Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/bb3b62-3302-45aa-968a-ecbb3fc0a725/1/sXLI1PyYbeufzrHw0MrifBwxNcM.mft
File: sXLI1PyYbeufzrHw0MrifBwxNcM.mft (raw, json)
Hash identifier: B7yLrjrdX9p+dl0iRxeaa8fdo5O7lqEjQKZSjbvXgHY=
Subject key identifier: 24:69:D6:3B:49:03:9B:AE:01:70:D5:B6:C7:30:A4:8E:55:95:B7:3D
Authority key identifier: B1:72:C8:D4:FC:98:6D:EB:9F:CE:B1:F0:D0:CA:E2:7C:1C:31:35:C3
Certificate issuer: /CN=b172c8d4fc986deb9fceb1f0d0cae27c1c3135c3
Certificate serial: 0199FD6B2C36D18B67043D25D68B14F67F60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sXLI1PyYbeufzrHw0MrifBwxNcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/bb3b62-3302-45aa-968a-ecbb3fc0a725/1/sXLI1PyYbeufzrHw0MrifBwxNcM.mft
Manifest number: 0BD9
Signing time: Sun 19 Oct 2025 17:01:23 +0000
Manifest this update: Sun 19 Oct 2025 17:01:23 +0000
Manifest next update: Mon 20 Oct 2025 17:01:23 +0000
Files and hashes: 1: Fe5Gqx1aovGtXf8G6dbhghP8Zjc.roa (hash: BUPkFvlzjudVBF56jR+MbrRifodIklIIzIddNH6FiAc=)
2: sXLI1PyYbeufzrHw0MrifBwxNcM.crl (hash: /8aoq2NaqqVX1lm9ENfx8X/r4LjHy4nugy9txJOp2RI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/bb3b62-3302-45aa-968a-ecbb3fc0a725/1/sXLI1PyYbeufzrHw0MrifBwxNcM.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/bb3b62-3302-45aa-968a-ecbb3fc0a725/1/sXLI1PyYbeufzrHw0MrifBwxNcM.mft
rsync://rpki.ripe.net/repository/DEFAULT/sXLI1PyYbeufzrHw0MrifBwxNcM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6b:2c:36:d1:8b:67:04:3d:25:d6:8b:14:f6:7f:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b172c8d4fc986deb9fceb1f0d0cae27c1c3135c3
Validity
Not Before: Oct 19 17:01:23 2025 GMT
Not After : Oct 20 17:01:23 2025 GMT
Subject: CN=2469d63b49039bae0170d5b6c730a48e5595b73d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:63:19:cf:a8:3c:50:62:a5:dd:69:44:11:1c:
50:b2:e1:88:da:79:bf:24:fe:21:c8:e3:72:3d:6a:
ab:c9:1b:0c:ec:4f:7c:bb:fd:96:a4:20:58:9b:cf:
30:48:59:43:4c:51:5e:e2:1a:04:32:c0:be:40:e0:
e3:46:a8:27:4c:87:13:57:99:c2:05:86:29:63:28:
94:9c:fd:8d:f0:1e:1b:28:a5:5c:71:6a:93:cc:d1:
af:19:c3:92:81:0f:eb:dc:fe:02:07:ee:1a:ff:50:
94:60:ee:73:88:71:d8:dd:9f:4f:58:1c:33:3b:3e:
e4:d6:bc:58:e8:37:ee:ac:bb:b4:af:ca:05:6c:a9:
62:50:f1:c5:cb:08:1d:c3:2e:54:5f:c4:21:84:23:
21:db:aa:96:05:04:12:ae:8b:f0:8b:49:ea:44:b7:
9d:00:2d:80:e4:eb:db:b7:c5:17:ec:34:7c:7e:41:
55:3b:79:2d:9e:0c:cb:ea:60:59:cf:3d:d1:c3:89:
ec:d3:c2:0f:bf:37:06:44:5a:97:61:13:5c:eb:ba:
da:8a:72:80:3e:8c:e6:93:0f:01:f6:21:01:a6:06:
f0:41:ef:23:a5:28:30:61:95:92:c5:8c:96:b0:66:
30:49:05:37:ef:53:11:e3:08:94:9e:e3:f7:eb:56:
46:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:69:D6:3B:49:03:9B:AE:01:70:D5:B6:C7:30:A4:8E:55:95:B7:3D
X509v3 Authority Key Identifier:
keyid:B1:72:C8:D4:FC:98:6D:EB:9F:CE:B1:F0:D0:CA:E2:7C:1C:31:35:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sXLI1PyYbeufzrHw0MrifBwxNcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/bb3b62-3302-45aa-968a-ecbb3fc0a725/1/sXLI1PyYbeufzrHw0MrifBwxNcM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/bb3b62-3302-45aa-968a-ecbb3fc0a725/1/sXLI1PyYbeufzrHw0MrifBwxNcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:9a:3c:bb:75:c0:1f:64:81:14:68:ab:c6:6c:e5:bc:bd:24:
8a:82:bb:43:c3:1e:b3:9c:58:53:c9:6c:ab:5a:a0:5f:52:35:
08:43:13:e4:99:ca:2f:77:7a:b5:85:b0:80:0e:dc:a4:d0:74:
f1:a2:93:f0:5a:c8:44:fb:dc:f6:78:b4:e1:24:d6:b4:4a:c1:
54:65:bc:85:e3:45:e6:d3:40:21:b3:8b:69:54:77:7d:4a:46:
94:bd:54:a8:56:a1:18:f7:24:13:09:89:2c:b0:cb:bf:d3:f4:
d8:e2:51:97:e2:5f:6d:f7:dd:f0:94:95:c3:cc:53:04:1d:7e:
5f:a7:bc:85:ff:b5:4c:3c:84:75:8b:a9:35:e3:1d:70:96:d0:
f5:ee:7c:72:36:70:00:fa:2d:9b:32:61:9f:66:78:80:24:99:
30:f6:ce:b4:26:eb:1c:bd:e2:74:dd:96:67:fb:f7:91:2c:23:
79:91:8f:09:9f:c8:de:18:0b:75:7a:fa:0e:58:e5:23:f9:62:
57:bd:3d:2f:02:d2:72:8a:64:94:f1:8c:5d:f0:a5:c5:e1:93:
e3:77:46:7b:5b:be:a5:22:37:b7:ca:eb:82:5e:e6:4d:e3:04:
88:00:17:63:17:d8:af:fb:16:b5:f2:88:37:19:3c:49:d1:32:
78:0c:af:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 00:00:44 2025 by rpki-client