Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/6c4d62-8daf-4502-b3f7-14b97cfbad47/1/sxagaE0dOLrPQzjCsB2ztBNw60U.mft
File: sxagaE0dOLrPQzjCsB2ztBNw60U.mft (raw, json)
Hash identifier: nIDPfcyC3EXmEOZ8L90UeYrzfpUH/v+zY0is85wHeps=
Subject key identifier: F9:09:87:1F:8F:05:F4:EE:2F:4B:C9:76:31:6A:00:00:D5:02:B1:65
Authority key identifier: B3:16:A0:68:4D:1D:38:BA:CF:43:38:C2:B0:1D:B3:B4:13:70:EB:45
Certificate issuer: /CN=b316a0684d1d38bacf4338c2b01db3b41370eb45
Certificate serial: 019A71B8F031227FE803D846851C9EA308A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sxagaE0dOLrPQzjCsB2ztBNw60U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/6c4d62-8daf-4502-b3f7-14b97cfbad47/1/sxagaE0dOLrPQzjCsB2ztBNw60U.mft
Manifest number: 059D
Signing time: Tue 11 Nov 2025 07:02:16 +0000
Manifest this update: Tue 11 Nov 2025 07:02:16 +0000
Manifest next update: Wed 12 Nov 2025 07:02:16 +0000
Files and hashes: 1: pBOBaEWXkYoN8gJBhZMkD24bH8M.roa (hash: yYFHTbbCS/jQtr+ov28WxXyLXELdV4Do2QZ+inX5RdA=)
2: sxagaE0dOLrPQzjCsB2ztBNw60U.crl (hash: gNd4lkRUVfLEwEIcw1WBgFXYFY5HAUZvvZfrJbsAC1o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/6c4d62-8daf-4502-b3f7-14b97cfbad47/1/sxagaE0dOLrPQzjCsB2ztBNw60U.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/6c4d62-8daf-4502-b3f7-14b97cfbad47/1/sxagaE0dOLrPQzjCsB2ztBNw60U.mft
rsync://rpki.ripe.net/repository/DEFAULT/sxagaE0dOLrPQzjCsB2ztBNw60U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:f0:31:22:7f:e8:03:d8:46:85:1c:9e:a3:08:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b316a0684d1d38bacf4338c2b01db3b41370eb45
Validity
Not Before: Nov 11 07:02:16 2025 GMT
Not After : Nov 12 07:02:16 2025 GMT
Subject: CN=f909871f8f05f4ee2f4bc976316a0000d502b165
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:74:09:ba:c6:ae:33:cf:48:b3:ab:96:00:ca:
46:62:50:8a:28:a5:90:d1:02:e0:a8:ff:21:6b:a7:
28:46:a6:80:20:1d:ac:27:ae:d2:78:c4:59:76:f7:
e4:a7:f8:c5:73:37:dc:b6:a2:fe:9e:60:83:8c:d3:
ed:66:5a:7e:c4:9f:87:24:50:b0:a0:20:d4:7a:6b:
be:ae:23:d0:d0:03:5e:98:a8:1f:19:95:63:26:56:
41:76:d8:67:10:ba:2f:3f:2f:a4:2f:1a:31:e7:67:
4b:8a:c0:77:78:19:4e:95:45:2d:01:86:cf:25:62:
10:52:53:4b:cf:5d:37:3f:de:32:a5:07:96:12:b4:
c4:c1:8c:90:a1:3e:47:6a:3e:b3:62:04:8d:31:5a:
41:b6:0f:21:be:24:7e:ad:3b:5e:01:47:c7:e3:cd:
cc:ad:b0:8c:a7:18:fa:04:0c:dc:0e:58:fb:60:7e:
a3:2e:48:00:90:94:d3:fc:5e:8b:57:b0:33:17:23:
26:a0:73:cb:a2:f6:fc:9e:bc:27:aa:fd:33:4c:b7:
11:dc:6e:82:ba:de:18:48:57:69:88:a2:3d:79:45:
9d:dc:56:41:19:af:4e:a7:32:15:2a:8a:dd:59:bb:
d3:51:95:0f:93:eb:57:bf:19:cd:12:d2:0c:e9:92:
e2:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:09:87:1F:8F:05:F4:EE:2F:4B:C9:76:31:6A:00:00:D5:02:B1:65
X509v3 Authority Key Identifier:
keyid:B3:16:A0:68:4D:1D:38:BA:CF:43:38:C2:B0:1D:B3:B4:13:70:EB:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sxagaE0dOLrPQzjCsB2ztBNw60U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/6c4d62-8daf-4502-b3f7-14b97cfbad47/1/sxagaE0dOLrPQzjCsB2ztBNw60U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/6c4d62-8daf-4502-b3f7-14b97cfbad47/1/sxagaE0dOLrPQzjCsB2ztBNw60U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:ab:4e:69:4f:6f:48:e1:66:0f:c1:d8:f5:3a:88:6e:53:16:
60:28:58:7d:e9:19:17:21:d7:c9:ec:e5:1c:8d:01:25:eb:50:
62:96:9b:ab:b8:85:ea:5c:70:a9:d8:6b:67:c6:a4:71:6f:fc:
c0:04:3e:a6:23:90:94:18:cd:35:cc:19:fc:e5:28:be:0e:e2:
0a:18:a3:01:8f:da:e2:a8:f4:08:d5:6e:0d:6a:7c:dc:ba:80:
9e:ed:08:f4:7b:4e:f1:88:88:76:69:d5:19:e9:37:72:10:76:
08:f8:63:94:c1:e0:1a:8e:95:ef:f1:eb:11:5f:ee:92:05:61:
22:2a:66:39:98:5b:cf:49:8f:16:09:d1:0c:30:37:40:82:95:
2c:51:e4:24:88:0a:da:7e:23:10:52:e3:d6:79:50:f7:52:1b:
87:14:31:53:9a:a7:6c:28:c8:04:b7:19:e6:07:80:14:c3:06:
02:f2:a7:c2:d3:5e:fc:92:35:66:91:25:a0:5b:dc:cd:d6:5e:
48:46:b2:9b:53:c3:ed:bd:89:6e:4e:bb:94:37:86:f8:70:56:
cc:a8:a8:e1:e4:38:3e:38:84:ae:5f:30:15:91:ca:a2:94:f8:
52:6c:e0:09:df:c3:ce:42:c0:ac:0d:f9:a2:89:91:7f:70:54:
92:7a:26:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:00:59 2025 by rpki-client