Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/29441c-281c-4e02-9a91-8243b7db105e/1/sxwNSGRgtxY3A-X_TYre2XiIx00.mft
File: sxwNSGRgtxY3A-X_TYre2XiIx00.mft (raw, json)
Hash identifier: hajQs6aqhBKaZbljXMJzYgBfMj3XdtWN2zCBWH9ZhNQ=
Subject key identifier: DB:5C:3A:43:1D:7B:46:61:50:1C:77:06:49:41:97:85:BD:F9:31:0E
Authority key identifier: B3:1C:0D:48:64:60:B7:16:37:03:E5:FF:4D:8A:DE:D9:78:88:C7:4D
Certificate issuer: /CN=b31c0d486460b7163703e5ff4d8aded97888c74d
Certificate serial: 0198D5BBEE94F56B0D97B3C541AF589E104C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sxwNSGRgtxY3A-X_TYre2XiIx00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/29441c-281c-4e02-9a91-8243b7db105e/1/sxwNSGRgtxY3A-X_TYre2XiIx00.mft
Manifest number: 07FE
Signing time: Sat 23 Aug 2025 07:01:59 +0000
Manifest this update: Sat 23 Aug 2025 07:01:59 +0000
Manifest next update: Sun 24 Aug 2025 07:01:59 +0000
Files and hashes: 1: sxwNSGRgtxY3A-X_TYre2XiIx00.crl (hash: +kAjnLtz59AKsKVosUk0owTGbPPtg3CkVrP0VSnHE7w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/29441c-281c-4e02-9a91-8243b7db105e/1/sxwNSGRgtxY3A-X_TYre2XiIx00.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/29441c-281c-4e02-9a91-8243b7db105e/1/sxwNSGRgtxY3A-X_TYre2XiIx00.mft
rsync://rpki.ripe.net/repository/DEFAULT/sxwNSGRgtxY3A-X_TYre2XiIx00.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:ee:94:f5:6b:0d:97:b3:c5:41:af:58:9e:10:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b31c0d486460b7163703e5ff4d8aded97888c74d
Validity
Not Before: Aug 23 07:01:59 2025 GMT
Not After : Aug 24 07:01:59 2025 GMT
Subject: CN=db5c3a431d7b4661501c770649419785bdf9310e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:9b:a1:c2:bb:49:85:62:b6:41:f7:ab:76:2e:
b8:4e:a9:82:68:91:44:e6:c7:2a:ab:5d:ec:80:d1:
b3:ea:88:b5:4a:dc:3e:cb:b9:ec:6a:ad:c8:48:b8:
e9:86:49:c3:a8:4f:07:72:35:c0:3c:58:d5:9c:e8:
ab:3b:19:40:3f:a6:ed:df:a8:27:38:51:a1:df:a8:
bf:bd:f1:5d:73:f5:b9:69:e8:68:54:95:67:1e:6d:
19:7b:5f:71:d5:c2:4d:e2:ab:ce:88:44:e1:99:a9:
30:32:72:9e:34:5d:26:00:b8:23:b3:ba:d9:64:ff:
82:34:bd:b7:77:97:83:04:65:01:79:ef:48:72:b2:
c3:ca:83:59:9e:f7:df:e3:aa:e5:cc:1c:d7:3c:c7:
2d:3c:9b:7a:1e:a1:9d:d7:a2:f4:a0:00:46:8b:c1:
cb:ba:da:13:e9:f2:e4:f6:20:e3:5d:4e:d8:2a:35:
db:21:91:ab:25:9b:71:0e:1e:14:a0:6c:92:ad:22:
82:71:ca:aa:62:0d:1d:0b:2c:22:04:a4:3d:32:18:
c3:89:06:1e:a1:8d:78:d6:0c:44:16:d3:bb:85:34:
fd:fc:6f:72:dc:3f:9f:cb:20:5e:6f:e4:87:7a:22:
23:03:bc:3d:2a:25:21:fb:68:2b:b7:bc:c8:82:e9:
53:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:5C:3A:43:1D:7B:46:61:50:1C:77:06:49:41:97:85:BD:F9:31:0E
X509v3 Authority Key Identifier:
keyid:B3:1C:0D:48:64:60:B7:16:37:03:E5:FF:4D:8A:DE:D9:78:88:C7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sxwNSGRgtxY3A-X_TYre2XiIx00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/29441c-281c-4e02-9a91-8243b7db105e/1/sxwNSGRgtxY3A-X_TYre2XiIx00.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/29441c-281c-4e02-9a91-8243b7db105e/1/sxwNSGRgtxY3A-X_TYre2XiIx00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:1f:b1:e0:f6:66:ff:db:c5:34:23:63:57:86:dc:95:22:8d:
ea:33:4b:83:47:7e:a9:b6:53:dd:2b:d0:ef:2d:9b:6c:e1:ab:
57:72:eb:ab:e0:7f:aa:9c:1f:65:a5:c1:2e:07:00:88:1f:6e:
d8:9a:74:d1:bd:28:0a:50:d6:23:1e:03:92:11:5b:ff:ee:cc:
0f:e7:d1:a7:7c:fb:da:12:eb:3d:1b:79:af:fb:61:9d:cf:05:
4e:ed:30:fa:93:93:82:aa:77:df:c6:b9:ec:79:14:4d:60:e9:
2c:94:53:84:00:1c:34:1f:c4:aa:a8:eb:a7:6d:66:8e:e2:a9:
64:f2:ec:7e:21:84:22:9d:9a:dc:8e:a6:e3:2b:61:37:e1:5b:
1d:46:04:ab:df:58:74:f4:be:1c:fa:ef:64:63:f4:ec:2f:24:
84:0d:4f:60:9f:fe:a4:4f:bf:4f:09:00:d0:ac:30:73:30:89:
fa:ec:07:00:80:33:5e:a3:ae:2a:70:09:68:dd:c3:ec:10:2a:
9a:a9:5f:18:69:79:cf:03:52:14:fb:a6:98:0e:65:3d:27:8e:
d9:d7:5f:ad:02:93:53:7f:9b:8b:eb:28:1d:4e:7c:9a:c6:32:
30:7b:f5:8d:16:83:a6:5c:88:7f:20:58:12:b3:ee:c7:5f:1f:
8b:15:fa:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:31:36 2025 by rpki-client