Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
File: sgTq-NsT70M8-YIp0jLTMKX14lY.mft (raw, json)
Hash identifier: Mbr3fpOYeHT420HojeHAPx9wLJgjOd9CRsYL8/vUYYU=
Subject key identifier: 0C:7F:AD:82:90:BB:64:1E:0B:9F:02:B2:48:62:DC:05:D1:3F:43:CE
Authority key identifier: B2:04:EA:F8:DB:13:EF:43:3C:F9:82:29:D2:32:D3:30:A5:F5:E2:56
Certificate issuer: /CN=b204eaf8db13ef433cf98229d232d330a5f5e256
Certificate serial: 019A5119C2C029B391478E8C95E501D5A609
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
Manifest number: 170E
Signing time: Tue 04 Nov 2025 23:00:33 +0000
Manifest this update: Tue 04 Nov 2025 23:00:33 +0000
Manifest next update: Wed 05 Nov 2025 23:00:33 +0000
Files and hashes: 1: sgTq-NsT70M8-YIp0jLTMKX14lY.crl (hash: YGCvQyUktzC+bLNw1D9uGU3sfiVBeeRn79OCDMjkMG4=)
2: xgKcu0KPsxc8M315Trs0GW1UUwk.roa (hash: ICZ6+2Jz2veLFc1cLdSpid822PA3P/5mVBK8JthGSW0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:19:c2:c0:29:b3:91:47:8e:8c:95:e5:01:d5:a6:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b204eaf8db13ef433cf98229d232d330a5f5e256
Validity
Not Before: Nov 4 23:00:33 2025 GMT
Not After : Nov 5 23:00:33 2025 GMT
Subject: CN=0c7fad8290bb641e0b9f02b24862dc05d13f43ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:47:c4:6c:30:77:d9:d2:5d:98:ca:9c:01:96:
94:2f:d3:6b:8e:4f:c2:9a:ce:be:06:4c:b4:02:fa:
4f:74:ab:da:83:01:14:48:f1:ec:a9:e3:ab:a5:72:
e6:a8:65:88:df:0f:c5:19:23:ae:ad:76:72:97:5d:
54:66:45:41:1f:20:60:81:aa:93:95:d8:6b:5a:e6:
53:e0:fb:9c:c3:45:e1:5f:65:74:79:f6:bd:0c:39:
b4:1b:c6:c5:ef:7f:7f:58:cc:79:92:2a:f0:d2:fe:
ad:a1:ba:a2:8a:95:6a:7e:95:0c:48:2a:d6:1f:d0:
50:09:7b:00:91:e4:0a:6f:56:3a:dc:0f:b7:83:42:
a2:55:2f:bd:52:6e:0e:9b:8e:a4:28:05:b9:b2:a5:
63:fd:59:7e:3b:1f:06:02:d2:38:d6:03:a4:69:91:
ea:5f:cc:c6:d6:b8:fd:53:bb:d6:80:76:08:ba:d1:
34:4b:11:b7:52:49:93:31:ea:07:16:ce:dc:9f:a8:
08:d7:cc:d8:06:09:8c:f8:99:41:66:3f:46:93:a9:
59:fb:79:76:b1:33:88:98:3c:d3:33:9d:74:6b:ca:
8c:5c:6e:cb:98:bc:e8:81:7a:9b:22:f5:34:9e:76:
32:24:4d:7a:11:cb:83:6a:6d:58:0f:f3:a3:a4:a9:
f5:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:7F:AD:82:90:BB:64:1E:0B:9F:02:B2:48:62:DC:05:D1:3F:43:CE
X509v3 Authority Key Identifier:
keyid:B2:04:EA:F8:DB:13:EF:43:3C:F9:82:29:D2:32:D3:30:A5:F5:E2:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:80:03:ea:50:91:90:d3:80:06:08:16:b9:f6:6a:f8:ec:47:
1b:af:b3:4e:0a:2c:5b:b5:01:8d:fc:c0:28:8b:49:16:2f:ee:
04:cc:87:1f:b8:11:0a:cb:9f:ed:68:99:ad:4e:82:12:f0:7b:
28:d4:d5:fb:eb:7b:2f:4d:04:35:43:04:56:17:00:c9:01:66:
6a:9c:15:2d:d7:ab:3e:ae:72:54:d7:98:04:fa:78:63:bb:60:
c9:38:5f:91:4e:43:c7:43:36:0a:8b:9b:29:c6:aa:f5:03:71:
4a:a7:99:77:a6:ef:0c:d5:15:08:22:8b:0d:29:68:e6:a3:08:
b5:86:86:ca:d2:d8:78:11:93:c6:12:b2:35:34:f5:da:3d:7f:
94:af:99:c2:60:0b:56:ed:93:12:a0:33:02:30:da:e2:b1:a9:
bb:e6:fd:db:c6:f7:7b:a0:b3:b2:8c:1f:db:ad:0d:1a:9c:22:
52:90:6d:9d:cd:8e:ec:56:33:29:88:ac:54:74:9c:bd:b8:bc:
57:a0:13:4d:e0:78:e4:2a:81:f8:e1:62:3a:a6:90:b8:3f:ef:
80:53:e7:7c:b5:da:f2:57:57:20:72:74:ca:4c:4c:ab:eb:2a:
b6:9f:39:60:df:33:ff:f1:80:6a:e0:e4:63:50:ca:e4:42:eb:
bf:3d:17:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:12:44 2025 by rpki-client