Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
File: sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft (raw, json)
Hash identifier: QlT3Pm+TO0rIOkzS+7CNebVhXrGdzYlR7DI5Ch7Xvuo=
Subject key identifier: 31:89:B1:4C:F3:87:2A:23:2B:C4:AB:1F:30:F4:E7:F5:C7:94:18:F0
Authority key identifier: B2:06:63:58:3A:81:89:CB:EA:AC:88:D4:38:76:79:97:B1:12:55:49
Certificate issuer: /CN=b20663583a8189cbeaac88d438767997b1125549
Certificate serial: 0197B7EAD2383566032D7F02030E7DA22775
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
Manifest number: 1513
Signing time: Sat 28 Jun 2025 19:01:48 +0000
Manifest this update: Sat 28 Jun 2025 19:01:48 +0000
Manifest next update: Sun 29 Jun 2025 19:01:48 +0000
Files and hashes: 1: fW2b4Mi4-jlU6WyOHwej57Bj7xc.roa (hash: gkYhGIaUuP9pIbVaUa+O+pFYYvku1Vu69Icl89ypkjo=)
2: sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl (hash: NJAee7C2+4KGrMxxUwOR7q6HR8jXxByioinNx6QQ8PQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:d2:38:35:66:03:2d:7f:02:03:0e:7d:a2:27:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b20663583a8189cbeaac88d438767997b1125549
Validity
Not Before: Jun 28 19:01:48 2025 GMT
Not After : Jun 29 19:01:48 2025 GMT
Subject: CN=3189b14cf3872a232bc4ab1f30f4e7f5c79418f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e5:63:47:b6:34:19:10:a3:98:28:67:35:57:
f2:03:8a:13:1c:24:40:64:90:84:f2:85:05:3c:fe:
f4:c4:0f:b6:c7:41:31:ee:f5:37:20:63:84:00:96:
22:5c:65:94:cf:e3:e5:76:79:fe:70:39:33:27:ed:
93:d3:5b:37:08:7b:b8:bc:c3:57:bc:00:0d:51:50:
98:51:4a:ee:57:33:e2:a9:17:69:fd:5b:ac:70:d5:
91:51:b6:8f:7b:53:72:06:95:b0:8a:c4:9f:34:88:
f6:51:a2:84:ae:69:d7:82:a5:17:45:62:4f:33:b6:
6e:d0:c7:6b:02:5a:11:7b:dd:0c:7e:92:94:ff:b3:
f2:81:c0:4e:a8:ad:9b:91:31:87:2f:d8:4e:c7:ad:
f6:ad:3f:dd:56:bf:17:fb:b3:f0:0c:ee:5a:63:40:
ca:ae:55:f4:6e:b0:f9:0d:3e:e2:97:c6:56:e4:24:
32:ea:1b:4b:b5:48:36:28:88:c3:26:db:34:44:c6:
e1:04:4a:1e:53:b8:e1:1b:6d:62:9e:49:ad:4a:ec:
81:97:df:e0:00:39:a5:69:de:f8:0b:49:72:99:a1:
f4:9e:b1:d8:5d:4c:81:20:7a:8d:3e:cc:52:a6:4a:
43:28:eb:9d:87:05:03:03:9a:c6:6c:a3:20:c5:f7:
58:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:89:B1:4C:F3:87:2A:23:2B:C4:AB:1F:30:F4:E7:F5:C7:94:18:F0
X509v3 Authority Key Identifier:
keyid:B2:06:63:58:3A:81:89:CB:EA:AC:88:D4:38:76:79:97:B1:12:55:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:f7:e3:99:d9:90:95:58:1a:1b:6b:d2:fd:ac:84:83:8a:93:
b0:79:d2:bc:a4:d8:80:55:6c:88:20:b2:3c:c2:7b:8c:a2:2a:
76:8b:74:a5:b2:b1:7f:5d:c7:69:df:ef:a1:16:45:27:1f:98:
f5:7f:33:74:12:36:c8:78:04:c4:69:e0:72:99:bf:2a:27:72:
67:bb:9b:0a:1f:c1:d1:a7:05:ae:8b:57:d2:76:00:f7:3a:2b:
7f:6a:45:20:0c:79:3f:e3:8d:d7:11:73:fa:61:78:2d:47:cf:
11:fd:1f:c9:4f:98:c4:a7:fc:11:4c:b4:1f:d5:00:d4:cb:cf:
2b:c6:9c:7a:5b:53:85:fc:17:cf:f9:61:1b:83:e6:a3:25:15:
47:99:d5:a6:e0:1b:0e:c8:8b:e9:ce:57:b2:40:9d:e5:f9:41:
1d:73:36:fa:7b:01:f3:fb:68:1c:47:0a:9e:a1:15:f0:4c:38:
8c:e2:68:9f:7d:41:52:57:0e:87:48:ff:18:d4:3a:81:9a:ec:
55:00:c9:25:44:0a:90:32:77:7b:e5:ac:06:ff:7b:9d:61:6a:
6d:18:c6:8f:59:e6:94:cf:64:67:04:b4:31:1b:82:50:97:fc:
b7:80:7f:87:35:16:fa:4b:a2:7a:20:da:b8:09:68:db:a7:90:
24:08:e0:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:54:18 2025 by rpki-client