Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.mft
File: SfgGl_4uLZe1ka1bkVgFVaRNA4g.mft (raw, json)
Hash identifier: zhwzB7B6XDhhhlA0ltpEunk3c9WuxLt21MeR2gXaxec=
Subject key identifier: 90:9F:49:CA:A1:99:DF:CA:F9:EF:DC:B8:68:11:E7:06:FE:63:BD:8E
Authority key identifier: 49:F8:06:97:FE:2E:2D:97:B5:91:AD:5B:91:58:05:55:A4:4D:03:88
Certificate issuer: /CN=49f80697fe2e2d97b591ad5b91580555a44d0388
Certificate serial: 01987ABFC58D4FAD91139A4A8CD1220F4815
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SfgGl_4uLZe1ka1bkVgFVaRNA4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.mft
Manifest number: 1603
Signing time: Tue 05 Aug 2025 15:00:44 +0000
Manifest this update: Tue 05 Aug 2025 15:00:44 +0000
Manifest next update: Wed 06 Aug 2025 15:00:44 +0000
Files and hashes: 1: SfgGl_4uLZe1ka1bkVgFVaRNA4g.crl (hash: 8du5JlrKRanr/uNIvtm9AZED0CbUDncMJ0j00UWI9Uk=)
2: qamXgGdELqVwuCRXcGaE5fyjphY.roa (hash: XwiZQCHwX+Vwexgrkkuz5eMSgh62jyoQLxKiqhe1Bqg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.mft
rsync://rpki.ripe.net/repository/DEFAULT/SfgGl_4uLZe1ka1bkVgFVaRNA4g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 14:37:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7a:bf:c5:8d:4f:ad:91:13:9a:4a:8c:d1:22:0f:48:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49f80697fe2e2d97b591ad5b91580555a44d0388
Validity
Not Before: Aug 5 15:00:44 2025 GMT
Not After : Aug 6 15:00:44 2025 GMT
Subject: CN=909f49caa199dfcaf9efdcb86811e706fe63bd8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:26:10:21:41:a0:79:1a:13:72:d3:6d:ba:db:
b0:ae:25:8e:51:72:fc:78:fa:08:f9:41:27:ae:29:
4c:b7:cc:2d:a0:df:a7:97:ee:35:17:1c:44:e8:35:
ff:5b:93:33:a7:f9:c0:f9:ff:9a:8a:47:ca:ab:70:
f7:4f:37:5c:36:1a:e4:f3:29:b3:85:61:43:63:67:
b6:59:09:29:cb:dc:66:e4:1d:3c:c5:d0:21:5b:fb:
ee:34:f7:6d:6f:d6:47:d1:6c:6b:5d:54:13:65:de:
52:80:ea:a2:2e:81:20:c8:0c:2c:23:28:9e:15:e7:
43:b6:53:13:c0:0e:f8:9f:15:0b:26:02:f1:04:81:
bb:dd:62:38:cc:16:4b:e8:fc:cf:8e:14:d7:68:64:
a8:ba:db:84:fa:70:c2:57:16:e3:31:f5:a7:ec:c2:
b6:ea:c9:e6:c9:3d:3f:74:9b:1f:6c:f4:a6:f1:ce:
c7:c6:59:e0:92:67:6f:b5:f4:50:f0:d3:ef:f9:44:
8d:b8:81:74:84:7f:38:b7:a5:60:e6:54:39:9e:fb:
83:37:60:ec:6a:3c:e9:16:f3:a3:b4:93:24:ce:87:
1e:9e:02:1e:af:53:95:0a:a3:6c:28:1b:9d:cc:bc:
38:7e:2e:e4:99:87:ec:9d:7f:03:68:4c:52:91:56:
2c:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:9F:49:CA:A1:99:DF:CA:F9:EF:DC:B8:68:11:E7:06:FE:63:BD:8E
X509v3 Authority Key Identifier:
keyid:49:F8:06:97:FE:2E:2D:97:B5:91:AD:5B:91:58:05:55:A4:4D:03:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SfgGl_4uLZe1ka1bkVgFVaRNA4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:31:5c:84:d5:fc:d5:4e:9a:f0:12:96:c9:42:bc:ab:7a:6d:
9b:44:4f:a1:77:6a:39:2d:a9:cc:dd:85:a7:86:14:13:53:ea:
71:b7:27:94:08:5a:35:31:14:57:d2:e3:52:1c:6c:e2:60:c1:
2a:87:47:88:1f:05:c5:69:70:4d:15:05:b3:8b:a7:d4:59:09:
13:63:9a:b6:d2:eb:0a:82:c9:b2:24:eb:6a:9d:fe:72:07:8d:
b1:e3:05:be:5b:95:3e:4c:af:1b:1a:78:42:11:48:f5:b9:65:
21:83:c5:5f:31:7b:d7:fe:c5:a6:07:39:a9:14:98:06:b8:a2:
57:92:76:3e:29:c3:cc:f5:45:31:14:71:21:b9:2c:1d:e5:82:
6f:bc:38:fc:e1:d5:cb:4d:bf:f3:63:86:22:98:d3:b3:ba:15:
34:96:65:cb:51:92:65:e1:32:7e:0b:95:95:34:4b:30:fd:f6:
6d:92:fa:e3:bc:d8:ec:3b:52:dd:e0:4b:b0:64:08:18:4a:e7:
e3:00:19:03:0a:58:90:26:27:d1:78:3c:46:bd:83:c5:83:bb:
1e:01:ff:e9:b1:82:07:00:f3:74:85:8c:e1:74:5a:46:45:7a:
41:9e:63:74:5b:c6:72:10:b2:ac:a3:04:8e:cf:39:c3:99:6d:
43:08:b0:08
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh6v8WNT62RE5pKjNEiD0gVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ5ZjgwNjk3ZmUyZTJkOTdiNTkxYWQ1YjkxNTgwNTU1YTQ0
ZDAzODgwHhcNMjUwODA1MTUwMDQ0WhcNMjUwODA2MTUwMDQ0WjAzMTEwLwYDVQQD
Eyg5MDlmNDljYWExOTlkZmNhZjllZmRjYjg2ODExZTcwNmZlNjNiZDhlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvSYQIUGgeRoTctNtutuwriWOUXL8
ePoI+UEnrilMt8wtoN+nl+41FxxE6DX/W5Mzp/nA+f+aikfKq3D3TzdcNhrk8ymz
hWFDY2e2WQkpy9xm5B08xdAhW/vuNPdtb9ZH0WxrXVQTZd5SgOqiLoEgyAwsIyie
FedDtlMTwA74nxULJgLxBIG73WI4zBZL6PzPjhTXaGSoutuE+nDCVxbjMfWn7MK2
6snmyT0/dJsfbPSm8c7HxlngkmdvtfRQ8NPv+USNuIF0hH84t6Vg5lQ5nvuDN2Ds
ajzpFvOjtJMkzocengIer1OVCqNsKBudzLw4fi7kmYfsnX8DaExSkVYsMwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJCfScqhmd/K+e/cuGgR5wb+Y72OMB8GA1UdIwQY
MBaAFEn4Bpf+Li2XtZGtW5FYBVWkTQOIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2ZnR2xfNHVMWmUxa2ExYmtWZ0ZWYVJOQTRnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS8yNGRmNzItZmNjYy00OGRmLWE1YWUt
MWE2NGE4MDc3YjE0LzEvU2ZnR2xfNHVMWmUxa2ExYmtWZ0ZWYVJOQTRnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS8yNGRmNzItZmNjYy00OGRmLWE1YWUtMWE2NGE4MDc3YjE0
LzEvU2ZnR2xfNHVMWmUxa2ExYmtWZ0ZWYVJOQTRnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAADFchNX8
1U6a8BKWyUK8q3ptm0RPoXdqOS2pzN2Fp4YUE1PqcbcnlAhaNTEUV9LjUhxs4mDB
KodHiB8FxWlwTRUFs4un1FkJE2OattLrCoLJsiTrap3+cgeNseMFvluVPkyvGxp4
QhFI9bllIYPFXzF71/7Fpgc5qRSYBriiV5J2PinDzPVFMRRxIbksHeWCb7w4/OHV
y02/82OGIpjTs7oVNJZly1GSZeEyfguVlTRLMP32bZL647zY7DtS3eBLsGQIGErn
4wAZAwpYkCYn0Xg8Rr2DxYO7HgH/6bGCBwDzdIWM4XRaRkV6QZ5jdFvGchCyrKME
js85w5ltQwiwCA==
-----END CERTIFICATE-----
Generated at Tue Aug 5 22:59:53 2025 by rpki-client