Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
File: sgTq-NsT70M8-YIp0jLTMKX14lY.mft (raw, json)
Hash identifier: mJkkyQpZwv1TbZpk4f/cOXtlKKcZbKzfdn7mu7/k4/Y=
Subject key identifier: 03:EF:01:56:26:96:2E:FF:78:26:AF:2E:78:0D:96:B7:69:E8:4F:75
Authority key identifier: B2:04:EA:F8:DB:13:EF:43:3C:F9:82:29:D2:32:D3:30:A5:F5:E2:56
Certificate issuer: /CN=b204eaf8db13ef433cf98229d232d330a5f5e256
Certificate serial: 0199FC21C9D74C3C62F8A22C1A291E846CE6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
Manifest number: 16E2
Signing time: Sun 19 Oct 2025 11:01:36 +0000
Manifest this update: Sun 19 Oct 2025 11:01:36 +0000
Manifest next update: Mon 20 Oct 2025 11:01:36 +0000
Files and hashes: 1: sgTq-NsT70M8-YIp0jLTMKX14lY.crl (hash: 8MEnZgYQOqcHqO77q0QJj/htA1nAHcK+1I91Xlp8ZiA=)
2: xgKcu0KPsxc8M315Trs0GW1UUwk.roa (hash: ICZ6+2Jz2veLFc1cLdSpid822PA3P/5mVBK8JthGSW0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:c9:d7:4c:3c:62:f8:a2:2c:1a:29:1e:84:6c:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b204eaf8db13ef433cf98229d232d330a5f5e256
Validity
Not Before: Oct 19 11:01:36 2025 GMT
Not After : Oct 20 11:01:36 2025 GMT
Subject: CN=03ef015626962eff7826af2e780d96b769e84f75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:1f:45:fe:a1:51:46:db:4b:07:d0:c3:ac:cb:
5b:6d:f5:9d:06:9e:00:79:b3:4a:f3:06:4e:ef:57:
17:6f:51:f3:14:8e:c5:fa:9e:5a:69:90:f8:2a:d8:
ae:d2:19:02:60:9b:f9:5b:ac:d3:0a:4e:d5:54:ac:
fc:62:85:87:f2:ed:41:2d:0a:38:49:17:f2:1f:9d:
8e:1d:b8:db:30:60:8a:9d:24:f4:9a:96:d5:94:06:
61:81:20:c0:d7:e8:a6:83:83:1a:b1:3b:95:82:03:
f0:12:27:f4:ea:96:74:b7:03:79:7a:7d:3c:ea:cb:
50:62:ad:b9:3c:01:1d:c5:b4:46:21:f0:77:9f:23:
99:a7:5e:4c:5c:98:ac:89:0d:62:b8:ef:ea:0e:61:
ee:b2:a9:05:10:4d:18:e5:e7:a6:0d:46:77:95:a8:
b0:26:e5:35:ea:c3:46:d4:c5:60:0b:81:fe:d3:39:
54:be:e3:9b:ea:6e:a9:ae:dc:a2:b0:ea:c4:26:96:
59:2a:70:b8:dd:93:2b:01:0a:77:5f:85:da:81:6b:
21:3e:fc:20:80:3c:b3:a6:5c:d3:f8:d6:81:d8:e8:
73:31:73:02:3a:c1:28:49:a2:4f:bc:fd:64:20:9b:
64:d4:b3:ad:11:3a:af:c6:21:dc:f2:6a:2d:82:60:
1f:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:EF:01:56:26:96:2E:FF:78:26:AF:2E:78:0D:96:B7:69:E8:4F:75
X509v3 Authority Key Identifier:
keyid:B2:04:EA:F8:DB:13:EF:43:3C:F9:82:29:D2:32:D3:30:A5:F5:E2:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:8d:87:da:5d:0c:16:ff:43:e3:53:39:8e:78:7d:35:35:70:
94:e8:10:75:ca:21:7c:3d:79:4c:51:ba:c0:b3:94:b6:f2:58:
ba:c3:27:ef:e1:64:de:e4:71:55:81:d4:7a:62:53:d0:0a:1b:
90:97:dc:05:13:75:cc:b4:75:7e:14:ec:41:d7:25:7e:9d:71:
91:5b:5e:94:88:71:ab:9c:7b:e1:c0:51:ef:1c:bf:e5:6c:20:
ea:1f:8e:40:1e:96:52:11:6f:c3:35:1d:49:39:30:b8:46:d1:
55:8b:1c:18:0b:57:27:4e:99:a7:99:47:80:33:d2:e1:8b:4b:
9a:00:b4:da:1b:5f:87:bc:25:8f:d5:75:11:03:9a:29:c7:37:
6a:69:ac:8b:32:cf:03:37:2d:8f:87:7a:5e:28:94:b7:87:13:
45:1e:a2:a3:2c:c1:74:cd:4d:a7:9c:b2:6d:26:8b:fb:88:57:
61:de:6e:ec:39:d4:9e:f9:7f:58:b8:a1:14:b8:bb:96:be:0f:
1c:60:cd:7a:7a:58:99:cb:76:7e:89:95:63:d7:37:c4:16:4f:
e3:df:ab:a8:21:c9:68:03:2d:9a:69:80:25:c6:7e:87:e8:f9:
4a:1b:4f:d4:0a:24:9f:33:c3:dc:96:39:f7:8a:8e:82:12:4d:
a7:62:48:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:17:45 2025 by rpki-client