Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/29441c-281c-4e02-9a91-8243b7db105e/1/sxwNSGRgtxY3A-X_TYre2XiIx00.mft
File: sxwNSGRgtxY3A-X_TYre2XiIx00.mft (raw, json)
Hash identifier: M2fajL/VyVsd2Ep1gq1heRR16+L/RdKJfamvfDVlrPo=
Subject key identifier: 24:FD:24:BA:28:C3:FF:56:33:1A:89:5F:66:91:62:1F:B0:38:F0:C0
Authority key identifier: B3:1C:0D:48:64:60:B7:16:37:03:E5:FF:4D:8A:DE:D9:78:88:C7:4D
Certificate issuer: /CN=b31c0d486460b7163703e5ff4d8aded97888c74d
Certificate serial: 0199FD340556C0B0E79158C5DC9CE0EE4186
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sxwNSGRgtxY3A-X_TYre2XiIx00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/29441c-281c-4e02-9a91-8243b7db105e/1/sxwNSGRgtxY3A-X_TYre2XiIx00.mft
Manifest number: 0897
Signing time: Sun 19 Oct 2025 16:01:08 +0000
Manifest this update: Sun 19 Oct 2025 16:01:08 +0000
Manifest next update: Mon 20 Oct 2025 16:01:08 +0000
Files and hashes: 1: sxwNSGRgtxY3A-X_TYre2XiIx00.crl (hash: zdbXqK7ZtPC01yKbUIvTF2d2pn2/jrpLVEz7WDj1kaI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/29441c-281c-4e02-9a91-8243b7db105e/1/sxwNSGRgtxY3A-X_TYre2XiIx00.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/29441c-281c-4e02-9a91-8243b7db105e/1/sxwNSGRgtxY3A-X_TYre2XiIx00.mft
rsync://rpki.ripe.net/repository/DEFAULT/sxwNSGRgtxY3A-X_TYre2XiIx00.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:05:56:c0:b0:e7:91:58:c5:dc:9c:e0:ee:41:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b31c0d486460b7163703e5ff4d8aded97888c74d
Validity
Not Before: Oct 19 16:01:08 2025 GMT
Not After : Oct 20 16:01:08 2025 GMT
Subject: CN=24fd24ba28c3ff56331a895f6691621fb038f0c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:64:81:2b:77:5d:65:b4:81:74:b2:88:6b:9d:
e3:d5:8c:28:66:ca:e6:78:51:30:dd:7c:0f:65:2b:
09:01:b4:63:16:6c:3a:2a:0b:07:b2:34:77:13:e6:
84:21:6b:08:97:6d:a7:d0:a5:ec:21:20:da:1c:09:
4c:78:59:8b:6e:c7:b7:df:5e:e6:8c:a0:36:11:53:
f9:a4:d9:74:81:a0:ed:f2:87:b1:b7:ba:65:e6:77:
45:6e:b0:45:9e:43:27:59:46:20:32:d0:29:d3:2d:
e0:59:70:f6:6c:52:48:6f:1c:8d:76:10:12:9e:b7:
30:2a:7e:76:b9:08:46:97:df:e0:8d:86:e9:ef:a2:
89:5e:d4:c6:45:5f:3d:e2:69:32:e6:27:ae:71:06:
3b:07:bf:0f:7d:bc:12:ee:73:66:32:70:8f:b7:de:
d7:f7:31:58:0e:0d:ef:e4:5d:13:87:59:36:8b:e6:
56:f7:8e:fd:76:2b:da:17:62:12:72:b4:75:47:3e:
a7:65:4b:dd:17:34:92:d1:ac:e0:50:f9:f3:0b:01:
08:d8:25:35:0b:1c:7b:0a:48:3a:ca:45:a4:ff:f2:
fa:78:e9:ea:7a:94:69:91:ae:b5:cf:42:2a:fa:f6:
4f:f2:50:7c:89:56:03:da:3e:81:cf:61:f8:d1:b1:
d6:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:FD:24:BA:28:C3:FF:56:33:1A:89:5F:66:91:62:1F:B0:38:F0:C0
X509v3 Authority Key Identifier:
keyid:B3:1C:0D:48:64:60:B7:16:37:03:E5:FF:4D:8A:DE:D9:78:88:C7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sxwNSGRgtxY3A-X_TYre2XiIx00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/29441c-281c-4e02-9a91-8243b7db105e/1/sxwNSGRgtxY3A-X_TYre2XiIx00.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/29441c-281c-4e02-9a91-8243b7db105e/1/sxwNSGRgtxY3A-X_TYre2XiIx00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:bf:3b:04:f0:ad:48:64:77:34:79:dd:5b:9f:97:ee:03:99:
b5:fc:06:51:1e:6d:d5:5c:98:27:7a:c8:b7:67:ba:ae:5a:92:
ff:d2:da:5e:e4:ae:cc:f3:04:0f:d9:b7:c9:2d:22:50:41:ba:
a2:57:22:cf:44:4c:7e:1f:13:e4:f0:04:92:48:e0:6e:5c:34:
b9:6c:b1:48:f7:b8:f4:cd:e0:d4:7c:b0:99:d2:fe:88:5e:ec:
cf:1a:d3:6c:32:ab:17:e8:1a:c1:79:2a:6e:cd:ef:62:03:c8:
77:32:bc:2a:18:97:10:72:22:3b:e4:6f:7c:b6:0a:7b:f8:53:
1a:fa:4f:ec:39:9b:fc:57:d1:d6:8f:be:53:c1:62:5a:40:10:
c7:3e:c2:ff:72:56:5d:19:4e:36:71:6a:a4:20:d6:18:cd:8a:
4b:0f:b3:f4:9f:2f:5c:81:cc:86:79:be:f0:72:e1:74:9c:9e:
a6:e9:de:13:d0:3a:41:1b:19:5c:31:6e:03:5d:0f:dc:da:30:
a5:91:15:70:b4:68:25:f1:a6:dc:ab:35:14:cc:64:cc:d9:de:
3c:8f:67:d7:4c:d4:4f:3f:de:a0:1b:b6:9c:05:94:5d:ad:3d:
f8:4d:29:92:a5:a5:cb:1a:a2:4b:3c:2f:5d:86:ee:9e:b7:62:
75:3c:06:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:07:20 2025 by rpki-client