Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
File: sgTq-NsT70M8-YIp0jLTMKX14lY.mft (raw, json)
Hash identifier: h9Aqt6wHEn9PbFOQrIrL+iKCck5rRaLyvX6s/m8+RyU=
Subject key identifier: E1:4A:23:20:F6:5C:AA:B7:64:C9:FB:9A:76:E4:04:CD:AC:58:DC:F0
Authority key identifier: B2:04:EA:F8:DB:13:EF:43:3C:F9:82:29:D2:32:D3:30:A5:F5:E2:56
Certificate issuer: /CN=b204eaf8db13ef433cf98229d232d330a5f5e256
Certificate serial: 0198D4A84CCB98A5D8D328AD051F6BDCCF1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
Manifest number: 1649
Signing time: Sat 23 Aug 2025 02:00:56 +0000
Manifest this update: Sat 23 Aug 2025 02:00:56 +0000
Manifest next update: Sun 24 Aug 2025 02:00:56 +0000
Files and hashes: 1: sgTq-NsT70M8-YIp0jLTMKX14lY.crl (hash: ikH1/3AAZSANYG0lnNS8HmGYlAej6u4VWXsq3JcLqMw=)
2: xgKcu0KPsxc8M315Trs0GW1UUwk.roa (hash: ICZ6+2Jz2veLFc1cLdSpid822PA3P/5mVBK8JthGSW0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a8:4c:cb:98:a5:d8:d3:28:ad:05:1f:6b:dc:cf:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b204eaf8db13ef433cf98229d232d330a5f5e256
Validity
Not Before: Aug 23 02:00:56 2025 GMT
Not After : Aug 24 02:00:56 2025 GMT
Subject: CN=e14a2320f65caab764c9fb9a76e404cdac58dcf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:46:51:17:e8:1b:e2:91:e7:2f:ad:30:23:20:
0c:04:13:75:53:a5:75:dc:b1:c6:a1:7a:ee:e0:31:
59:2e:55:53:ec:ac:30:c9:b1:d6:df:c9:17:03:f1:
ce:f5:87:4a:e2:fd:a5:a0:03:08:f8:83:47:68:a6:
b1:f8:c4:c6:c0:a1:14:4f:39:7d:2a:bd:70:c9:6a:
81:fc:e3:71:d1:6c:97:92:c4:26:1c:a9:90:6c:09:
f1:98:bb:6a:b6:f9:b6:cc:d5:7e:a4:ff:04:04:96:
fc:c3:9c:f8:f5:fb:28:b8:e7:25:89:9f:5c:a8:bb:
3d:19:3e:d0:d6:fd:0b:e8:dc:99:2e:62:31:ac:e8:
6f:1a:6f:2d:97:68:0d:d9:7e:0c:23:a8:13:72:53:
46:88:56:b2:67:64:36:74:01:67:b8:e5:3d:4e:c2:
b9:9e:6f:61:aa:7a:8f:59:01:3d:85:dc:9c:67:b5:
f6:60:e7:45:fb:e4:b5:36:e2:ba:e3:72:77:5b:6b:
b8:53:09:37:5d:85:b8:dc:80:80:cd:87:df:ee:bf:
a1:f7:24:d8:ee:7f:3b:23:a1:e4:e4:9c:10:15:96:
57:69:de:0e:0f:15:8d:69:ab:2f:a8:97:af:29:63:
5e:64:97:c7:d4:5c:c5:c3:d5:53:1e:7a:29:69:5b:
aa:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:4A:23:20:F6:5C:AA:B7:64:C9:FB:9A:76:E4:04:CD:AC:58:DC:F0
X509v3 Authority Key Identifier:
keyid:B2:04:EA:F8:DB:13:EF:43:3C:F9:82:29:D2:32:D3:30:A5:F5:E2:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:8c:49:df:55:2c:46:18:0c:d9:d3:7d:a6:db:da:df:ff:da:
20:67:ac:20:1b:3d:10:3c:be:b2:76:d9:f2:c5:9d:ef:f8:1d:
23:1a:98:0d:07:5e:16:06:97:73:89:e2:33:18:d5:94:50:83:
59:8f:7f:be:12:99:7b:aa:e1:86:00:0a:fc:ee:a6:21:c0:4a:
f7:8d:fc:9f:0c:cd:76:11:a1:d5:1a:36:ba:6f:28:a0:4e:4f:
b6:76:79:9b:96:16:30:17:41:ff:13:53:43:5d:f4:03:90:92:
ff:b5:a6:1d:45:bf:cf:17:d6:a9:44:9a:80:fa:27:8e:fc:aa:
1b:73:a4:66:ec:fa:42:75:c4:56:14:a8:04:00:78:25:47:35:
10:ce:f7:59:af:ee:24:3f:c8:bf:11:d8:92:ce:5c:a8:07:a5:
83:89:fd:6c:50:ff:f5:11:0e:c2:e0:dd:83:21:aa:1e:27:f7:
42:3d:96:4a:11:5c:9d:90:c4:5e:a3:f2:53:dc:da:c1:6d:26:
80:9b:08:83:81:a5:8c:c1:0e:1b:cb:cb:eb:30:91:d2:8d:56:
14:5a:4c:a3:b5:47:84:06:1a:12:69:e0:ee:ce:ed:f4:2d:60:
ea:5a:57:f5:95:10:cd:4b:6c:3a:e5:6f:d3:31:80:8c:c2:5a:
fc:9c:08:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:31:50 2025 by rpki-client