Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
File: sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft (raw, json)
Hash identifier: /l3yo/BCYBoeetOOYUpm0ZJkcHAkqcM88l/Vw1p9Lss=
Subject key identifier: A2:25:43:4A:46:31:92:41:46:BD:79:60:6A:20:DF:0F:08:E2:96:D4
Authority key identifier: B2:06:63:58:3A:81:89:CB:EA:AC:88:D4:38:76:79:97:B1:12:55:49
Certificate issuer: /CN=b20663583a8189cbeaac88d438767997b1125549
Certificate serial: 0199FD345F1C258C4C68C550723070083B19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
Manifest number: 1640
Signing time: Sun 19 Oct 2025 16:01:31 +0000
Manifest this update: Sun 19 Oct 2025 16:01:31 +0000
Manifest next update: Mon 20 Oct 2025 16:01:31 +0000
Files and hashes: 1: fW2b4Mi4-jlU6WyOHwej57Bj7xc.roa (hash: gkYhGIaUuP9pIbVaUa+O+pFYYvku1Vu69Icl89ypkjo=)
2: sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl (hash: PunCUZ8i3sDb6yD+s4TVOHcpo/ugRxOK9pHjRH83xQg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:5f:1c:25:8c:4c:68:c5:50:72:30:70:08:3b:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b20663583a8189cbeaac88d438767997b1125549
Validity
Not Before: Oct 19 16:01:31 2025 GMT
Not After : Oct 20 16:01:31 2025 GMT
Subject: CN=a225434a4631924146bd79606a20df0f08e296d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:de:5a:59:51:19:bb:8b:5c:87:01:c7:55:0f:
c3:cf:b0:e1:16:59:95:31:bc:40:d8:88:17:f9:8f:
bd:50:da:1a:65:9a:88:3f:7d:ba:cb:f4:c7:97:e9:
3e:63:19:51:4c:16:48:2c:14:2f:e8:5e:22:29:5c:
1b:51:dd:0e:60:72:27:4a:f4:07:b3:9c:1c:2e:41:
6e:bd:21:1a:06:3a:40:3f:46:0e:79:e0:12:b2:96:
45:12:f4:ff:35:ab:9a:6b:a6:be:0b:01:e1:50:3e:
50:31:e9:e4:ff:1b:a1:36:6e:8f:f4:ae:90:25:72:
4a:e3:51:e3:a2:5e:dc:b4:90:7e:ae:bc:42:3e:c9:
83:9b:db:aa:53:71:b3:56:e1:4e:5a:da:29:3b:08:
36:dd:94:4b:63:49:b5:d0:ae:bb:c3:c8:df:44:1a:
e2:f0:d5:61:a3:76:b6:07:8d:13:73:ee:84:01:35:
0b:d6:04:e1:15:e9:55:da:95:0c:22:2b:8f:57:d3:
da:2a:35:1c:42:f3:c3:e9:bc:78:57:a7:96:47:6b:
cf:20:0c:f0:f4:f4:ca:87:08:6c:0e:b0:b0:58:00:
65:69:9c:81:a0:ac:2a:a1:f0:ac:ec:73:61:a5:0e:
d1:35:08:75:78:c2:d9:b7:be:1b:4c:13:73:02:a4:
68:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:25:43:4A:46:31:92:41:46:BD:79:60:6A:20:DF:0F:08:E2:96:D4
X509v3 Authority Key Identifier:
keyid:B2:06:63:58:3A:81:89:CB:EA:AC:88:D4:38:76:79:97:B1:12:55:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:88:a1:ce:e3:df:b2:80:c9:b6:85:0c:5e:b6:82:37:09:b4:
74:35:fe:b9:a1:45:e1:f9:af:b1:76:da:5b:80:54:2d:db:8e:
e0:21:0e:af:e6:f2:5f:a1:ab:0f:84:8d:8e:aa:32:34:e4:6a:
20:28:8d:e2:d5:b7:c9:fa:f4:b7:ab:ee:ec:ea:2c:c1:ed:38:
87:fb:cc:c7:54:75:89:3a:32:6e:f2:d4:6b:34:ba:7b:1d:15:
7b:b0:a7:05:b6:11:c1:57:59:62:9c:ce:fc:21:9f:29:45:77:
47:8f:ab:12:75:31:18:fb:6b:3c:49:9d:a7:ad:9b:e3:44:03:
50:13:6f:25:64:f2:86:d1:ea:35:3e:64:79:cc:34:1a:f0:78:
57:ec:8f:73:9a:d7:3c:50:2d:fc:bc:16:80:74:f7:42:a3:6a:
ac:64:7a:ec:16:81:c1:22:71:e4:56:a0:a5:6d:17:0c:63:0c:
51:7d:26:dc:07:09:8d:fa:5d:6a:b6:08:54:fe:37:4f:55:e1:
5e:ee:05:bf:f4:c6:d0:af:df:6d:5f:54:b4:0f:c8:b5:b6:19:
4a:92:c2:fd:f1:b0:9f:56:70:4b:9d:e5:fa:89:16:f7:e5:38:
1b:02:f4:9f:a2:20:9b:58:a8:0e:c6:3d:ee:0c:f3:a6:6a:a0:
d5:71:86:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 01:17:45 2025 by rpki-client