Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/72a495-2b5d-4a23-99c4-ef0671c7c0df/1/sXQMTAefLR3uhUOfgngbm651apU.mft
File: sXQMTAefLR3uhUOfgngbm651apU.mft (raw, json)
Hash identifier: pGFeGoXF50UVao74F/hNdTYCiNUZpIeznNq7XETKsFg=
Subject key identifier: DD:04:29:01:09:F8:F7:7D:79:48:12:C0:C6:91:BD:F0:1D:2F:32:2D
Authority key identifier: B1:74:0C:4C:07:9F:2D:1D:EE:85:43:9F:82:78:1B:9B:AE:75:6A:95
Certificate issuer: /CN=b1740c4c079f2d1dee85439f82781b9bae756a95
Certificate serial: 019A714A0E4249B0659FAF57EE60297410B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sXQMTAefLR3uhUOfgngbm651apU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/72a495-2b5d-4a23-99c4-ef0671c7c0df/1/sXQMTAefLR3uhUOfgngbm651apU.mft
Manifest number: 136B
Signing time: Tue 11 Nov 2025 05:01:09 +0000
Manifest this update: Tue 11 Nov 2025 05:01:09 +0000
Manifest next update: Wed 12 Nov 2025 05:01:09 +0000
Files and hashes: 1: 0kGm7IS6foM84ApNB5wMBZmcs70.roa (hash: fsNAu7RVtrbBsKEN64Ou91zqn3ieSIW0lwlDv3luCl0=)
2: QHGLz4vDf8HU0PXuv58AHJKDNwE.roa (hash: zsAsJqx3Xlx/j+LLE8QbsIeKt4A9wuocERvf2nTmf7A=)
3: Sz2kPMld2S0NhbWe3VBXUQg4E_g.roa (hash: CgZe2V9k88f5ug37ai2G7ohUxSeYSwTeyOJXFySNdfc=)
4: sXQMTAefLR3uhUOfgngbm651apU.crl (hash: DJS3hrp6NcfUS8+bb0xyqyTryN+KoSUMd+x/n2AVxxE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/72a495-2b5d-4a23-99c4-ef0671c7c0df/1/sXQMTAefLR3uhUOfgngbm651apU.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/72a495-2b5d-4a23-99c4-ef0671c7c0df/1/sXQMTAefLR3uhUOfgngbm651apU.mft
rsync://rpki.ripe.net/repository/DEFAULT/sXQMTAefLR3uhUOfgngbm651apU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:4a:0e:42:49:b0:65:9f:af:57:ee:60:29:74:10:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1740c4c079f2d1dee85439f82781b9bae756a95
Validity
Not Before: Nov 11 05:01:09 2025 GMT
Not After : Nov 12 05:01:09 2025 GMT
Subject: CN=dd04290109f8f77d794812c0c691bdf01d2f322d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:75:f7:8e:63:19:15:1b:c4:de:b9:90:4d:7e:
81:72:2e:2f:e2:5c:b5:99:d2:54:f5:24:22:2f:1f:
42:46:b9:4e:d3:70:4d:bc:fd:23:9a:97:32:60:e8:
88:c0:3f:60:9c:4d:01:e0:d2:4a:dc:03:83:b2:46:
05:ba:fe:3d:0d:c4:50:7e:77:9c:6d:c6:34:72:ae:
5d:73:6d:e5:41:97:85:c9:95:1a:c6:93:a8:05:55:
33:f7:52:d8:58:4b:66:91:d5:c9:fa:72:e1:0c:78:
c2:9e:49:85:ed:88:7c:8a:cd:7f:50:92:ce:21:53:
5f:92:c2:fd:24:df:fa:80:01:3e:12:f9:33:00:01:
2f:64:fe:8f:2e:20:5b:fd:00:a6:d6:70:aa:c3:d9:
96:a9:51:a1:7f:48:f0:91:dc:7f:6c:45:a0:00:07:
65:c2:48:7c:16:ee:55:7f:62:fc:d0:ce:06:40:f1:
cc:31:4c:93:fd:9e:36:11:77:9a:90:9e:6b:cb:c1:
2f:61:a8:31:8b:b0:98:3b:82:dc:82:b4:d2:c9:c5:
13:7a:c2:41:58:95:33:ef:94:39:65:d3:16:e2:ef:
70:e8:f9:eb:e6:f5:20:1e:c3:01:6d:d7:44:20:9c:
ae:89:53:a0:e4:23:06:bf:3f:d6:3b:a5:31:11:0f:
98:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:04:29:01:09:F8:F7:7D:79:48:12:C0:C6:91:BD:F0:1D:2F:32:2D
X509v3 Authority Key Identifier:
keyid:B1:74:0C:4C:07:9F:2D:1D:EE:85:43:9F:82:78:1B:9B:AE:75:6A:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sXQMTAefLR3uhUOfgngbm651apU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/72a495-2b5d-4a23-99c4-ef0671c7c0df/1/sXQMTAefLR3uhUOfgngbm651apU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/72a495-2b5d-4a23-99c4-ef0671c7c0df/1/sXQMTAefLR3uhUOfgngbm651apU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:28:7f:b5:4a:2a:ab:b3:98:33:43:02:9c:cb:42:a3:1e:f7:
c0:9a:ff:57:e7:d4:b3:33:84:c0:bb:dd:1e:24:c0:fb:a3:6a:
19:3d:d3:57:ad:cc:cd:4b:cb:5c:57:33:6e:b1:bc:25:bd:2f:
93:45:af:7b:b0:7d:39:d5:49:55:b6:7d:ee:d1:90:af:2e:27:
a0:d8:9f:37:da:de:a5:b8:67:70:4f:dc:b4:93:eb:ce:ff:4c:
ef:c5:f5:87:ae:cf:f1:80:ad:df:94:99:d3:86:bf:e0:f5:e1:
da:29:57:98:51:70:38:80:b4:7a:d1:f3:15:d8:1f:10:eb:08:
cd:f1:97:3b:4f:db:74:b8:ca:c3:af:e6:cc:20:d4:cf:aa:c9:
9f:41:82:08:1e:84:bb:6a:45:ac:60:96:73:85:3c:d3:78:c6:
e5:56:df:10:f9:f2:1b:e8:8f:2f:f8:04:7d:0a:ec:9c:63:a1:
a8:8c:77:6d:2e:6f:16:2f:51:53:fe:62:cb:a3:1c:ea:e4:60:
bd:cb:7e:70:68:04:e7:47:65:bc:41:41:e4:c0:a9:98:df:17:
02:8e:d0:94:cc:50:a7:5f:08:bc:d0:f9:01:f4:b2:e1:8f:3a:
c4:78:6d:58:21:a7:8c:d0:39:07:f4:ba:a9:42:56:41:45:16:
70:ff:58:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:10:45 2025 by rpki-client