Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
File: sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft (raw, json)
Hash identifier: 0uJcMazeqwDKOwbmU0YA9I3LobNBqadI9QeUUrzh91M=
Subject key identifier: 16:51:C8:90:81:D8:4D:E0:82:D8:A0:37:BD:68:A7:B1:E7:C0:6E:39
Authority key identifier: B2:06:63:58:3A:81:89:CB:EA:AC:88:D4:38:76:79:97:B1:12:55:49
Certificate issuer: /CN=b20663583a8189cbeaac88d438767997b1125549
Certificate serial: 0198D5BBDE3DC24B5CAE9D241997A2654C28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
Manifest number: 15A7
Signing time: Sat 23 Aug 2025 07:01:55 +0000
Manifest this update: Sat 23 Aug 2025 07:01:55 +0000
Manifest next update: Sun 24 Aug 2025 07:01:55 +0000
Files and hashes: 1: fW2b4Mi4-jlU6WyOHwej57Bj7xc.roa (hash: gkYhGIaUuP9pIbVaUa+O+pFYYvku1Vu69Icl89ypkjo=)
2: sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl (hash: 8eyyA8qM0UQ6YnsegHyPK2BmbQw3z1af/rZeYL4YV4M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:de:3d:c2:4b:5c:ae:9d:24:19:97:a2:65:4c:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b20663583a8189cbeaac88d438767997b1125549
Validity
Not Before: Aug 23 07:01:55 2025 GMT
Not After : Aug 24 07:01:55 2025 GMT
Subject: CN=1651c89081d84de082d8a037bd68a7b1e7c06e39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:aa:05:e3:2b:88:9b:c0:e6:ef:77:e8:d6:33:
f1:8b:65:c4:fd:70:b6:ca:a3:71:ce:65:49:c9:85:
4b:6b:a4:8a:e9:11:10:84:fa:79:bc:5c:7d:ee:2b:
16:e5:39:78:1f:75:28:d0:c9:a8:f7:16:7e:3f:06:
d8:95:58:d9:78:6f:59:09:6e:b8:94:3b:bf:79:26:
4f:f1:9b:86:5f:bd:d7:5a:6b:cc:86:70:88:4d:69:
3f:89:d3:89:58:d6:5f:36:34:8b:d3:d6:81:58:22:
e2:f8:e5:53:5d:6e:c9:02:be:d2:22:95:18:c6:06:
77:b5:3f:e1:d1:6a:c7:22:20:f0:bb:fd:d6:88:75:
a3:62:a4:1c:d1:eb:bc:74:35:d9:99:f4:5b:08:01:
44:8d:6f:c8:1e:6a:34:11:3b:3a:29:dd:5a:12:8f:
da:4c:4d:dd:9f:a5:68:4d:bb:69:ce:4d:b6:97:b4:
bd:47:15:b5:64:4c:55:7d:fb:a1:5b:71:4f:5f:cb:
f3:10:e4:6f:39:43:bb:b2:c2:51:06:59:e7:0c:ec:
8b:a9:ad:79:22:b3:b6:98:e2:9f:f0:8c:f2:0d:e6:
1b:53:9a:46:7a:c8:e9:cc:47:b5:3a:de:78:84:a6:
ab:34:11:be:ef:6a:9a:c4:48:93:21:4f:43:c3:dc:
a4:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:51:C8:90:81:D8:4D:E0:82:D8:A0:37:BD:68:A7:B1:E7:C0:6E:39
X509v3 Authority Key Identifier:
keyid:B2:06:63:58:3A:81:89:CB:EA:AC:88:D4:38:76:79:97:B1:12:55:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:5e:35:2f:d3:b3:3d:6d:a1:70:bd:33:8f:d1:a4:7f:e1:04:
cf:d7:64:af:d8:f1:7d:23:f2:ec:d8:ae:ec:c0:5a:54:c7:5d:
1d:05:99:03:e1:6d:a2:47:cb:86:b4:e6:90:28:bf:91:0d:f0:
4e:b0:d7:87:e2:52:65:aa:f2:cd:89:6d:aa:58:a0:6c:f3:97:
33:7b:47:d5:76:44:74:29:98:8d:62:01:c2:97:60:d8:a8:b4:
57:0c:53:04:a6:36:c3:10:91:14:48:34:2c:ba:a9:54:39:53:
31:af:93:50:1e:b4:04:ee:84:4e:26:c4:ba:ef:b3:8c:a0:06:
37:71:e9:65:dd:13:ad:df:28:c1:c5:9c:f5:ce:35:d0:1e:57:
3b:d6:7e:07:78:74:58:57:29:b3:cc:f9:d4:52:89:fd:35:f6:
77:88:5d:6a:3a:85:e2:7f:e6:7b:61:a8:a9:17:6b:a0:4a:c4:
3b:3e:3f:2f:94:07:50:50:70:15:99:57:53:d8:41:fa:d3:bb:
4c:20:dd:fc:bd:e1:da:56:b3:4f:bb:aa:8b:98:f1:fb:16:cd:
d1:9e:e6:ca:36:00:34:81:ba:2b:48:f1:2e:cb:4d:ad:ae:bc:
26:89:ab:51:df:73:bc:7a:f0:02:3e:db:59:de:20:aa:07:23:
24:c8:20:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:23:32 2025 by rpki-client