Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/dcf32f-326d-4e40-85a3-ccc877b5a375/1/sxU2q-49e1S4MDubxpqKq76XAOQ.mft
File: sxU2q-49e1S4MDubxpqKq76XAOQ.mft (raw, json)
Hash identifier: eOgGTk1qUyfIsCX/OMC1hjpz0sRsKfQi/2Qb6j4UCUE=
Subject key identifier: 23:EF:56:AC:AB:0D:53:C0:6A:16:7D:19:93:E9:EA:9A:F6:33:CF:02
Authority key identifier: B3:15:36:AB:EE:3D:7B:54:B8:30:3B:9B:C6:9A:8A:AB:BE:97:00:E4
Certificate issuer: /CN=b31536abee3d7b54b8303b9bc69a8aabbe9700e4
Certificate serial: 01989C71C682AFADFCDF92E278AA38B94536
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sxU2q-49e1S4MDubxpqKq76XAOQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/dcf32f-326d-4e40-85a3-ccc877b5a375/1/sxU2q-49e1S4MDubxpqKq76XAOQ.mft
Manifest number: 0841
Signing time: Tue 12 Aug 2025 04:02:38 +0000
Manifest this update: Tue 12 Aug 2025 04:02:38 +0000
Manifest next update: Wed 13 Aug 2025 04:02:38 +0000
Files and hashes: 1: sxU2q-49e1S4MDubxpqKq76XAOQ.crl (hash: 3hnhlpcVzHgxdQJ+Wsbvykxd9ebOJi1gtpsknEO6JPE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/dcf32f-326d-4e40-85a3-ccc877b5a375/1/sxU2q-49e1S4MDubxpqKq76XAOQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/dcf32f-326d-4e40-85a3-ccc877b5a375/1/sxU2q-49e1S4MDubxpqKq76XAOQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/sxU2q-49e1S4MDubxpqKq76XAOQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 04:02:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9c:71:c6:82:af:ad:fc:df:92:e2:78:aa:38:b9:45:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b31536abee3d7b54b8303b9bc69a8aabbe9700e4
Validity
Not Before: Aug 12 04:02:38 2025 GMT
Not After : Aug 13 04:02:38 2025 GMT
Subject: CN=23ef56acab0d53c06a167d1993e9ea9af633cf02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:3e:a8:17:0d:f7:31:1f:a5:63:8a:a5:6a:17:
a4:30:11:29:6e:60:dc:76:c9:70:02:9a:28:1c:bf:
34:1d:f8:05:7b:99:ff:5c:9c:cf:d7:a6:96:b2:0c:
bd:03:b9:73:7e:5d:77:50:1d:84:ca:b3:c0:45:7f:
3e:33:d9:02:46:16:1e:aa:9e:34:9c:df:cb:63:63:
42:a8:bb:a8:68:31:10:d0:bd:27:ba:1f:11:c8:ee:
a2:ac:36:7a:81:c6:35:6c:70:37:44:e3:00:5d:1f:
45:e0:0a:93:18:d8:a6:5b:e5:e3:dd:69:b4:ee:3d:
50:35:9c:2b:9e:c0:ed:29:72:5c:c7:62:f4:98:b9:
7f:93:eb:54:ea:2d:c4:3e:64:07:a9:54:bd:87:d4:
2a:81:f4:e0:d5:fe:50:04:2d:b3:bf:45:0c:7a:9b:
3c:5c:57:60:c6:8b:71:24:fa:cf:a0:a4:d2:f5:bb:
dd:ac:04:68:72:b8:4b:c8:dd:44:61:bf:36:be:f7:
7d:0f:79:7f:ae:50:21:4c:8b:ff:50:f0:7a:88:d5:
c2:b0:32:58:28:9a:9b:bb:f0:46:26:22:5f:41:ee:
4e:05:e5:88:89:75:f6:70:38:de:46:a6:4a:78:5a:
27:31:74:3b:ed:03:31:b1:8c:18:ff:dc:26:b5:d4:
ad:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:EF:56:AC:AB:0D:53:C0:6A:16:7D:19:93:E9:EA:9A:F6:33:CF:02
X509v3 Authority Key Identifier:
keyid:B3:15:36:AB:EE:3D:7B:54:B8:30:3B:9B:C6:9A:8A:AB:BE:97:00:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sxU2q-49e1S4MDubxpqKq76XAOQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/dcf32f-326d-4e40-85a3-ccc877b5a375/1/sxU2q-49e1S4MDubxpqKq76XAOQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/dcf32f-326d-4e40-85a3-ccc877b5a375/1/sxU2q-49e1S4MDubxpqKq76XAOQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:85:97:58:3e:4c:08:90:e1:fa:90:70:3e:35:65:e4:1e:dd:
00:55:a5:73:7c:e2:ed:40:33:42:67:b5:fa:e2:56:a7:bd:65:
c7:0f:86:c5:2d:08:0f:24:bd:5b:8b:3e:30:00:23:62:5b:dd:
59:f1:63:9d:b5:86:1f:30:6d:b7:c2:5b:5c:69:ee:49:62:ad:
3d:66:d9:ca:99:19:1a:9a:9e:69:7b:f4:f8:14:19:68:8f:cd:
c3:aa:f0:9e:ef:ec:9e:bb:d8:e7:aa:f0:ba:ce:aa:8e:11:fb:
b8:31:4b:41:20:40:0b:a7:db:86:a8:c3:3f:42:0d:22:3a:b4:
98:87:74:86:f5:9c:b4:9f:58:45:1b:b2:a3:c1:6a:fe:e5:68:
05:eb:22:80:ad:94:42:a0:f9:57:5a:0b:e8:1d:fd:a3:3c:59:
e9:87:ce:ce:33:60:d3:9d:ce:40:09:27:12:ee:43:d5:93:be:
e5:c8:5a:27:c5:f6:02:ee:3e:b6:d4:15:29:3c:c4:ba:05:d7:
40:51:64:e6:d3:7e:e2:da:86:15:99:7f:b0:b6:96:bc:bc:41:
81:fc:05:45:0f:67:96:b2:c2:46:7e:4f:bb:c2:91:ad:81:35:
1d:ce:96:8c:36:df:3b:86:8a:3d:21:46:01:72:87:35:5f:44:
1e:58:97:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 12 13:45:41 2025 by rpki-client