Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
File: sgTq-NsT70M8-YIp0jLTMKX14lY.mft (raw, json)
Hash identifier: XjgwTiBGFqQy8b8+M+ZVwNha0Kx0sItfAWV2T5mI1Gk=
Subject key identifier: 7A:D6:41:FD:DA:15:E5:A0:52:62:25:3B:F9:1F:57:B5:ED:30:AC:69
Authority key identifier: B2:04:EA:F8:DB:13:EF:43:3C:F9:82:29:D2:32:D3:30:A5:F5:E2:56
Certificate issuer: /CN=b204eaf8db13ef433cf98229d232d330a5f5e256
Certificate serial: 0198895727D7BA73FCC5BFF30879E07176F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
Manifest number: 1622
Signing time: Fri 08 Aug 2025 11:00:47 +0000
Manifest this update: Fri 08 Aug 2025 11:00:47 +0000
Manifest next update: Sat 09 Aug 2025 11:00:47 +0000
Files and hashes: 1: sgTq-NsT70M8-YIp0jLTMKX14lY.crl (hash: rPprOGnhGVFDuE+i+cMAXY/XZRO/1nt8mkPbzgI+gMM=)
2: xgKcu0KPsxc8M315Trs0GW1UUwk.roa (hash: ICZ6+2Jz2veLFc1cLdSpid822PA3P/5mVBK8JthGSW0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 11:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:89:57:27:d7:ba:73:fc:c5:bf:f3:08:79:e0:71:76:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b204eaf8db13ef433cf98229d232d330a5f5e256
Validity
Not Before: Aug 8 11:00:47 2025 GMT
Not After : Aug 9 11:00:47 2025 GMT
Subject: CN=7ad641fdda15e5a05262253bf91f57b5ed30ac69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:22:5d:38:18:e4:90:66:9f:42:4c:3f:90:71:
13:6a:ee:ce:db:52:c2:e7:89:a5:ad:6a:78:b4:76:
53:64:14:13:6e:05:d8:b5:94:c1:8a:df:e0:93:cd:
bf:b4:ea:c8:36:36:11:b2:14:3a:13:fb:bb:73:99:
c0:5c:f2:d6:f2:b4:0b:0a:0d:96:8f:ab:ae:2b:28:
09:3a:c5:8a:35:65:ab:ce:86:04:47:cd:61:70:ac:
78:c7:7d:cf:ac:83:af:99:76:a0:c0:b4:ce:e5:91:
be:50:af:3e:f6:81:53:b3:da:8a:57:45:2a:52:7c:
d3:8c:b5:d9:f6:2b:6d:f0:1c:98:b3:6a:c0:7f:2e:
b9:30:1d:b2:5d:e0:19:10:94:c8:3b:b8:b3:5e:23:
be:60:12:da:ff:87:89:80:51:33:61:0e:f0:52:b4:
6f:ec:34:c5:ee:e9:1b:b9:b7:e0:66:be:6f:83:56:
e4:fd:b7:1f:3c:74:fb:d4:2d:81:01:d5:ef:4e:6d:
82:6d:bd:3e:60:bf:48:54:bd:c2:3f:f5:9f:05:e7:
c2:d7:ee:3e:c6:66:bb:37:5b:5d:21:20:e7:57:ce:
de:34:54:85:6a:83:a7:41:90:b7:93:e6:64:a4:3b:
bc:f6:bb:2a:57:0e:b3:cb:01:51:ff:77:3a:d8:50:
20:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:D6:41:FD:DA:15:E5:A0:52:62:25:3B:F9:1F:57:B5:ED:30:AC:69
X509v3 Authority Key Identifier:
keyid:B2:04:EA:F8:DB:13:EF:43:3C:F9:82:29:D2:32:D3:30:A5:F5:E2:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:67:b4:bf:e3:87:92:b9:11:69:56:6c:9e:c3:ba:f0:ac:c5:
f9:7c:30:fd:bc:23:45:d7:c1:17:d8:06:6a:d8:08:db:52:41:
81:dd:fc:90:b2:68:c9:53:46:c3:b0:ab:e3:40:f5:11:33:6a:
80:c4:d5:76:56:57:62:86:58:47:f4:bb:cd:cf:72:94:b2:a4:
14:11:12:64:c5:55:65:28:18:d1:60:6a:74:4b:a6:eb:b8:1b:
51:c2:c4:80:f0:12:08:83:fc:cc:5a:7b:9c:6f:4a:45:7f:bd:
d9:22:cc:4b:ff:07:88:95:ad:41:80:4a:e3:6f:82:af:68:59:
37:aa:31:cf:2d:36:05:b3:05:9d:e8:6b:46:f9:13:bd:ac:0b:
4a:1a:b0:54:42:0c:0f:a0:e7:6d:87:2d:d7:04:86:21:48:bc:
d1:87:f7:27:29:c7:b7:54:4f:90:0b:25:ed:6d:18:27:de:0b:
4e:8e:30:0d:8b:cd:db:60:f7:01:99:4a:73:a9:bf:de:ac:62:
35:da:85:f3:48:4b:26:bf:56:31:6f:4a:64:32:cc:7e:09:cd:
ed:99:d1:55:bf:37:ba:33:39:e2:45:5b:83:f5:04:9b:32:fb:
16:9d:83:38:7d:61:9c:9d:dc:f6:7a:0f:b1:e3:e0:0c:75:73:
ed:a8:73:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 20:56:51 2025 by rpki-client