Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/991f1c-999b-4f75-b0bf-5129172b6966/1/sho_SvlKWA6557WFQqAISyHCsJs.mft
File: sho_SvlKWA6557WFQqAISyHCsJs.mft (raw, json)
Hash identifier: dLWt99aRZ0nOuJ1rNTkONBcZeRfPzQOMf+/kP9tYCJw=
Subject key identifier: 1F:56:9B:28:F0:C0:5E:E0:EE:63:9D:2C:B7:B7:C4:1E:0B:65:B3:E6
Authority key identifier: B2:1A:3F:4A:F9:4A:58:0E:B9:E7:B5:85:42:A0:08:4B:21:C2:B0:9B
Certificate issuer: /CN=b21a3f4af94a580eb9e7b58542a0084b21c2b09b
Certificate serial: 0198D660AD5466DD074A0B7426103F297AFC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sho_SvlKWA6557WFQqAISyHCsJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/991f1c-999b-4f75-b0bf-5129172b6966/1/sho_SvlKWA6557WFQqAISyHCsJs.mft
Manifest number: 072B
Signing time: Sat 23 Aug 2025 10:01:56 +0000
Manifest this update: Sat 23 Aug 2025 10:01:56 +0000
Manifest next update: Sun 24 Aug 2025 10:01:56 +0000
Files and hashes: 1: 1hp0FN2Zg5pDjgoZFlg4J_guib0.roa (hash: Q0hgLFUWzZKKVmCPawFvjEl4SPCELVdqx/7++z9jxEg=)
2: sho_SvlKWA6557WFQqAISyHCsJs.crl (hash: h0T8uBynpZCX0wONgacC+S5FV0OerV6TLz8DP2FXNZE=)
3: ygg1jPU11rM4AgPA_fHJm1HIbDA.roa (hash: bQEdp6E9utyQGzeJGQwHEXnTvCFMaSrhkRZ3o6gqExk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/991f1c-999b-4f75-b0bf-5129172b6966/1/sho_SvlKWA6557WFQqAISyHCsJs.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/991f1c-999b-4f75-b0bf-5129172b6966/1/sho_SvlKWA6557WFQqAISyHCsJs.mft
rsync://rpki.ripe.net/repository/DEFAULT/sho_SvlKWA6557WFQqAISyHCsJs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:01:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:ad:54:66:dd:07:4a:0b:74:26:10:3f:29:7a:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b21a3f4af94a580eb9e7b58542a0084b21c2b09b
Validity
Not Before: Aug 23 10:01:56 2025 GMT
Not After : Aug 24 10:01:56 2025 GMT
Subject: CN=1f569b28f0c05ee0ee639d2cb7b7c41e0b65b3e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:4f:10:82:fb:4c:a8:0f:d1:83:61:3f:9b:24:
d4:b0:6b:ef:e5:86:67:da:87:55:3d:86:6f:dc:53:
27:ad:70:17:fc:92:c0:df:e5:a9:68:4d:82:12:19:
58:89:65:0c:51:a8:7a:46:69:80:d1:eb:8f:bf:ee:
84:77:5a:c1:cb:7b:d7:e0:b2:76:2e:16:ed:78:e6:
92:0c:06:02:bf:bd:83:8e:eb:5f:3b:33:1a:16:20:
4e:9e:3c:e1:d0:35:76:3f:60:5a:26:3a:76:ba:45:
cc:cd:e3:f9:02:80:7d:aa:3d:07:29:4a:a1:aa:93:
21:55:de:3e:53:87:9d:45:43:42:72:57:5e:03:9f:
f8:4e:53:62:97:70:87:b6:97:4b:2a:11:a5:e9:8d:
cc:a0:6b:17:56:c5:2f:ce:27:4f:5b:03:86:b3:d7:
45:fc:a0:e2:0c:56:51:ef:75:18:c8:3d:e7:a8:e3:
ef:0f:c1:2e:e7:4e:40:d4:9d:92:d4:75:72:d6:16:
99:d6:f9:6d:94:3f:ac:d7:55:13:8c:fc:fa:3f:05:
9e:c5:d6:be:c9:d6:22:8c:38:53:ed:a9:d4:b4:70:
3a:92:f8:27:5b:55:48:9b:77:ff:7e:e2:77:11:89:
dc:50:ad:22:51:99:f5:f3:47:9c:1d:9a:0a:fb:aa:
8d:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:56:9B:28:F0:C0:5E:E0:EE:63:9D:2C:B7:B7:C4:1E:0B:65:B3:E6
X509v3 Authority Key Identifier:
keyid:B2:1A:3F:4A:F9:4A:58:0E:B9:E7:B5:85:42:A0:08:4B:21:C2:B0:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sho_SvlKWA6557WFQqAISyHCsJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/991f1c-999b-4f75-b0bf-5129172b6966/1/sho_SvlKWA6557WFQqAISyHCsJs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/991f1c-999b-4f75-b0bf-5129172b6966/1/sho_SvlKWA6557WFQqAISyHCsJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:5f:07:f8:e1:42:14:c7:ac:19:16:3e:f0:f1:8a:a3:f5:e9:
a3:92:a5:79:4a:c6:b7:77:72:26:a8:da:71:66:a0:ea:c1:b6:
cd:f9:a7:ac:62:9a:07:71:b3:8f:ac:52:3e:f1:13:11:b4:92:
81:b9:09:32:17:38:63:3e:e9:b9:37:fd:56:ae:db:1d:8c:6e:
52:8f:27:6e:0e:21:80:ef:23:5b:3f:80:be:5d:5f:61:fd:58:
d9:54:64:c5:8d:55:8c:24:65:87:e9:6e:6f:3a:36:ba:f2:4a:
ce:a5:d5:15:f7:6c:8e:55:df:e4:53:fd:03:2a:bc:7c:5f:ff:
54:b2:8b:50:6c:5f:f0:93:bb:68:75:92:50:c6:a7:3f:06:16:
c3:d9:75:37:fd:ed:f1:fb:2b:83:44:83:18:b6:b4:2a:a6:fb:
b6:2e:e6:01:a5:bc:52:0b:7e:c1:02:a0:58:a4:02:02:5b:8d:
c4:b6:8a:f7:4e:48:92:51:87:b2:c6:f4:f8:80:3d:ef:cf:5f:
71:b7:4d:3b:6c:6f:c6:19:dd:d2:07:14:96:c3:a2:69:c6:85:
5f:d9:89:3c:20:ca:7a:10:ca:9b:b0:af:82:f7:f8:2b:de:d1:
db:d2:4a:4d:a1:ea:3c:83:ec:8b:10:af:d6:a8:6f:f8:72:02:
8d:9d:bb:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:39:06 2025 by rpki-client