Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.mft
File: sxk4vHICgkRLq9OyazSStFats5c.mft (raw, json)
Hash identifier: fErd7gOl0IJV7bFJVQtTGJpMT2i8XkkbSrE+XooHibw=
Subject key identifier: D7:7F:C4:66:FF:AD:61:15:95:55:0B:B4:F7:57:26:C4:72:6A:BF:9E
Authority key identifier: B3:19:38:BC:72:02:82:44:4B:AB:D3:B2:6B:34:92:B4:56:AD:B3:97
Certificate issuer: /CN=b31938bc720282444babd3b26b3492b456adb397
Certificate serial: 0198D6610C0D8D0ADE777A2326C9F5365E68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sxk4vHICgkRLq9OyazSStFats5c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.mft
Manifest number: 0969
Signing time: Sat 23 Aug 2025 10:02:20 +0000
Manifest this update: Sat 23 Aug 2025 10:02:20 +0000
Manifest next update: Sun 24 Aug 2025 10:02:20 +0000
Files and hashes: 1: mMmymzplWMeJzzgdG7P3tHtpBaQ.roa (hash: /bqXbIc2T1Ug7GTSXeUaRuS3D15TA3H+LDCDm5yP2ts=)
2: sxk4vHICgkRLq9OyazSStFats5c.crl (hash: vWDJOJhaaMVyq2VO1S7BAas1CZBU8pa31LeQaPqlxNQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.mft
rsync://rpki.ripe.net/repository/DEFAULT/sxk4vHICgkRLq9OyazSStFats5c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:61:0c:0d:8d:0a:de:77:7a:23:26:c9:f5:36:5e:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b31938bc720282444babd3b26b3492b456adb397
Validity
Not Before: Aug 23 10:02:20 2025 GMT
Not After : Aug 24 10:02:20 2025 GMT
Subject: CN=d77fc466ffad611595550bb4f75726c4726abf9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:5b:0b:a2:ad:94:aa:f2:cc:a0:d9:a9:be:19:
bb:f3:3e:4e:25:79:a3:89:fc:ca:5f:a7:29:d4:30:
ea:62:00:5a:91:5c:ad:e1:ba:14:a3:a7:de:69:38:
14:60:9c:bf:1e:2b:a3:70:bf:00:75:aa:b5:af:ce:
20:6e:4d:5b:42:69:fc:7b:77:77:2c:6c:1e:12:c7:
c0:16:82:9f:0a:02:0d:a7:18:41:f1:70:8f:86:e0:
25:27:33:d1:77:37:12:e7:d5:32:4a:68:83:4b:af:
2f:8a:9c:ee:90:4f:07:b2:83:85:52:6b:cb:1f:ec:
f4:32:60:43:c5:34:59:5f:76:5c:ba:d7:1a:44:b9:
c5:bf:99:42:aa:2f:c3:df:21:18:d0:ca:33:92:eb:
2d:3b:23:ae:e3:4c:42:bd:b0:1d:65:06:76:e7:c6:
58:a8:83:2b:f3:60:03:99:2b:91:4a:36:d2:79:b1:
bd:35:33:07:01:5b:05:68:45:10:18:9e:16:9d:bf:
09:45:7c:02:ae:01:dc:7f:22:94:a1:77:e1:be:89:
60:2d:9e:48:19:87:ce:9e:3c:85:0e:ae:fa:88:4d:
d3:42:c8:ca:a8:af:df:c3:0f:5d:b1:08:fe:f3:55:
e4:c6:f2:3b:a8:45:d4:74:7e:58:8f:43:01:74:04:
c9:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:7F:C4:66:FF:AD:61:15:95:55:0B:B4:F7:57:26:C4:72:6A:BF:9E
X509v3 Authority Key Identifier:
keyid:B3:19:38:BC:72:02:82:44:4B:AB:D3:B2:6B:34:92:B4:56:AD:B3:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sxk4vHICgkRLq9OyazSStFats5c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:ba:cb:94:7b:4a:f1:12:d7:0f:d7:7e:6d:57:ff:eb:d8:5e:
af:c9:b4:85:2d:4a:64:5f:e5:b3:a4:2e:e9:d4:1e:dd:c2:84:
2c:3e:8c:1a:b3:1b:d6:00:76:f4:0a:1d:18:52:c9:3e:3e:77:
b3:df:29:f9:93:4d:6e:f8:58:c2:38:c4:85:48:44:3b:4d:e2:
77:09:7f:c1:fb:dd:9f:b4:87:4a:27:8f:8f:80:20:af:98:ac:
d5:30:e5:bf:69:78:f8:78:37:9e:63:b4:b3:be:02:7e:f0:ec:
32:70:39:00:a9:2f:61:ed:24:1e:00:96:81:ff:3b:0e:84:b5:
ac:d8:2b:00:52:01:0f:47:3a:9e:f1:24:92:60:56:f5:9b:53:
50:8b:6e:41:86:a4:6d:65:8c:0b:82:69:bd:a4:35:b2:6f:0d:
ee:45:1e:f3:04:7a:ff:be:71:9a:c0:4f:8c:82:a8:98:4a:77:
40:85:39:23:f7:21:bb:9a:f0:4a:31:b4:d2:0c:37:32:16:ec:
cc:ca:07:a7:31:1b:ef:ca:43:4a:a9:31:f1:cc:83:2b:dc:32:
9b:d7:0e:46:2f:4f:32:2e:dd:f2:6d:89:45:e0:59:1c:d5:d0:
e1:4a:a1:e1:a6:c8:ea:68:ed:46:2a:04:16:1b:9f:bb:c8:f2:
0d:f2:8a:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:13:54 2025 by rpki-client