Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/d3a228-fc4f-40b2-88b2-e484611a9621/1/SxEEihpJFuExuM4Iji1v5OXF49s.mft
File: SxEEihpJFuExuM4Iji1v5OXF49s.mft (raw, json)
Hash identifier: mCrWs4AsZEdXci9NjoRmtr2nTTkwbvxltTmlRJ1hTTk=
Subject key identifier: 96:BC:E5:82:17:CD:18:8A:0E:F2:32:6E:C5:1A:E3:02:7E:B7:9E:4B
Authority key identifier: 4B:11:04:8A:1A:49:16:E1:31:B8:CE:08:8E:2D:6F:E4:E5:C5:E3:DB
Certificate issuer: /CN=4b11048a1a4916e131b8ce088e2d6fe4e5c5e3db
Certificate serial: 019A1873AE2BFE5D6BFCE267DA0A97FE4646
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SxEEihpJFuExuM4Iji1v5OXF49s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/d3a228-fc4f-40b2-88b2-e484611a9621/1/SxEEihpJFuExuM4Iji1v5OXF49s.mft
Manifest number: 032F
Signing time: Fri 24 Oct 2025 23:00:25 +0000
Manifest this update: Fri 24 Oct 2025 23:00:25 +0000
Manifest next update: Sat 25 Oct 2025 23:00:25 +0000
Files and hashes: 1: SxEEihpJFuExuM4Iji1v5OXF49s.crl (hash: QOieE94zvyKaNRSB5ylMQ9RzHCU+2aKcF1rNkoVfI3w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/d3a228-fc4f-40b2-88b2-e484611a9621/1/SxEEihpJFuExuM4Iji1v5OXF49s.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/d3a228-fc4f-40b2-88b2-e484611a9621/1/SxEEihpJFuExuM4Iji1v5OXF49s.mft
rsync://rpki.ripe.net/repository/DEFAULT/SxEEihpJFuExuM4Iji1v5OXF49s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 25 Oct 2025 23:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:18:73:ae:2b:fe:5d:6b:fc:e2:67:da:0a:97:fe:46:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b11048a1a4916e131b8ce088e2d6fe4e5c5e3db
Validity
Not Before: Oct 24 23:00:25 2025 GMT
Not After : Oct 25 23:00:25 2025 GMT
Subject: CN=96bce58217cd188a0ef2326ec51ae3027eb79e4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:df:28:18:a7:4a:38:51:4f:1d:02:0b:98:65:
ad:1a:2f:dd:36:e2:e0:7a:54:ec:de:1d:3f:71:6e:
f3:d9:aa:36:05:b2:18:7f:c1:34:0d:96:4b:da:d4:
85:a0:d9:9f:56:a9:8e:e5:a1:69:45:11:9a:43:d9:
ee:e5:ef:60:b5:1c:8d:61:bf:59:6b:6e:de:c8:0a:
2e:32:26:e1:f8:dd:3c:6c:c7:05:8b:44:58:7f:c8:
30:de:90:88:b2:5a:75:f7:e0:d7:2b:0d:3f:60:39:
d0:5e:a9:57:22:d2:47:48:78:8a:b3:68:0c:c1:18:
4f:9f:82:fe:90:21:19:22:79:80:4f:40:ed:2f:53:
ae:4d:ac:71:55:c0:62:35:f4:e0:f7:2a:8f:ca:9f:
9b:fe:f8:38:05:52:07:60:55:53:c6:a2:38:8f:f0:
4d:18:db:f1:9c:1b:e6:e9:09:e8:9b:05:25:aa:6b:
91:9d:94:c5:01:7d:df:7f:f1:ad:d0:00:6b:5b:f5:
f7:af:f0:53:c8:14:3b:69:50:06:9f:d8:e9:b7:74:
df:31:98:51:36:a3:f0:07:9d:07:18:e4:83:e8:97:
47:b5:bf:5a:f7:01:dd:43:ca:af:ff:fd:18:36:d9:
3f:eb:ec:91:2a:07:37:46:62:52:da:a7:84:28:85:
9d:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:BC:E5:82:17:CD:18:8A:0E:F2:32:6E:C5:1A:E3:02:7E:B7:9E:4B
X509v3 Authority Key Identifier:
keyid:4B:11:04:8A:1A:49:16:E1:31:B8:CE:08:8E:2D:6F:E4:E5:C5:E3:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SxEEihpJFuExuM4Iji1v5OXF49s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/d3a228-fc4f-40b2-88b2-e484611a9621/1/SxEEihpJFuExuM4Iji1v5OXF49s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/d3a228-fc4f-40b2-88b2-e484611a9621/1/SxEEihpJFuExuM4Iji1v5OXF49s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:3e:bb:04:78:bf:f5:ce:31:58:e3:2a:e8:f9:22:03:1f:f5:
31:6f:fb:45:d1:16:c9:43:d7:73:18:83:b1:c9:bb:96:3c:b0:
ff:0b:36:17:92:0b:48:d7:0a:f2:23:11:7f:0c:f5:68:e4:56:
8f:f8:80:00:6e:94:b2:84:82:2a:da:b3:78:82:3e:7a:fd:b3:
cf:0a:6c:15:06:9d:ac:74:4b:4a:2f:7e:3f:6c:7b:d5:3c:20:
be:ae:94:85:84:15:b6:75:b1:de:de:f7:af:0f:11:7e:d0:fb:
ca:83:b1:96:f8:22:8a:da:4a:c3:2e:71:3c:46:41:f7:9a:8e:
c7:b3:85:2e:f0:9f:08:18:ce:e5:d3:36:a4:38:c1:df:95:f6:
25:47:de:aa:3c:3c:a2:5d:63:a9:74:9a:f9:ff:db:4e:db:5f:
3e:26:ae:62:35:6d:dd:18:82:8c:31:77:d7:8f:d7:e6:ec:1e:
0f:3f:69:db:c4:fd:33:93:95:d2:6d:59:ae:06:aa:47:6c:e5:
d9:04:68:7b:7a:a3:38:ae:0f:10:46:4c:e1:33:be:93:80:60:
03:80:7b:b9:25:18:e9:6e:6e:7e:bb:da:d1:36:40:81:fc:79:
a4:d4:92:3f:4a:1c:79:ae:be:31:4f:0a:cb:a9:a9:80:7b:71:
d3:11:91:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 25 09:58:48 2025 by rpki-client