Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.mft
File: sxk4vHICgkRLq9OyazSStFats5c.mft (raw, json)
Hash identifier: aOiqj79jdi+uFSREpU7UxiKnYQs1RhO4ebhCQdl1Tx0=
Subject key identifier: 95:F6:18:5E:F8:4F:05:75:A6:08:E6:AB:6E:8E:8F:32:55:D5:EF:B0
Authority key identifier: B3:19:38:BC:72:02:82:44:4B:AB:D3:B2:6B:34:92:B4:56:AD:B3:97
Certificate issuer: /CN=b31938bc720282444babd3b26b3492b456adb397
Certificate serial: 019E1DFE19FBE784FD9839A85B612EF56994
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sxk4vHICgkRLq9OyazSStFats5c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.mft
Manifest number: 0C25
Signing time: Tue 12 May 2026 21:00:52 +0000
Manifest this update: Tue 12 May 2026 21:00:52 +0000
Manifest next update: Wed 13 May 2026 21:00:52 +0000
Files and hashes: 1: eaw_KDLii_O0OZBia4ceyJvvRgg.roa (hash: 785x1F9Iz8gQQoHICXoHX9Lh+Vh5PnxM3BQ0Ya5+hPc=)
2: sxk4vHICgkRLq9OyazSStFats5c.crl (hash: W/YiyF1z5DgQ8tgnm04PM8CapQRX8Btfs4Z0HLuE1hY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.mft
rsync://rpki.ripe.net/repository/DEFAULT/sxk4vHICgkRLq9OyazSStFats5c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 21:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:fe:19:fb:e7:84:fd:98:39:a8:5b:61:2e:f5:69:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b31938bc720282444babd3b26b3492b456adb397
Validity
Not Before: May 12 21:00:52 2026 GMT
Not After : May 13 21:00:52 2026 GMT
Subject: CN=95f6185ef84f0575a608e6ab6e8e8f3255d5efb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:7f:4c:19:30:18:63:9c:df:26:2c:2f:08:7f:
21:3f:47:57:1b:9e:61:fc:59:a1:10:34:10:71:14:
0d:1e:2b:3d:45:30:dd:a6:67:f0:68:f5:a3:25:a4:
da:fb:fb:65:72:92:c7:5c:04:11:42:7e:13:e3:b0:
2a:ad:04:82:cf:06:77:24:25:00:88:1d:79:1c:f7:
07:f5:c3:41:41:35:2b:d6:65:47:8b:75:b0:cb:2d:
78:a4:f0:d6:38:40:e4:d3:ff:be:da:3b:44:60:a6:
01:10:4c:d5:e8:3c:96:df:b2:28:d3:94:eb:36:e1:
02:e7:f0:11:f8:a0:d8:56:40:fe:32:14:0d:a1:66:
27:ab:40:ec:88:11:33:a3:25:e5:bf:34:a4:d9:8a:
26:c8:aa:f4:c6:7e:74:10:42:03:c0:e0:85:17:80:
48:4f:29:06:ac:63:00:ec:50:01:95:1a:7b:14:0d:
c1:35:88:08:2c:30:a2:74:86:05:27:00:c7:af:94:
3d:9b:23:22:8c:53:83:31:8c:e5:fb:d9:b3:0f:f5:
79:58:03:bf:a2:10:c1:f3:41:b2:3c:6d:e2:55:1f:
3f:7e:2e:dc:30:7e:80:15:22:e9:91:f4:f4:56:0c:
d0:fd:2e:eb:41:b8:75:df:0a:84:ae:0b:e1:df:8b:
52:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:F6:18:5E:F8:4F:05:75:A6:08:E6:AB:6E:8E:8F:32:55:D5:EF:B0
X509v3 Authority Key Identifier:
keyid:B3:19:38:BC:72:02:82:44:4B:AB:D3:B2:6B:34:92:B4:56:AD:B3:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sxk4vHICgkRLq9OyazSStFats5c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:a1:d0:37:c6:6e:ed:fa:ee:fa:e2:4f:68:2d:7e:5a:7e:cb:
eb:8a:e3:bb:65:c6:85:1d:56:f5:a4:58:a0:5d:59:ff:13:3d:
e4:4d:c3:f6:ef:59:70:79:f7:11:15:e2:dc:1e:29:48:d2:d4:
5f:84:3b:06:cb:a5:a1:4c:2c:06:9b:94:66:50:2f:2d:61:e0:
79:fc:64:fa:e5:52:ef:90:98:0b:95:f5:34:80:d5:35:3c:62:
e7:35:07:0b:53:dc:79:51:6a:18:e1:e2:53:e1:11:96:97:5e:
0e:01:75:74:a3:f0:be:a9:6b:b9:fe:5e:5b:0c:e4:ac:02:18:
dd:38:6b:25:22:78:ba:93:94:e0:8d:1d:7c:13:34:77:b6:76:
98:ed:fb:d1:e2:04:9b:0e:71:06:e0:1c:84:86:71:45:ba:3b:
d8:37:44:ee:ef:1b:ea:bb:5a:05:e7:95:8b:70:c7:c5:ee:3a:
86:b0:2b:fb:34:c9:f6:ce:ad:0f:37:a4:99:f4:03:1b:f6:7f:
d8:fc:d5:04:94:c5:1e:9d:43:0a:82:60:44:39:43:23:56:67:
81:e9:58:3f:88:74:d3:f6:98:44:63:aa:63:37:0c:fb:ea:18:
67:5d:77:47:fc:46:f1:b0:36:a7:6d:c9:e8:8a:b7:94:b5:e9:
fb:96:9d:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 08:20:58 2026 by rpki-client