Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
File: sgTq-NsT70M8-YIp0jLTMKX14lY.mft (raw, json)
Hash identifier: fAqHNThjjwfR0aVIuSekQ/X1Th/jKBw2rGRhrY36bcQ=
Subject key identifier: 73:9F:63:34:11:47:BD:0F:87:5E:D3:13:1A:F3:41:B3:E0:D1:D8:0E
Authority key identifier: B2:04:EA:F8:DB:13:EF:43:3C:F9:82:29:D2:32:D3:30:A5:F5:E2:56
Certificate issuer: /CN=b204eaf8db13ef433cf98229d232d330a5f5e256
Certificate serial: 0197CA27036B720264728621046BD7C492AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
Manifest number: 15BF
Signing time: Wed 02 Jul 2025 08:00:43 +0000
Manifest this update: Wed 02 Jul 2025 08:00:43 +0000
Manifest next update: Thu 03 Jul 2025 08:00:43 +0000
Files and hashes: 1: sgTq-NsT70M8-YIp0jLTMKX14lY.crl (hash: HLOLo9bDYjnpV0Rk8AX3zkaImCVUDmew+g0vC7kX2Sk=)
2: xgKcu0KPsxc8M315Trs0GW1UUwk.roa (hash: ICZ6+2Jz2veLFc1cLdSpid822PA3P/5mVBK8JthGSW0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 08:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ca:27:03:6b:72:02:64:72:86:21:04:6b:d7:c4:92:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b204eaf8db13ef433cf98229d232d330a5f5e256
Validity
Not Before: Jul 2 08:00:43 2025 GMT
Not After : Jul 3 08:00:43 2025 GMT
Subject: CN=739f63341147bd0f875ed3131af341b3e0d1d80e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:0d:86:23:e9:fa:2c:14:24:c9:3c:c5:46:05:
e3:b2:09:16:6b:1c:f8:5e:25:e8:58:2d:db:3a:5b:
f0:97:8f:5d:6c:e6:79:f3:61:b8:1f:2b:73:af:e7:
f2:f0:80:b1:e9:43:ec:68:06:47:4b:08:e1:db:96:
93:90:d0:b4:aa:40:26:38:6f:b2:dc:6b:17:1f:58:
67:d5:19:e9:36:85:0c:8c:3b:f7:53:23:5c:be:85:
d6:bb:23:bb:bd:c5:c2:3b:ae:f1:94:4b:a9:78:fb:
bc:f7:8f:6d:cf:ab:fd:40:d8:aa:cd:80:8d:41:0e:
84:fc:aa:c8:52:c5:bc:04:fc:95:02:03:df:f5:09:
95:7e:01:dd:0c:0d:4d:d8:ca:09:a2:ab:2e:97:2b:
60:e5:a4:0d:c6:46:1d:11:5c:14:e6:7c:2c:92:a2:
f4:8d:17:9c:ae:1c:46:92:4a:86:a6:6e:86:2f:dc:
ec:96:23:b3:81:c1:a1:23:77:a2:3e:06:69:84:8e:
6a:ae:6f:f3:6a:7d:71:3e:dd:cc:23:91:a3:b8:5e:
df:0a:03:c5:16:c0:0e:d9:61:40:90:4e:d4:19:b3:
9b:43:f8:40:59:f9:57:eb:48:50:5a:71:41:eb:cc:
b1:43:93:2c:d8:fb:d9:97:16:ae:17:63:91:89:cf:
61:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:9F:63:34:11:47:BD:0F:87:5E:D3:13:1A:F3:41:B3:E0:D1:D8:0E
X509v3 Authority Key Identifier:
keyid:B2:04:EA:F8:DB:13:EF:43:3C:F9:82:29:D2:32:D3:30:A5:F5:E2:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:95:d5:d6:a5:4c:00:56:7f:ca:17:96:53:ba:0f:c9:9c:d3:
af:3c:08:0e:bc:ed:1b:b1:c3:7e:46:49:d9:b2:22:e4:b3:db:
80:4c:c0:23:57:70:48:cb:f2:53:1a:95:79:f7:4b:f3:ee:b2:
8b:19:19:b5:63:ef:4f:f1:d1:a9:c3:84:ae:ed:37:36:c5:4a:
2c:60:04:ec:62:61:57:14:67:4a:fb:10:c7:8f:be:19:2d:77:
8e:5c:e1:53:c2:74:cf:f3:d7:65:64:89:d8:7c:57:98:4d:7f:
65:23:70:e5:a1:39:cb:7c:fd:97:c6:af:d7:15:30:e7:a1:be:
0d:09:2b:be:2f:b5:c4:ee:e6:61:80:16:f7:df:1c:f3:1a:65:
77:10:57:62:3d:85:8f:da:a3:fe:aa:aa:ec:82:4c:27:e6:3f:
8e:d2:c2:10:bf:12:56:9c:09:6d:17:59:6f:d4:47:05:60:cd:
47:4a:18:6e:8d:40:fa:d1:52:5f:47:a1:90:c4:1c:cf:28:db:
82:33:27:91:11:d8:24:df:c5:b4:3f:c6:eb:2a:f7:84:c1:02:
08:52:f8:d2:60:ad:e5:cf:ad:09:51:60:fa:e8:e5:9a:3b:b8:
b0:b1:d1:a1:90:f5:d9:1b:a7:22:87:95:af:3a:ba:82:86:a8:
00:90:3d:04
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfKJwNrcgJkcoYhBGvXxJKsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyMDRlYWY4ZGIxM2VmNDMzY2Y5ODIyOWQyMzJkMzMwYTVm
NWUyNTYwHhcNMjUwNzAyMDgwMDQzWhcNMjUwNzAzMDgwMDQzWjAzMTEwLwYDVQQD
Eyg3MzlmNjMzNDExNDdiZDBmODc1ZWQzMTMxYWYzNDFiM2UwZDFkODBlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0A2GI+n6LBQkyTzFRgXjsgkWaxz4
XiXoWC3bOlvwl49dbOZ582G4Hytzr+fy8ICx6UPsaAZHSwjh25aTkNC0qkAmOG+y
3GsXH1hn1RnpNoUMjDv3UyNcvoXWuyO7vcXCO67xlEupePu8949tz6v9QNiqzYCN
QQ6E/KrIUsW8BPyVAgPf9QmVfgHdDA1N2MoJoqsulytg5aQNxkYdEVwU5nwskqL0
jRecrhxGkkqGpm6GL9zsliOzgcGhI3eiPgZphI5qrm/zan1xPt3MI5GjuF7fCgPF
FsAO2WFAkE7UGbObQ/hAWflX60hQWnFB68yxQ5Ms2PvZlxauF2ORic9hBQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHOfYzQRR70Ph17TExrzQbPg0dgOMB8GA1UdIwQY
MBaAFLIE6vjbE+9DPPmCKdIy0zCl9eJWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2dUcS1Oc1Q3ME04LVlJcDBqTFRNS1gxNGxZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC81OTc2MzgtNzEzYy00NGI3LTliNzAt
MjUwMTdlYzk0MDk1LzEvc2dUcS1Oc1Q3ME04LVlJcDBqTFRNS1gxNGxZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC81OTc2MzgtNzEzYy00NGI3LTliNzAtMjUwMTdlYzk0MDk1
LzEvc2dUcS1Oc1Q3ME04LVlJcDBqTFRNS1gxNGxZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJZXV1qVM
AFZ/yheWU7oPyZzTrzwIDrztG7HDfkZJ2bIi5LPbgEzAI1dwSMvyUxqVefdL8+6y
ixkZtWPvT/HRqcOEru03NsVKLGAE7GJhVxRnSvsQx4++GS13jlzhU8J0z/PXZWSJ
2HxXmE1/ZSNw5aE5y3z9l8av1xUw56G+DQkrvi+1xO7mYYAW998c8xpldxBXYj2F
j9qj/qqq7IJMJ+Y/jtLCEL8SVpwJbRdZb9RHBWDNR0oYbo1A+tFSX0ehkMQczyjb
gjMnkRHYJN/FtD/G6yr3hMECCFL40mCt5c+tCVFg+ujlmju4sLHRoZD12RunIoeV
rzq6goaoAJA9BA==
-----END CERTIFICATE-----
Generated at Wed Jul 2 13:42:34 2025 by rpki-client