Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/aeae3f-af4d-4eee-b284-a5f6c0aa11de/1/SGUQoxFpcvztleiova_W5FXe0Lo.mft
File: SGUQoxFpcvztleiova_W5FXe0Lo.mft (raw, json)
Hash identifier: mE5jVAKcSPQgq5qudllvVaQs/4hNum0dRyWJRwbS/3g=
Subject key identifier: 1A:54:72:EE:FC:50:00:CE:5E:D3:7B:1B:FD:97:88:52:49:72:5D:8C
Authority key identifier: 48:65:10:A3:11:69:72:FC:ED:95:E8:A8:BD:AF:D6:E4:55:DE:D0:BA
Certificate issuer: /CN=486510a3116972fced95e8a8bdafd6e455ded0ba
Certificate serial: 019A22F74EB6322D0239BB1632876B170583
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SGUQoxFpcvztleiova_W5FXe0Lo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/aeae3f-af4d-4eee-b284-a5f6c0aa11de/1/SGUQoxFpcvztleiova_W5FXe0Lo.mft
Manifest number: 16FB
Signing time: Mon 27 Oct 2025 00:00:24 +0000
Manifest this update: Mon 27 Oct 2025 00:00:24 +0000
Manifest next update: Tue 28 Oct 2025 00:00:24 +0000
Files and hashes: 1: SGUQoxFpcvztleiova_W5FXe0Lo.crl (hash: bge/YzwUn58IxpDEwxW+cLw+P1mlUCc3a1Z8YAF03VQ=)
2: SNsRs_4WTuL917-zEoDb2DAW4Cs.roa (hash: N22szcBJgG6xZhKtnqlshnG6vFReTJVV2XmRzhmuoSw=)
3: lQwR3y5IAJ7kyCCFVo104fC4SsY.roa (hash: MwEmP7Sqq33K1HUPXLtLK+kd2q/HJrM3DtuK+SIM+zY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/aeae3f-af4d-4eee-b284-a5f6c0aa11de/1/SGUQoxFpcvztleiova_W5FXe0Lo.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/aeae3f-af4d-4eee-b284-a5f6c0aa11de/1/SGUQoxFpcvztleiova_W5FXe0Lo.mft
rsync://rpki.ripe.net/repository/DEFAULT/SGUQoxFpcvztleiova_W5FXe0Lo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 00:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:22:f7:4e:b6:32:2d:02:39:bb:16:32:87:6b:17:05:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=486510a3116972fced95e8a8bdafd6e455ded0ba
Validity
Not Before: Oct 27 00:00:24 2025 GMT
Not After : Oct 28 00:00:24 2025 GMT
Subject: CN=1a5472eefc5000ce5ed37b1bfd97885249725d8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:b1:7b:a9:97:c6:9d:a1:45:10:d9:30:78:62:
b9:11:1f:80:ee:0b:ed:f4:e7:46:01:bf:7f:22:0f:
1c:30:04:62:f2:b6:d4:b5:5e:a8:f3:fe:56:4a:a4:
67:7a:e2:33:9c:2c:c1:2d:2e:1b:5a:65:6d:62:f4:
52:4b:d0:69:5a:8f:13:67:b3:75:30:42:ce:8f:8d:
77:cd:81:ca:36:b8:ff:9d:e1:c1:da:d8:5e:39:8a:
cd:8f:15:b6:95:a9:e0:48:17:87:91:10:ef:bc:a2:
8d:4d:38:f0:29:ca:d9:98:cb:b3:22:23:c3:8e:a5:
45:80:5d:e4:b5:5e:a1:f3:1a:70:a4:66:db:4a:6f:
82:08:70:4c:b1:52:b6:74:20:c0:aa:1a:55:39:54:
39:6d:ee:36:86:70:1b:8b:e1:51:32:ce:c7:39:74:
c5:e6:15:1c:63:45:fc:f1:5d:0f:54:38:8d:3c:92:
f0:01:79:88:21:1c:80:03:ca:9e:73:0f:9d:99:c4:
33:da:28:fc:d1:c0:4c:53:46:14:53:03:f3:b6:0b:
33:06:79:51:be:c1:c8:f3:0b:a0:4e:ed:5b:e0:9b:
10:83:59:01:91:a1:fe:c2:6c:3a:fc:fc:9d:ae:0a:
ab:90:aa:f9:2d:1e:49:87:18:7c:f7:74:7e:1d:6d:
de:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:54:72:EE:FC:50:00:CE:5E:D3:7B:1B:FD:97:88:52:49:72:5D:8C
X509v3 Authority Key Identifier:
keyid:48:65:10:A3:11:69:72:FC:ED:95:E8:A8:BD:AF:D6:E4:55:DE:D0:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SGUQoxFpcvztleiova_W5FXe0Lo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/aeae3f-af4d-4eee-b284-a5f6c0aa11de/1/SGUQoxFpcvztleiova_W5FXe0Lo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/aeae3f-af4d-4eee-b284-a5f6c0aa11de/1/SGUQoxFpcvztleiova_W5FXe0Lo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c9:93:f7:cb:12:74:fa:fe:af:e7:eb:a3:49:05:37:f0:77:e7:
d3:fb:21:d1:43:20:9f:93:bd:d5:a8:75:cd:a5:f8:f8:75:f9:
d4:15:b6:b2:77:b4:e0:53:fd:9c:fa:4b:a6:4f:a1:06:44:af:
a6:93:27:64:92:6d:cb:7b:7f:0e:39:49:81:e9:80:2f:ea:7e:
01:ab:51:d3:fb:d2:f8:1c:18:d2:27:d3:27:59:33:8b:92:21:
73:64:6a:cf:6a:ed:2b:c6:d0:01:5f:7c:c6:41:8d:cb:0d:85:
be:eb:74:90:aa:f8:45:a4:f2:00:f3:c0:4f:2c:01:83:0d:bb:
65:46:4c:f4:14:6e:34:7a:41:99:d0:5c:50:1b:a3:0e:98:3b:
43:21:15:0b:ba:7a:89:60:92:b8:3b:87:82:4f:68:a8:e6:f5:
be:e9:fb:e3:a3:62:fe:5c:59:15:5f:44:5c:d0:cb:68:ce:d7:
a2:9a:a1:ba:6b:34:aa:88:24:56:d2:63:3a:be:66:58:a0:57:
66:23:e3:2e:7d:fa:5b:d8:22:38:d5:98:a5:1d:52:4b:f5:ff:
64:17:2d:d0:e7:69:34:ce:6e:7c:4f:0b:a1:b0:08:c4:55:3d:
26:60:bf:0b:f4:6e:34:a1:0d:85:c8:de:97:90:49:09:d0:8d:
e3:cb:3e:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 09:57:04 2025 by rpki-client