Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.mft
File: SfgGl_4uLZe1ka1bkVgFVaRNA4g.mft (raw, json)
Hash identifier: B/uAuSywLk+i+qfG+SKHqsC4WpvlCO6LaYFb/LuJkmM=
Subject key identifier: 7F:FC:BA:4D:ED:90:1C:DD:8D:66:0B:70:53:3B:AB:2D:B5:A5:BB:99
Authority key identifier: 49:F8:06:97:FE:2E:2D:97:B5:91:AD:5B:91:58:05:55:A4:4D:03:88
Certificate issuer: /CN=49f80697fe2e2d97b591ad5b91580555a44d0388
Certificate serial: 019A4E18F4870D2BFCD9C787EDE711F5DE0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SfgGl_4uLZe1ka1bkVgFVaRNA4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.mft
Manifest number: 16F5
Signing time: Tue 04 Nov 2025 09:00:49 +0000
Manifest this update: Tue 04 Nov 2025 09:00:49 +0000
Manifest next update: Wed 05 Nov 2025 09:00:49 +0000
Files and hashes: 1: SfgGl_4uLZe1ka1bkVgFVaRNA4g.crl (hash: hcCndRax/Tj8NZ7UGt49C7wp7mnO/0KknmIkretyYkw=)
2: qamXgGdELqVwuCRXcGaE5fyjphY.roa (hash: XwiZQCHwX+Vwexgrkkuz5eMSgh62jyoQLxKiqhe1Bqg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.mft
rsync://rpki.ripe.net/repository/DEFAULT/SfgGl_4uLZe1ka1bkVgFVaRNA4g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:18:f4:87:0d:2b:fc:d9:c7:87:ed:e7:11:f5:de:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49f80697fe2e2d97b591ad5b91580555a44d0388
Validity
Not Before: Nov 4 09:00:49 2025 GMT
Not After : Nov 5 09:00:49 2025 GMT
Subject: CN=7ffcba4ded901cdd8d660b70533bab2db5a5bb99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:66:bd:e5:35:4a:ce:72:87:68:62:3b:a8:90:
09:c1:fc:4a:23:69:31:16:b5:2e:62:a3:c9:8b:dd:
e1:db:8b:e6:6f:ab:18:ee:a8:be:76:44:a1:aa:bf:
c3:fb:39:75:2c:b2:de:bc:f8:be:dc:8c:ce:19:9a:
d9:13:62:5b:8e:a8:8e:25:e5:c2:43:df:7a:51:84:
8b:6d:0c:c6:71:ae:50:3f:e5:69:6a:f6:2b:68:40:
2a:13:39:42:2c:9e:ec:46:e3:95:6f:b9:c6:b8:83:
e0:c0:85:80:bb:b4:24:49:75:00:41:1d:29:2f:82:
43:37:72:4c:3d:ea:a0:0f:f6:4b:82:50:15:4a:cd:
22:ab:90:61:38:08:7b:6f:02:8d:5f:99:85:5c:96:
d2:b7:d5:e5:7d:b3:78:a9:c4:ef:60:c7:7d:57:f9:
63:a3:2d:ca:70:2a:d5:78:bd:59:d8:d0:c1:7f:ac:
e7:65:7e:76:ae:59:c6:96:e4:55:d8:f3:4e:6b:36:
36:d9:da:65:0a:3e:de:f7:ce:ac:28:0a:cb:1c:c8:
00:ec:81:98:fa:e0:dd:f3:bd:7f:6a:80:3a:51:cb:
a3:01:85:91:98:a5:e5:d3:70:e3:04:80:59:64:61:
c8:14:66:a3:91:13:d4:28:ec:fa:57:8a:b7:3c:87:
f4:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:FC:BA:4D:ED:90:1C:DD:8D:66:0B:70:53:3B:AB:2D:B5:A5:BB:99
X509v3 Authority Key Identifier:
keyid:49:F8:06:97:FE:2E:2D:97:B5:91:AD:5B:91:58:05:55:A4:4D:03:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SfgGl_4uLZe1ka1bkVgFVaRNA4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:7d:9b:2b:4a:58:52:be:6e:e3:9e:b2:80:f5:13:70:42:6b:
53:14:86:0e:ea:62:d0:a0:3a:25:3c:66:73:ab:87:f0:d4:ae:
9e:82:72:66:e0:0c:81:21:75:1a:51:34:da:7d:a0:0b:72:34:
f4:a1:a4:e3:c0:bd:9d:a7:1d:7f:79:87:5f:be:f5:ca:b9:4f:
bf:bb:4e:0e:80:4f:e6:1a:96:a1:2c:5a:fc:56:d9:9b:08:e2:
7a:16:2d:3b:b5:e2:48:5f:95:ac:91:c6:8f:37:cb:4b:41:53:
1f:0c:f7:cf:97:51:e7:2d:33:8f:13:fb:2f:f6:4d:ff:d7:57:
bc:34:b5:a3:f5:6d:97:3f:29:ab:44:3a:93:b7:7b:5f:b7:1c:
ce:cc:c2:82:f5:a3:0b:69:86:df:0f:c2:8e:e4:23:d4:cf:26:
eb:bc:e5:fa:63:83:7d:39:0c:d8:9a:f5:f5:d1:60:3c:8e:78:
64:f5:42:a6:e3:31:b6:69:c5:5a:67:33:a4:5f:8a:45:6c:0c:
3f:04:5e:e2:11:0e:ef:eb:45:74:08:5a:c7:77:61:6e:f5:81:
96:2c:8c:3d:fa:d0:97:3a:98:a9:67:91:e8:a4:5a:ac:f7:1d:
4c:5e:a7:0a:92:3a:1e:37:26:be:5a:ca:06:37:2b:10:87:ec:
97:b6:02:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:36:26 2025 by rpki-client