Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
File: sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft (raw, json)
Hash identifier: r/kSG17F51Y8jRV8zHHpzwSgF4P0hZ66Vmz08VPvwhQ=
Subject key identifier: 4C:EF:38:D5:1E:B5:1E:A6:B5:E1:F5:52:53:AC:7C:B0:4F:BB:44:FD
Authority key identifier: B2:06:63:58:3A:81:89:CB:EA:AC:88:D4:38:76:79:97:B1:12:55:49
Certificate issuer: /CN=b20663583a8189cbeaac88d438767997b1125549
Certificate serial: 019A7113232B781DBC61AA9B38BF8AD7D646
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
Manifest number: 167C
Signing time: Tue 11 Nov 2025 04:01:10 +0000
Manifest this update: Tue 11 Nov 2025 04:01:10 +0000
Manifest next update: Wed 12 Nov 2025 04:01:10 +0000
Files and hashes: 1: fW2b4Mi4-jlU6WyOHwej57Bj7xc.roa (hash: gkYhGIaUuP9pIbVaUa+O+pFYYvku1Vu69Icl89ypkjo=)
2: sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl (hash: DyRKw6QVrNUfFiCcM5oYRGaaXhDE+EY1EuEg+FkbjxA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:13:23:2b:78:1d:bc:61:aa:9b:38:bf:8a:d7:d6:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b20663583a8189cbeaac88d438767997b1125549
Validity
Not Before: Nov 11 04:01:10 2025 GMT
Not After : Nov 12 04:01:10 2025 GMT
Subject: CN=4cef38d51eb51ea6b5e1f55253ac7cb04fbb44fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:fe:11:92:a0:62:d0:ac:11:01:cb:d0:ac:ad:
59:3d:4f:07:af:9d:de:fe:a5:16:c3:13:08:2c:3c:
4a:89:79:cd:df:65:29:ff:bd:93:94:77:cb:52:8d:
65:80:dd:d3:6d:5b:9e:da:c8:a0:ce:99:5e:26:9c:
59:d5:24:98:8f:41:32:2a:5c:c0:a4:7a:3c:2a:e7:
ce:8e:a6:13:20:e3:40:d8:70:2a:8a:f8:e4:32:8b:
35:ee:8d:09:e6:48:b6:c0:7e:9c:ef:02:c8:fc:d3:
51:e8:8f:7b:13:3a:e9:49:61:6a:1c:6d:98:68:22:
02:db:6f:7d:e6:8c:cf:4a:c9:5c:d8:e4:55:6a:dd:
3b:1c:6b:3e:57:90:30:55:72:48:8d:58:ce:b9:d0:
db:c2:26:a3:57:fb:6e:98:33:7e:9f:72:4b:90:cf:
5e:b9:a6:f0:b1:75:cd:aa:95:0f:45:7f:b0:b5:08:
e2:37:49:a9:8d:4c:a2:1c:b2:bc:54:a1:c1:87:0b:
1a:8d:a5:31:32:a0:fb:ba:2b:b2:4a:94:a2:97:da:
df:95:25:a2:3d:d1:11:8e:1b:b8:39:dd:ba:08:b3:
f0:85:5c:72:03:2b:ba:b0:0f:cf:97:81:55:75:ca:
7d:27:9f:8e:25:09:ac:fc:0e:df:57:95:8b:45:cd:
0b:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:EF:38:D5:1E:B5:1E:A6:B5:E1:F5:52:53:AC:7C:B0:4F:BB:44:FD
X509v3 Authority Key Identifier:
keyid:B2:06:63:58:3A:81:89:CB:EA:AC:88:D4:38:76:79:97:B1:12:55:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:c6:6c:f9:d2:fe:5f:8c:7e:72:86:7f:9d:7c:04:5d:eb:d9:
71:1b:8a:94:43:09:53:3a:41:15:89:de:63:b8:ec:6d:d2:20:
78:9f:ed:57:2b:5c:ef:a7:1a:98:01:4d:5f:3c:a6:fe:eb:ef:
a8:97:c6:40:53:35:37:e3:7d:fe:6e:c2:dd:0e:17:91:9b:2c:
ac:19:80:c8:3f:99:43:a8:57:fa:44:1e:b1:ef:55:48:db:d6:
9c:c6:19:6e:4a:59:20:92:48:92:13:f6:01:c4:19:3f:76:85:
9b:1e:23:26:13:df:bb:14:79:d5:90:5e:b1:cb:6b:47:2c:79:
80:ea:01:91:9c:49:f9:19:a3:24:97:bc:33:e4:a6:86:1c:a1:
bf:a2:d8:4b:06:d1:0b:92:47:96:44:79:14:9b:d6:d3:e7:4a:
00:de:a5:62:3b:42:4b:59:99:f9:42:81:80:01:f7:8f:bc:f2:
19:c7:45:33:44:58:b3:e8:64:77:d1:55:f9:37:72:4d:1e:f8:
8b:37:12:1c:3b:6d:f0:05:f0:06:95:b3:a5:b5:8e:28:f0:14:
74:7f:af:19:89:16:4d:88:6d:fd:9d:96:58:fc:cb:d3:52:37:
15:51:09:a0:c8:a8:79:c1:29:5c:35:b1:03:c3:de:28:49:59:
cd:41:0c:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:47:43 2025 by rpki-client