:ea:cd:7c:4a:d5:
16:3c:a9:4d:fe:e3:f1:25:e3:37:71:5d:00:1f:d5:90:dc:3d:
1a:06:a5:57:9a:f5:8f:cc:ca:19:e2:0b:a4:47:23:24:f2:a7:
b9:2b:3c:d6:ee:e7:bc:99:3f:e3:56:9a:05:60:d8:c5:56:8c:
67:28:fb:8e:6c:76:83:a6:1d:13:1f:02:a8:86:68:af:30:77:
df:08:3f:dc:7b:d3:bb:ac:d2:e9:2c:cc:49:1d:67:69:b8:bd:
e0:a8:1d:a1:f7:ae:d8:e0:7d:ac:bb:a2:4e:34:02:67:f9:e8:
1f:69:b3:03:c3:56:f4:99:15:ca:4c:10:f9:e6:2f:8e:19:3f:
a0:5d:bd:18:1b:ea:fc:2a:dd:a5:cc:4b:89:de:e7:9e:22:67:
8d:d4:06:f1:28:29:8a:8f:b2:45:c9:d3:2b:c0:94:95:d1:13:
0d:ef:fb:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:24:38 2025 by rpki-client