Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
File: sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft (raw, json)
Hash identifier: EKKHaoQbSuQHRfl0cqY7TyeZJd20j0zpbsxvivE8i2I=
Subject key identifier: E7:C9:F1:21:F3:BB:1C:B2:21:F6:8A:10:5C:69:06:AE:D8:74:33:B1
Authority key identifier: B2:06:63:58:3A:81:89:CB:EA:AC:88:D4:38:76:79:97:B1:12:55:49
Certificate issuer: /CN=b20663583a8189cbeaac88d438767997b1125549
Certificate serial: 019A503E3C92A56CCE7F2A9EC5C7B2D802E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
Manifest number: 166B
Signing time: Tue 04 Nov 2025 19:00:47 +0000
Manifest this update: Tue 04 Nov 2025 19:00:47 +0000
Manifest next update: Wed 05 Nov 2025 19:00:47 +0000
Files and hashes: 1: fW2b4Mi4-jlU6WyOHwej57Bj7xc.roa (hash: gkYhGIaUuP9pIbVaUa+O+pFYYvku1Vu69Icl89ypkjo=)
2: sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl (hash: dcYWNuqB7DxSi8k11Bu44ptJe450o7KsCA3ZaO965f4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:3e:3c:92:a5:6c:ce:7f:2a:9e:c5:c7:b2:d8:02:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b20663583a8189cbeaac88d438767997b1125549
Validity
Not Before: Nov 4 19:00:47 2025 GMT
Not After : Nov 5 19:00:47 2025 GMT
Subject: CN=e7c9f121f3bb1cb221f68a105c6906aed87433b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:99:34:88:6f:1c:7d:9c:8a:be:9a:80:48:92:
24:06:d8:7c:ac:02:bb:be:51:ed:06:34:34:01:b2:
6f:95:32:3c:61:ff:5b:a2:c5:40:5f:72:a3:08:43:
df:cb:35:54:dc:da:84:fe:fa:e9:1d:8f:8d:22:69:
9a:67:f5:64:9d:35:8f:f8:e6:f4:56:c9:9c:99:bf:
79:6e:f4:fa:61:99:6a:12:1e:e3:7b:27:dd:e6:d7:
15:07:ae:6e:c3:b9:76:7c:11:81:58:b7:b7:3e:5c:
af:1b:c0:cc:7c:d0:2f:47:46:89:42:6d:a1:a2:84:
f6:0e:15:b3:36:64:f6:fa:67:2a:3d:09:a7:b5:87:
f2:af:a8:3a:82:36:0b:5e:0b:eb:25:ac:a4:28:39:
39:77:97:f5:41:59:5c:ba:e4:1f:52:0e:41:8a:3e:
d7:75:20:33:86:8c:0d:35:25:79:d5:51:ae:0e:a6:
8c:13:61:bb:88:5d:b0:f0:6d:48:6f:04:13:bf:05:
07:f3:f9:04:6b:97:5d:8c:87:2c:83:1c:34:c3:d5:
16:64:9e:02:14:c5:e3:28:f7:9d:3f:41:ff:67:4d:
0e:ff:68:c1:7a:71:c5:f4:d3:62:43:07:f2:4b:75:
69:1a:dc:67:cf:55:8c:ac:7f:4a:75:ed:24:d0:0e:
65:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:C9:F1:21:F3:BB:1C:B2:21:F6:8A:10:5C:69:06:AE:D8:74:33:B1
X509v3 Authority Key Identifier:
keyid:B2:06:63:58:3A:81:89:CB:EA:AC:88:D4:38:76:79:97:B1:12:55:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:5f:5f:d0:79:96:45:94:c3:ee:96:c9:46:ed:8e:e5:5a:9e:
fe:85:83:d4:cb:c1:99:00:a1:e5:17:f6:cf:cc:55:d4:07:62:
54:73:b4:6f:42:3d:db:0b:b2:97:c9:8a:31:01:9d:2b:ea:cb:
16:60:90:a7:80:66:b6:68:dc:9e:49:6d:6e:28:07:b6:6e:de:
0d:13:3b:64:ac:7e:70:cf:f9:4a:cb:6d:52:5d:f4:33:38:ba:
81:50:9e:a3:6b:77:1a:8e:7d:0a:1c:d6:f4:b2:4a:ca:77:0b:
1f:27:4b:7e:82:4e:71:78:b1:bd:be:e2:96:22:d6:97:f4:c4:
e8:16:e9:ce:cf:80:8d:ed:5b:99:d5:fc:ba:37:b4:c1:22:7d:
a6:8c:6b:b7:7b:00:ae:96:24:b3:d1:2f:c1:da:2e:2d:5d:94:
44:70:6f:7d:2b:5e:6f:80:4e:5f:cc:61:02:09:99:07:e0:53:
5f:00:9f:5a:75:3d:49:d3:4d:fa:e8:85:4f:75:03:8e:88:dc:
01:16:ca:24:4c:c7:24:50:10:ad:f7:8d:b3:c9:4f:d0:98:62:
ce:7c:0a:ac:a3:16:21:49:4e:6f:6a:7d:62:fd:1f:f2:91:c9:
ae:64:46:8f:b5:34:6e:9c:e9:c1:26:f7:ea:48:f1:74:47:31:
fe:45:08:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 22:48:07 2025 by rpki-client