Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.mft
File: sxk4vHICgkRLq9OyazSStFats5c.mft (raw, json)
Hash identifier: jQ0zU7td1jMrys1YP/WI5wUVM9MZGowruLvc1juvbnM=
Subject key identifier: 99:B7:5A:B1:71:7B:49:8B:0C:05:D3:EA:EF:A8:4C:70:5D:19:60:AC
Authority key identifier: B3:19:38:BC:72:02:82:44:4B:AB:D3:B2:6B:34:92:B4:56:AD:B3:97
Certificate issuer: /CN=b31938bc720282444babd3b26b3492b456adb397
Certificate serial: 0199FBEBD772FE203933E50CAB8897DAE354
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sxk4vHICgkRLq9OyazSStFats5c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.mft
Manifest number: 0A01
Signing time: Sun 19 Oct 2025 10:02:41 +0000
Manifest this update: Sun 19 Oct 2025 10:02:41 +0000
Manifest next update: Mon 20 Oct 2025 10:02:41 +0000
Files and hashes: 1: mMmymzplWMeJzzgdG7P3tHtpBaQ.roa (hash: /bqXbIc2T1Ug7GTSXeUaRuS3D15TA3H+LDCDm5yP2ts=)
2: sxk4vHICgkRLq9OyazSStFats5c.crl (hash: ekWDeuYIcsbK8usizZbKLCkd0yDW56esMD2HlO/q6qs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.mft
rsync://rpki.ripe.net/repository/DEFAULT/sxk4vHICgkRLq9OyazSStFats5c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:02:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:d7:72:fe:20:39:33:e5:0c:ab:88:97:da:e3:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b31938bc720282444babd3b26b3492b456adb397
Validity
Not Before: Oct 19 10:02:41 2025 GMT
Not After : Oct 20 10:02:41 2025 GMT
Subject: CN=99b75ab1717b498b0c05d3eaefa84c705d1960ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:97:fc:df:6d:c9:3d:ac:58:68:ba:49:2b:e8:
87:2c:25:60:cf:3e:90:c1:8c:6e:9c:90:18:3e:0f:
39:16:29:d1:b3:6d:f3:1f:08:eb:47:9b:fa:bc:56:
10:00:be:75:d5:7c:d3:d8:46:9d:47:10:d6:0e:1b:
b8:dc:ac:5c:00:2d:35:c1:1a:bd:35:15:19:e5:99:
b2:87:0f:a2:11:a1:57:d4:0e:1b:b5:5f:15:17:7d:
0e:06:62:90:90:9e:67:5f:35:f7:62:62:39:d1:57:
9f:5e:a6:08:5d:ca:78:d1:af:47:40:3b:58:45:cf:
e5:1b:c2:1e:6c:fa:ba:39:f0:9c:d9:a1:b9:28:c9:
b0:a6:2b:db:fd:ec:82:f1:0b:5a:9b:91:98:b1:c6:
f5:75:54:f3:9f:10:46:40:e6:74:1c:32:88:46:95:
a4:ab:c2:99:15:c1:ca:76:21:e7:6f:c0:d5:64:77:
eb:c4:5e:44:f0:9f:db:7a:88:39:9b:ad:da:35:14:
3e:30:6d:49:45:13:7d:7f:98:91:70:af:58:df:29:
e5:44:35:9c:bf:32:7e:8d:0a:2b:36:01:6a:a5:01:
bf:e2:a8:ab:c0:06:63:f9:55:4d:c1:4d:ce:b5:6e:
41:64:39:80:f6:97:86:b4:7a:b6:21:8e:46:de:6b:
c8:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:B7:5A:B1:71:7B:49:8B:0C:05:D3:EA:EF:A8:4C:70:5D:19:60:AC
X509v3 Authority Key Identifier:
keyid:B3:19:38:BC:72:02:82:44:4B:AB:D3:B2:6B:34:92:B4:56:AD:B3:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sxk4vHICgkRLq9OyazSStFats5c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:e7:94:b2:36:4e:b7:6a:7f:64:2d:80:63:08:8a:4b:30:78:
69:63:38:a9:e1:8a:3f:c6:a8:d9:ad:b1:80:e5:b4:9c:52:86:
ae:8d:fb:b5:0a:03:c6:a7:8d:35:0b:33:f5:96:07:ff:65:71:
90:d5:70:e6:fa:31:58:94:76:d4:2c:62:c7:23:e5:10:4f:88:
0f:68:89:c0:11:aa:00:48:9c:d7:c6:f3:83:c8:43:d1:62:10:
76:7e:c7:84:d3:97:75:c9:57:5b:a2:9c:b3:c0:cf:3e:4b:c2:
c8:be:33:b4:b2:90:64:dd:15:43:ef:f9:56:14:05:8e:70:b8:
61:6b:8c:52:bd:63:d1:b0:3d:68:0b:2f:d6:6c:a3:ed:88:4b:
99:75:05:c3:37:b1:7f:52:a0:fc:c5:1f:62:69:d4:0d:c8:2e:
e6:73:dd:05:d2:eb:48:06:26:30:a6:7e:ca:c0:2a:d3:3b:c3:
f1:59:74:2d:dc:fe:44:f2:b5:24:0b:2a:1c:81:3a:db:7d:66:
74:a6:e8:8c:af:38:3b:27:76:4e:08:30:3f:41:a9:b0:38:3e:
cc:36:29:ad:29:f9:61:3b:af:c7:33:79:16:47:f6:35:3d:82:
3d:49:14:90:a6:52:fc:ed:47:0b:fb:4c:84:e2:af:cc:d1:5c:
b7:af:76:7b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn769dy/iA5M+UMq4iX2uNUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzMTkzOGJjNzIwMjgyNDQ0YmFiZDNiMjZiMzQ5MmI0NTZh
ZGIzOTcwHhcNMjUxMDE5MTAwMjQxWhcNMjUxMDIwMTAwMjQxWjAzMTEwLwYDVQQD
Eyg5OWI3NWFiMTcxN2I0OThiMGMwNWQzZWFlZmE4NGM3MDVkMTk2MGFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkpf8323JPaxYaLpJK+iHLCVgzz6Q
wYxunJAYPg85FinRs23zHwjrR5v6vFYQAL511XzT2EadRxDWDhu43KxcAC01wRq9
NRUZ5Zmyhw+iEaFX1A4btV8VF30OBmKQkJ5nXzX3YmI50VefXqYIXcp40a9HQDtY
Rc/lG8IebPq6OfCc2aG5KMmwpivb/eyC8Qtam5GYscb1dVTznxBGQOZ0HDKIRpWk
q8KZFcHKdiHnb8DVZHfrxF5E8J/beog5m63aNRQ+MG1JRRN9f5iRcK9Y3ynlRDWc
vzJ+jQorNgFqpQG/4qirwAZj+VVNwU3OtW5BZDmA9peGtHq2IY5G3mvIzwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJm3WrFxe0mLDAXT6u+oTHBdGWCsMB8GA1UdIwQY
MBaAFLMZOLxyAoJES6vTsms0krRWrbOXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3hrNHZISUNna1JMcTlPeWF6U1N0RmF0czVjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC83NWRlZGUtNTQ0OS00ZDQ3LTliNTEt
OWI1ZGY4NWMxMTQwLzEvc3hrNHZISUNna1JMcTlPeWF6U1N0RmF0czVjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOC83NWRlZGUtNTQ0OS00ZDQ3LTliNTEtOWI1ZGY4NWMxMTQw
LzEvc3hrNHZISUNna1JMcTlPeWF6U1N0RmF0czVjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXeeUsjZO
t2p/ZC2AYwiKSzB4aWM4qeGKP8ao2a2xgOW0nFKGro37tQoDxqeNNQsz9ZYH/2Vx
kNVw5voxWJR21CxixyPlEE+ID2iJwBGqAEic18bzg8hD0WIQdn7HhNOXdclXW6Kc
s8DPPkvCyL4ztLKQZN0VQ+/5VhQFjnC4YWuMUr1j0bA9aAsv1myj7YhLmXUFwzex
f1Kg/MUfYmnUDcgu5nPdBdLrSAYmMKZ+ysAq0zvD8Vl0Ldz+RPK1JAsqHIE6231m
dKbojK84Oyd2TggwP0GpsDg+zDYprSn5YTuvxzN5Fkf2NT2CPUkUkKZS/O1HC/tM
hOKvzNFct692ew==
-----END CERTIFICATE-----
Generated at Sun Oct 19 18:26:58 2025 by rpki-client