Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
File: sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft (raw, json)
Hash identifier: Dc6TFH0km3Y7nVW5RgCiK+2Wtza1NznafYXyoDB73MA=
Subject key identifier: 9B:5C:00:12:D2:48:5F:E2:5B:32:22:FA:4D:25:A0:9E:7E:70:1E:AA
Authority key identifier: B2:06:63:58:3A:81:89:CB:EA:AC:88:D4:38:76:79:97:B1:12:55:49
Certificate issuer: /CN=b20663583a8189cbeaac88d438767997b1125549
Certificate serial: 01987CE5819CE91DBD1C115781EEDDBE0527
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
Manifest number: 1579
Signing time: Wed 06 Aug 2025 01:01:12 +0000
Manifest this update: Wed 06 Aug 2025 01:01:12 +0000
Manifest next update: Thu 07 Aug 2025 01:01:12 +0000
Files and hashes: 1: fW2b4Mi4-jlU6WyOHwej57Bj7xc.roa (hash: gkYhGIaUuP9pIbVaUa+O+pFYYvku1Vu69Icl89ypkjo=)
2: sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl (hash: MBRuyI3vmKsWJ7J07WRJgaHjX3XaeCllFoeq6OYgRMs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7c:e5:81:9c:e9:1d:bd:1c:11:57:81:ee:dd:be:05:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b20663583a8189cbeaac88d438767997b1125549
Validity
Not Before: Aug 6 01:01:12 2025 GMT
Not After : Aug 7 01:01:12 2025 GMT
Subject: CN=9b5c0012d2485fe25b3222fa4d25a09e7e701eaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:ee:86:78:56:0d:91:ed:52:81:e6:e4:f1:fa:
8e:4b:35:a5:ef:99:7e:51:f0:38:72:d8:2a:a1:17:
f7:48:84:c4:33:86:09:7a:24:11:a1:82:ab:cf:69:
1a:8e:df:bc:e7:7c:cf:5d:a1:d0:09:b9:37:fc:73:
5b:33:0c:ae:07:a1:1a:4e:c1:d2:5b:c2:e2:2f:af:
51:15:c8:fa:2f:e0:b9:c3:c0:0f:6c:ff:93:46:3d:
41:43:d7:ed:e6:2b:f2:be:b5:e0:f8:e6:ba:68:56:
73:65:a6:6c:fd:60:c1:6e:90:10:43:8b:2a:a9:9e:
39:91:b5:8e:ac:b0:ef:48:9c:ed:5e:35:ac:5c:59:
9f:9d:7c:fa:8c:86:69:9b:fe:5e:8e:1b:94:83:f2:
cf:72:c3:1d:d5:59:1c:ca:ad:a7:f6:b3:41:ea:fb:
f7:6e:72:21:3f:1a:33:15:b7:b3:3b:4e:4f:3e:e8:
a7:cf:04:74:af:04:61:05:08:d6:f5:bb:69:3d:0e:
cc:04:01:e4:75:bd:b0:6f:15:4d:dd:62:38:64:43:
16:8a:4f:02:61:ae:94:e7:a0:87:92:3d:89:65:7d:
ab:01:7c:55:1e:ce:65:8c:44:32:f3:db:4a:92:69:
1c:a2:77:46:a0:54:ed:d1:4b:81:31:91:5a:36:c5:
fe:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:5C:00:12:D2:48:5F:E2:5B:32:22:FA:4D:25:A0:9E:7E:70:1E:AA
X509v3 Authority Key Identifier:
keyid:B2:06:63:58:3A:81:89:CB:EA:AC:88:D4:38:76:79:97:B1:12:55:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:3f:e7:89:a7:11:04:39:cb:0f:59:85:b2:89:0b:60:7f:82:
c3:04:5b:c9:6f:74:15:f7:f2:42:d2:15:c4:ae:b9:92:dd:47:
d2:04:9f:27:25:c6:0a:38:72:ab:9d:23:37:6b:1f:1b:61:e1:
67:23:47:68:ee:46:f7:a5:48:67:52:05:05:a9:ef:79:a5:35:
f9:08:c2:b3:d0:b5:a0:85:dd:84:d9:34:f1:4d:c4:f7:70:9a:
85:95:f9:db:9e:33:37:91:c9:e3:d2:11:88:42:60:42:72:81:
26:13:93:55:ff:6c:22:29:3b:7c:3d:d3:30:f8:43:0c:82:2d:
4e:67:b6:af:46:06:4c:1c:14:df:6b:b7:90:eb:05:da:b6:b7:
69:bd:2c:37:4f:0c:16:5a:d2:2a:71:4a:0a:22:53:e9:ba:dd:
4f:a0:c3:45:84:77:e2:e9:06:e2:ad:ec:c4:0c:eb:6a:1f:4a:
49:c9:de:7b:be:60:ac:50:f8:fd:5a:3f:49:f1:c2:00:67:0d:
a9:73:ff:c5:1f:81:8f:e3:01:01:49:7d:63:5d:c1:b2:2a:fb:
98:c4:0a:30:76:75:63:a0:7d:00:c4:9c:01:dd:84:12:44:ef:
61:88:d0:ec:bd:d6:9b:4c:bd:73:5b:c0:5b:85:70:62:45:23:
2d:1d:72:17
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh85YGc6R29HBFXge7dvgUnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyMDY2MzU4M2E4MTg5Y2JlYWFjODhkNDM4NzY3OTk3YjEx
MjU1NDkwHhcNMjUwODA2MDEwMTEyWhcNMjUwODA3MDEwMTEyWjAzMTEwLwYDVQQD
Eyg5YjVjMDAxMmQyNDg1ZmUyNWIzMjIyZmE0ZDI1YTA5ZTdlNzAxZWFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4u6GeFYNke1Sgebk8fqOSzWl75l+
UfA4ctgqoRf3SITEM4YJeiQRoYKrz2kajt+853zPXaHQCbk3/HNbMwyuB6EaTsHS
W8LiL69RFcj6L+C5w8APbP+TRj1BQ9ft5ivyvrXg+Oa6aFZzZaZs/WDBbpAQQ4sq
qZ45kbWOrLDvSJztXjWsXFmfnXz6jIZpm/5ejhuUg/LPcsMd1Vkcyq2n9rNB6vv3
bnIhPxozFbezO05PPuinzwR0rwRhBQjW9btpPQ7MBAHkdb2wbxVN3WI4ZEMWik8C
Ya6U56CHkj2JZX2rAXxVHs5ljEQy89tKkmkcondGoFTt0UuBMZFaNsX+lQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJtcABLSSF/iWzIi+k0loJ5+cB6qMB8GA1UdIwQY
MBaAFLIGY1g6gYnL6qyI1Dh2eZexElVJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2daaldEcUJpY3ZxcklqVU9IWjVsN0VTVlVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS9lZjZmMWEtNmRmYy00OTRlLWI4NWQt
ZDE4NzczZTdiYzQ3LzEvc2daaldEcUJpY3ZxcklqVU9IWjVsN0VTVlVrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS9lZjZmMWEtNmRmYy00OTRlLWI4NWQtZDE4NzczZTdiYzQ3
LzEvc2daaldEcUJpY3ZxcklqVU9IWjVsN0VTVlVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYj/niacR
BDnLD1mFsokLYH+CwwRbyW90FffyQtIVxK65kt1H0gSfJyXGCjhyq50jN2sfG2Hh
ZyNHaO5G96VIZ1IFBanveaU1+QjCs9C1oIXdhNk08U3E93CahZX5254zN5HJ49IR
iEJgQnKBJhOTVf9sIik7fD3TMPhDDIItTme2r0YGTBwU32u3kOsF2ra3ab0sN08M
FlrSKnFKCiJT6brdT6DDRYR34ukG4q3sxAzrah9KScnee75grFD4/Vo/SfHCAGcN
qXP/xR+Bj+MBAUl9Y13Bsir7mMQKMHZ1Y6B9AMScAd2EEkTvYYjQ7L3Wm0y9c1vA
W4VwYkUjLR1yFw==
-----END CERTIFICATE-----
Generated at Wed Aug 6 06:05:47 2025 by rpki-client