Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/cbc50e-faef-43ec-bdba-fda470c61e09/1/sxLbld_DsxOV4Oy1_yYhLXmN6DQ.mft
File: sxLbld_DsxOV4Oy1_yYhLXmN6DQ.mft (raw, json)
Hash identifier: KZjwaRgYxhSsdb+9jAcV6HqN0GXo5U53gvG325jZM5k=
Subject key identifier: 98:5B:3D:79:BA:96:09:72:59:EA:81:11:D3:01:B3:77:C8:AA:5B:34
Authority key identifier: B3:12:DB:95:DF:C3:B3:13:95:E0:EC:B5:FF:26:21:2D:79:8D:E8:34
Certificate issuer: /CN=b312db95dfc3b31395e0ecb5ff26212d798de834
Certificate serial: 019A228A06B0B525433D47290E6526CF1BCA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sxLbld_DsxOV4Oy1_yYhLXmN6DQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/cbc50e-faef-43ec-bdba-fda470c61e09/1/sxLbld_DsxOV4Oy1_yYhLXmN6DQ.mft
Manifest number: 149A
Signing time: Sun 26 Oct 2025 22:01:02 +0000
Manifest this update: Sun 26 Oct 2025 22:01:02 +0000
Manifest next update: Mon 27 Oct 2025 22:01:02 +0000
Files and hashes: 1: nYyst-VXzn3xSdM3Fb9jRPKd5O0.roa (hash: utz/hKliLWf+w0YBiWTvZl5n+Jt5jKsuYbG8pQFD4oQ=)
2: sxLbld_DsxOV4Oy1_yYhLXmN6DQ.crl (hash: ivY9gUAHLX3ttO9SzhRwLc/SLla6uaTbHCb5NsTmyUo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/cbc50e-faef-43ec-bdba-fda470c61e09/1/sxLbld_DsxOV4Oy1_yYhLXmN6DQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/cbc50e-faef-43ec-bdba-fda470c61e09/1/sxLbld_DsxOV4Oy1_yYhLXmN6DQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/sxLbld_DsxOV4Oy1_yYhLXmN6DQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 14:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:22:8a:06:b0:b5:25:43:3d:47:29:0e:65:26:cf:1b:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b312db95dfc3b31395e0ecb5ff26212d798de834
Validity
Not Before: Oct 26 22:01:02 2025 GMT
Not After : Oct 27 22:01:02 2025 GMT
Subject: CN=985b3d79ba96097259ea8111d301b377c8aa5b34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:17:bf:51:2e:25:fc:c2:0c:ff:5f:ec:ab:b5:
8d:1e:ac:45:45:89:f5:01:36:aa:7e:e5:da:a6:ba:
eb:42:e7:e0:6f:54:cc:87:e8:c0:e8:b2:07:0e:46:
ae:f2:ed:df:41:97:d1:9b:5c:16:a9:18:9c:fb:8f:
0a:e4:50:02:21:7a:3e:da:51:a7:87:69:ab:42:20:
7a:52:10:8f:4e:6d:be:fa:c1:05:9c:36:f9:46:aa:
73:fa:8a:d9:0e:84:3c:9e:a6:95:0b:5f:55:42:d5:
f7:82:dc:df:2c:4e:3c:61:ef:85:91:38:ff:f2:de:
76:40:1a:21:40:2f:09:56:ea:ed:ae:43:c0:5b:12:
ed:c5:6b:f5:a3:93:c0:da:fe:93:0b:f7:39:83:0f:
55:83:e5:ae:a4:62:4e:eb:6d:fa:29:48:98:49:7a:
37:93:aa:d3:7b:07:f0:81:ca:c6:d0:fe:23:e8:62:
05:c0:73:8e:0d:27:c6:24:ad:bb:af:fa:24:71:54:
7d:9e:c8:10:4a:e3:01:15:2f:48:52:4a:da:a5:22:
18:34:4f:9a:97:a7:7e:7a:dc:97:16:2e:60:4e:95:
39:29:77:ea:ff:31:ab:77:9a:8b:7e:0e:d1:e9:ba:
6d:d8:2b:79:6c:a4:7a:dc:2c:2e:05:3c:93:a5:2f:
59:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:5B:3D:79:BA:96:09:72:59:EA:81:11:D3:01:B3:77:C8:AA:5B:34
X509v3 Authority Key Identifier:
keyid:B3:12:DB:95:DF:C3:B3:13:95:E0:EC:B5:FF:26:21:2D:79:8D:E8:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sxLbld_DsxOV4Oy1_yYhLXmN6DQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/cbc50e-faef-43ec-bdba-fda470c61e09/1/sxLbld_DsxOV4Oy1_yYhLXmN6DQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/cbc50e-faef-43ec-bdba-fda470c61e09/1/sxLbld_DsxOV4Oy1_yYhLXmN6DQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:15:63:ec:62:fb:d6:e9:58:28:dc:f2:96:ca:10:a9:31:9d:
4e:22:54:9c:90:64:a1:e7:8e:5d:1a:6c:5e:c0:6a:18:95:4c:
85:62:27:c3:b0:14:0f:9d:a1:83:9f:2c:cf:e1:8e:24:5b:f6:
f5:a8:12:7e:10:7e:c7:e6:31:07:cf:ce:2c:8a:6f:3d:4b:71:
94:bc:63:b0:03:30:cc:fd:7b:ba:49:ac:c1:b5:06:e5:51:31:
fb:59:c8:30:88:a1:93:9c:8f:8f:fb:99:a6:25:fb:a3:80:21:
2d:4a:1f:40:5e:b8:e5:85:06:ac:05:61:c9:db:e9:24:59:8a:
b5:48:fa:50:02:80:b0:4e:87:da:6a:d3:b7:35:87:13:2a:0f:
4a:b0:2b:15:6e:86:58:ed:04:01:22:d6:8c:8c:5d:16:9e:44:
e0:2c:b6:c2:b1:5f:08:ca:9a:31:2c:e0:8b:71:0d:5a:b8:92:
eb:2b:66:1c:df:c0:9c:94:f3:bb:74:fb:a6:9b:c0:2d:20:86:
8f:bc:9e:6e:d9:77:f3:70:69:f6:15:7f:26:e6:5e:4b:d7:6b:
33:43:0a:47:71:51:09:7a:2c:70:a2:c7:2d:ae:e6:4d:69:30:
e8:48:80:73:8d:bc:11:6f:21:4f:46:3b:b5:76:55:4f:9a:9c:
a4:2e:87:96
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoiigawtSVDPUcpDmUmzxvKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzMTJkYjk1ZGZjM2IzMTM5NWUwZWNiNWZmMjYyMTJkNzk4
ZGU4MzQwHhcNMjUxMDI2MjIwMTAyWhcNMjUxMDI3MjIwMTAyWjAzMTEwLwYDVQQD
Eyg5ODViM2Q3OWJhOTYwOTcyNTllYTgxMTFkMzAxYjM3N2M4YWE1YjM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsBe/US4l/MIM/1/sq7WNHqxFRYn1
ATaqfuXaprrrQufgb1TMh+jA6LIHDkau8u3fQZfRm1wWqRic+48K5FACIXo+2lGn
h2mrQiB6UhCPTm2++sEFnDb5Rqpz+orZDoQ8nqaVC19VQtX3gtzfLE48Ye+FkTj/
8t52QBohQC8JVurtrkPAWxLtxWv1o5PA2v6TC/c5gw9Vg+WupGJO6236KUiYSXo3
k6rTewfwgcrG0P4j6GIFwHOODSfGJK27r/okcVR9nsgQSuMBFS9IUkrapSIYNE+a
l6d+etyXFi5gTpU5KXfq/zGrd5qLfg7R6bpt2Ct5bKR63CwuBTyTpS9ZNQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJhbPXm6lglyWeqBEdMBs3fIqls0MB8GA1UdIwQY
MBaAFLMS25Xfw7MTleDstf8mIS15jeg0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3hMYmxkX0RzeE9WNE95MV95WWhMWG1ONkRRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS9jYmM1MGUtZmFlZi00M2VjLWJkYmEt
ZmRhNDcwYzYxZTA5LzEvc3hMYmxkX0RzeE9WNE95MV95WWhMWG1ONkRRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OS9jYmM1MGUtZmFlZi00M2VjLWJkYmEtZmRhNDcwYzYxZTA5
LzEvc3hMYmxkX0RzeE9WNE95MV95WWhMWG1ONkRRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADBVj7GL7
1ulYKNzylsoQqTGdTiJUnJBkoeeOXRpsXsBqGJVMhWInw7AUD52hg58sz+GOJFv2
9agSfhB+x+YxB8/OLIpvPUtxlLxjsAMwzP17ukmswbUG5VEx+1nIMIihk5yPj/uZ
piX7o4AhLUofQF645YUGrAVhydvpJFmKtUj6UAKAsE6H2mrTtzWHEyoPSrArFW6G
WO0EASLWjIxdFp5E4Cy2wrFfCMqaMSzgi3ENWriS6ytmHN/AnJTzu3T7ppvALSCG
j7yebtl383Bp9hV/JuZeS9drM0MKR3FRCXoscKLHLa7mTWkw6EiAc428EW8hT0Y7
tXZVT5qcpC6Hlg==
-----END CERTIFICATE-----
Generated at Mon Oct 27 00:22:09 2025 by rpki-client