Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/dadf34-1f3f-4cea-8001-e3d5d7ef4232/1/sUgIa40dx_EOND_RZXGSOadVvTQ.mft
File: sUgIa40dx_EOND_RZXGSOadVvTQ.mft (raw, json)
Hash identifier: fjUi2I19sAd1YU1qmlb+nyoNwIO9I9V0QN7bm8jOF+I=
Subject key identifier: F3:59:CC:8A:D6:A0:9D:B5:DC:9D:F9:DA:2B:5F:17:EC:2D:D0:93:10
Authority key identifier: B1:48:08:6B:8D:1D:C7:F1:0E:34:3F:D1:65:71:92:39:A7:55:BD:34
Certificate issuer: /CN=b148086b8d1dc7f10e343fd165719239a755bd34
Certificate serial: 019A4F628BF5BCB2DF32510D943E41E74C8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sUgIa40dx_EOND_RZXGSOadVvTQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/dadf34-1f3f-4cea-8001-e3d5d7ef4232/1/sUgIa40dx_EOND_RZXGSOadVvTQ.mft
Manifest number: 1089
Signing time: Tue 04 Nov 2025 15:00:49 +0000
Manifest this update: Tue 04 Nov 2025 15:00:49 +0000
Manifest next update: Wed 05 Nov 2025 15:00:49 +0000
Files and hashes: 1: sUgIa40dx_EOND_RZXGSOadVvTQ.crl (hash: X0PaMOuWMr3/dhsgXUF+SXM8vvU2xazKHMRaSrbEcgg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/dadf34-1f3f-4cea-8001-e3d5d7ef4232/1/sUgIa40dx_EOND_RZXGSOadVvTQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/dadf34-1f3f-4cea-8001-e3d5d7ef4232/1/sUgIa40dx_EOND_RZXGSOadVvTQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/sUgIa40dx_EOND_RZXGSOadVvTQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 15:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:62:8b:f5:bc:b2:df:32:51:0d:94:3e:41:e7:4c:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b148086b8d1dc7f10e343fd165719239a755bd34
Validity
Not Before: Nov 4 15:00:49 2025 GMT
Not After : Nov 5 15:00:49 2025 GMT
Subject: CN=f359cc8ad6a09db5dc9df9da2b5f17ec2dd09310
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:42:21:2c:25:30:55:43:5f:76:0e:ee:76:8e:
ba:41:1e:be:67:c7:12:f3:e0:f2:cf:92:8a:89:48:
af:20:27:13:6f:3b:b5:d9:2d:eb:56:ac:17:2e:39:
d7:d9:ca:eb:fe:ae:62:da:e3:7f:b7:7e:48:8d:c1:
d8:d2:86:99:a1:5a:ca:5e:6d:dd:84:24:e8:5d:c9:
d0:2b:5f:85:ff:55:10:10:a9:7a:da:37:3f:12:25:
cc:79:b4:03:9a:87:bf:56:bd:13:89:ac:ad:90:24:
9b:2d:23:87:57:03:3f:b7:b2:db:e5:de:28:c1:7c:
2c:78:a4:4a:52:b6:db:14:df:a4:cd:4c:c3:7e:07:
25:ff:13:7a:6e:4d:dd:70:ab:f6:74:4a:3b:54:80:
38:22:f2:60:fc:d4:a5:a4:2d:f2:ea:bd:2d:c6:85:
17:67:f3:b4:a2:10:16:56:46:93:ad:33:b9:c1:29:
99:64:e5:0f:59:04:4d:46:7e:b7:33:be:8d:8b:d5:
a7:8e:98:94:ff:bd:8d:d5:51:2f:e5:2f:4d:a3:12:
54:c2:08:67:37:b7:8e:90:9a:9d:57:e7:a3:74:de:
c4:ba:b0:af:85:54:2d:80:f1:6c:b9:5d:c0:43:3d:
01:9c:f9:e4:dc:17:a0:8a:9b:08:c6:41:39:cf:52:
5c:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:59:CC:8A:D6:A0:9D:B5:DC:9D:F9:DA:2B:5F:17:EC:2D:D0:93:10
X509v3 Authority Key Identifier:
keyid:B1:48:08:6B:8D:1D:C7:F1:0E:34:3F:D1:65:71:92:39:A7:55:BD:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sUgIa40dx_EOND_RZXGSOadVvTQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/dadf34-1f3f-4cea-8001-e3d5d7ef4232/1/sUgIa40dx_EOND_RZXGSOadVvTQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/dadf34-1f3f-4cea-8001-e3d5d7ef4232/1/sUgIa40dx_EOND_RZXGSOadVvTQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:b0:b9:41:b2:98:85:76:15:2d:dc:a0:a9:4c:83:0e:5a:c3:
19:0d:f1:35:2f:88:48:79:2a:96:c2:9b:87:3e:30:57:12:91:
8c:d3:e2:a3:83:4a:12:0a:c4:19:17:cd:de:91:2e:c3:ab:60:
f2:09:85:be:ab:74:4f:41:01:3b:07:7c:56:14:f6:cf:fd:1f:
f6:fd:f1:8c:ec:ed:28:ca:08:5f:16:ab:e2:78:cb:34:99:06:
68:59:a6:27:2b:f5:fe:63:49:8b:e0:48:44:e2:ef:1c:ed:f9:
73:5a:da:42:1a:20:fe:32:cd:a8:ec:c2:04:38:89:7d:6d:82:
d2:2c:25:db:46:05:74:b1:6b:37:8f:4b:0a:16:a1:48:9a:86:
eb:0b:1e:a8:fc:22:e5:7b:7d:b3:a6:bf:b4:22:ea:d4:24:f4:
5d:e9:de:15:6c:61:9a:e5:2f:a6:66:d4:77:33:ad:78:e6:61:
4f:fc:4c:8e:71:d9:34:54:5f:e9:9d:34:ad:17:39:4b:e1:77:
9e:56:5c:cc:a0:28:9c:a4:a0:9b:5e:c4:ec:65:59:55:08:ba:
6b:3b:c4:12:a7:94:40:6d:29:2f:2f:c3:46:14:ee:11:f2:10:
35:74:c8:86:47:3f:03:73:e2:24:cc:9a:7c:9e:cc:d9:3d:e8:
a3:08:47:41
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpPYov1vLLfMlENlD5B50yPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxNDgwODZiOGQxZGM3ZjEwZTM0M2ZkMTY1NzE5MjM5YTc1
NWJkMzQwHhcNMjUxMTA0MTUwMDQ5WhcNMjUxMTA1MTUwMDQ5WjAzMTEwLwYDVQQD
EyhmMzU5Y2M4YWQ2YTA5ZGI1ZGM5ZGY5ZGEyYjVmMTdlYzJkZDA5MzEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl0IhLCUwVUNfdg7udo66QR6+Z8cS
8+Dyz5KKiUivICcTbzu12S3rVqwXLjnX2crr/q5i2uN/t35IjcHY0oaZoVrKXm3d
hCToXcnQK1+F/1UQEKl62jc/EiXMebQDmoe/Vr0TiaytkCSbLSOHVwM/t7Lb5d4o
wXwseKRKUrbbFN+kzUzDfgcl/xN6bk3dcKv2dEo7VIA4IvJg/NSlpC3y6r0txoUX
Z/O0ohAWVkaTrTO5wSmZZOUPWQRNRn63M76Ni9WnjpiU/72N1VEv5S9NoxJUwghn
N7eOkJqdV+ejdN7EurCvhVQtgPFsuV3AQz0BnPnk3BegipsIxkE5z1JcJQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPNZzIrWoJ213J352itfF+wt0JMQMB8GA1UdIwQY
MBaAFLFICGuNHcfxDjQ/0WVxkjmnVb00MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc1VnSWE0MGR4X0VPTkRfUlpYR1NPYWRWdlRRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi9kYWRmMzQtMWYzZi00Y2VhLTgwMDEt
ZTNkNWQ3ZWY0MjMyLzEvc1VnSWE0MGR4X0VPTkRfUlpYR1NPYWRWdlRRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYi9kYWRmMzQtMWYzZi00Y2VhLTgwMDEtZTNkNWQ3ZWY0MjMy
LzEvc1VnSWE0MGR4X0VPTkRfUlpYR1NPYWRWdlRRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfrC5QbKY
hXYVLdygqUyDDlrDGQ3xNS+ISHkqlsKbhz4wVxKRjNPio4NKEgrEGRfN3pEuw6tg
8gmFvqt0T0EBOwd8VhT2z/0f9v3xjOztKMoIXxar4njLNJkGaFmmJyv1/mNJi+BI
ROLvHO35c1raQhog/jLNqOzCBDiJfW2C0iwl20YFdLFrN49LChahSJqG6wseqPwi
5Xt9s6a/tCLq1CT0XeneFWxhmuUvpmbUdzOteOZhT/xMjnHZNFRf6Z00rRc5S+F3
nlZczKAonKSgm17E7GVZVQi6azvEEqeUQG0pLy/DRhTuEfIQNXTIhkc/A3PiJMya
fJ7M2T3oowhHQQ==
-----END CERTIFICATE-----
Generated at Tue Nov 4 23:02:06 2025 by rpki-client