Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/743a50-d7f4-42d1-a09d-7ca93ecb2234/1/sgzLpAbArQxb4AB22ZgLNIhWmoo.mft
File: sgzLpAbArQxb4AB22ZgLNIhWmoo.mft (raw, json)
Hash identifier: aWHra1HmMr5VZiWGNgpDV7ZRCF1enjqeeN20mHrr/iM=
Subject key identifier: FA:7C:C4:97:5C:94:68:35:10:B7:21:60:BA:1C:21:22:B3:23:E4:CA
Authority key identifier: B2:0C:CB:A4:06:C0:AD:0C:5B:E0:00:76:D9:98:0B:34:88:56:9A:8A
Certificate issuer: /CN=b20ccba406c0ad0c5be00076d9980b3488569a8a
Certificate serial: 019A4EF53FB7DC631EF10CDCF5E3CA8FC577
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sgzLpAbArQxb4AB22ZgLNIhWmoo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/743a50-d7f4-42d1-a09d-7ca93ecb2234/1/sgzLpAbArQxb4AB22ZgLNIhWmoo.mft
Manifest number: 11F2
Signing time: Tue 04 Nov 2025 13:01:26 +0000
Manifest this update: Tue 04 Nov 2025 13:01:26 +0000
Manifest next update: Wed 05 Nov 2025 13:01:26 +0000
Files and hashes: 1: sgzLpAbArQxb4AB22ZgLNIhWmoo.crl (hash: qadcUpKDeVRioas0om5Htl3i2kTK8GbW9vjoHif+8MU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/743a50-d7f4-42d1-a09d-7ca93ecb2234/1/sgzLpAbArQxb4AB22ZgLNIhWmoo.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/743a50-d7f4-42d1-a09d-7ca93ecb2234/1/sgzLpAbArQxb4AB22ZgLNIhWmoo.mft
rsync://rpki.ripe.net/repository/DEFAULT/sgzLpAbArQxb4AB22ZgLNIhWmoo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:3f:b7:dc:63:1e:f1:0c:dc:f5:e3:ca:8f:c5:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b20ccba406c0ad0c5be00076d9980b3488569a8a
Validity
Not Before: Nov 4 13:01:26 2025 GMT
Not After : Nov 5 13:01:26 2025 GMT
Subject: CN=fa7cc4975c94683510b72160ba1c2122b323e4ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:56:6c:1d:4c:a8:58:01:a2:d6:5d:c5:2b:83:
22:38:25:f3:dd:13:e0:4f:c2:47:0b:47:e5:df:e6:
90:50:0c:4b:eb:5a:66:be:83:6b:ab:69:d5:eb:68:
e7:d3:02:83:9f:c4:7e:95:06:18:e4:66:fc:71:8c:
00:fd:77:4e:da:ba:0f:85:b5:8a:f3:45:06:b1:35:
c6:e2:78:3c:5f:75:85:79:67:fb:8c:0a:ea:97:79:
55:a9:20:00:fa:9a:47:48:b1:2c:b4:19:98:65:59:
6c:78:c5:a4:23:28:70:8b:72:80:38:f2:3d:f6:2b:
7f:5e:3a:41:95:41:4b:46:95:fd:c7:08:15:34:2c:
d8:fa:15:f3:29:c3:8c:22:c7:cf:59:3a:8d:e2:fa:
98:8d:2f:70:05:a5:6c:42:3e:7e:84:d7:4a:a5:8a:
2c:1e:28:20:ee:a1:14:c4:d8:ab:0b:d7:2d:3b:11:
46:64:f3:62:6d:7f:cd:47:bf:29:c6:b4:ce:81:dc:
ce:77:e2:73:67:5c:67:3a:c6:fb:00:fa:9f:cd:bc:
48:c6:34:24:33:c4:c4:ab:1a:3b:64:d9:23:b1:36:
93:38:7d:be:3f:28:0d:80:e1:fa:a2:77:f7:66:bf:
f1:f0:73:1e:43:5c:eb:4f:f4:15:5a:ad:43:56:12:
cd:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:7C:C4:97:5C:94:68:35:10:B7:21:60:BA:1C:21:22:B3:23:E4:CA
X509v3 Authority Key Identifier:
keyid:B2:0C:CB:A4:06:C0:AD:0C:5B:E0:00:76:D9:98:0B:34:88:56:9A:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgzLpAbArQxb4AB22ZgLNIhWmoo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/743a50-d7f4-42d1-a09d-7ca93ecb2234/1/sgzLpAbArQxb4AB22ZgLNIhWmoo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/743a50-d7f4-42d1-a09d-7ca93ecb2234/1/sgzLpAbArQxb4AB22ZgLNIhWmoo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:de:8d:5f:89:a8:be:f8:d9:8c:67:2f:d6:6e:67:dd:8b:aa:
55:10:96:7d:6d:45:50:df:08:05:e9:1d:24:c3:3b:69:0e:3c:
36:61:e2:06:c1:f9:bb:88:59:92:7f:bd:8a:4f:51:aa:bb:02:
ab:46:d8:89:42:1b:e4:1c:9f:c7:a1:62:da:62:92:68:cb:8a:
b0:8d:eb:b0:2c:2b:72:d8:6d:e9:f3:6e:cf:dd:86:c5:87:18:
2a:95:73:8e:e6:61:80:8c:15:8f:8b:b2:3d:2a:76:4f:77:ab:
31:6c:f4:a8:b2:17:fd:83:88:1a:89:fc:cb:40:58:21:8c:ad:
d1:c5:bb:93:64:8e:4b:d2:75:cf:42:1e:f3:1d:b8:2c:bf:f3:
d6:70:63:99:1f:96:1b:24:c5:16:a6:3f:66:0b:b9:67:aa:ba:
21:77:46:85:ad:97:3a:51:47:89:c2:4d:37:3a:b2:68:75:fc:
c4:d0:3f:bb:ea:fd:a4:99:56:4e:21:b5:71:81:cc:4c:50:df:
30:d4:1c:25:57:77:e6:49:48:f5:6f:56:e0:db:0b:7a:cb:2e:
17:98:c9:d7:4f:0d:b8:42:80:f5:bb:f0:04:27:65:a9:b9:97:
c4:ba:63:be:bd:f5:dc:69:52:a0:41:08:ee:00:e9:e0:d9:f6:
bb:42:17:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 15:01:05 2025 by rpki-client