Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/991f1c-999b-4f75-b0bf-5129172b6966/1/sho_SvlKWA6557WFQqAISyHCsJs.mft
File: sho_SvlKWA6557WFQqAISyHCsJs.mft (raw, json)
Hash identifier: B19Ar6cjilr38AZv9aeH0F8D4kBB0fyMMAAJbS39XRg=
Subject key identifier: 9D:6C:26:25:C2:6B:6E:3C:12:91:15:CA:0A:59:79:EF:CF:0A:1E:52
Authority key identifier: B2:1A:3F:4A:F9:4A:58:0E:B9:E7:B5:85:42:A0:08:4B:21:C2:B0:9B
Certificate issuer: /CN=b21a3f4af94a580eb9e7b58542a0084b21c2b09b
Certificate serial: 0197B70F2A48F08806F79C2FEC1AFED7E399
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sho_SvlKWA6557WFQqAISyHCsJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/991f1c-999b-4f75-b0bf-5129172b6966/1/sho_SvlKWA6557WFQqAISyHCsJs.mft
Manifest number: 0693
Signing time: Sat 28 Jun 2025 15:01:53 +0000
Manifest this update: Sat 28 Jun 2025 15:01:53 +0000
Manifest next update: Sun 29 Jun 2025 15:01:53 +0000
Files and hashes: 1: UXRIjhO3UUO4YoZo2r0jseniB20.roa (hash: KSt+2WBEDCtsKI4qArbIQ4v7Y4cNWZ7oIb8Mm9wlcS0=)
2: sho_SvlKWA6557WFQqAISyHCsJs.crl (hash: 92RDf2Yfk5BEoJn+br2geWhCRX8Ie+Esbd5sWtE1mMI=)
3: ygg1jPU11rM4AgPA_fHJm1HIbDA.roa (hash: bQEdp6E9utyQGzeJGQwHEXnTvCFMaSrhkRZ3o6gqExk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/991f1c-999b-4f75-b0bf-5129172b6966/1/sho_SvlKWA6557WFQqAISyHCsJs.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/991f1c-999b-4f75-b0bf-5129172b6966/1/sho_SvlKWA6557WFQqAISyHCsJs.mft
rsync://rpki.ripe.net/repository/DEFAULT/sho_SvlKWA6557WFQqAISyHCsJs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0f:2a:48:f0:88:06:f7:9c:2f:ec:1a:fe:d7:e3:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b21a3f4af94a580eb9e7b58542a0084b21c2b09b
Validity
Not Before: Jun 28 15:01:53 2025 GMT
Not After : Jun 29 15:01:53 2025 GMT
Subject: CN=9d6c2625c26b6e3c129115ca0a5979efcf0a1e52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:78:ea:57:9b:ea:69:2e:98:6d:c8:b7:ba:c9:
38:40:d4:41:17:44:f6:50:b9:da:fa:02:6c:94:4a:
b0:b8:5d:ec:10:5c:18:5b:76:18:b6:c6:58:56:f5:
a3:f9:a2:14:a9:f1:ee:ad:b9:b1:b6:b9:3a:0f:d5:
7d:44:d6:74:ab:38:8d:f9:ae:37:f3:5b:95:68:66:
c9:f3:14:42:59:01:8f:b9:10:29:e7:50:12:4f:c4:
2d:00:dc:aa:b2:03:78:82:54:ff:f0:b3:e1:8e:02:
e1:88:a2:55:bc:6f:e7:b0:40:34:e9:9b:e9:cd:69:
cc:ce:d9:b1:ad:b1:51:56:ea:c6:73:82:40:e3:1f:
22:ac:a5:46:4f:f3:13:11:83:e5:38:59:8a:68:c6:
73:b8:b1:ef:04:3a:0e:16:fb:98:f4:1f:f0:74:db:
ae:1f:22:50:2e:52:b2:fe:0f:2f:a6:1d:20:bb:f9:
da:c3:08:d6:93:2f:15:d2:66:0e:bd:3a:3e:8a:03:
46:86:8f:91:ee:09:7c:84:9b:40:cc:96:be:6c:12:
3c:19:e3:66:e0:c0:5a:0d:74:22:99:cc:cf:61:af:
8b:cc:fd:88:cc:3e:e1:2a:ae:b8:b7:cf:1c:b9:65:
3d:63:e9:35:c7:92:ed:67:6a:2c:80:f0:62:52:da:
c7:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:6C:26:25:C2:6B:6E:3C:12:91:15:CA:0A:59:79:EF:CF:0A:1E:52
X509v3 Authority Key Identifier:
keyid:B2:1A:3F:4A:F9:4A:58:0E:B9:E7:B5:85:42:A0:08:4B:21:C2:B0:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sho_SvlKWA6557WFQqAISyHCsJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/991f1c-999b-4f75-b0bf-5129172b6966/1/sho_SvlKWA6557WFQqAISyHCsJs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/991f1c-999b-4f75-b0bf-5129172b6966/1/sho_SvlKWA6557WFQqAISyHCsJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:e0:e0:3b:65:c7:e6:42:a8:6f:c4:5f:d8:f2:b2:b1:73:6d:
25:38:77:cd:2d:61:15:66:31:24:e3:3f:7c:0c:71:2f:f8:ae:
0a:85:5c:dc:86:10:24:b2:ed:27:6f:16:7b:be:06:20:f0:d4:
33:16:3f:1f:6b:12:a9:19:3f:1c:0c:b3:00:e4:f4:30:d3:49:
5a:71:6f:a0:24:4f:ec:0b:26:25:1b:f6:e2:cb:b4:79:8b:e6:
4d:30:76:7a:0a:4b:df:7c:33:a5:e0:76:f7:2b:bd:71:55:40:
67:cc:5e:23:ff:eb:7b:33:75:42:c2:12:60:20:14:55:c8:8c:
0c:31:fb:e7:d1:95:97:e6:4f:a0:27:cf:36:97:93:df:17:58:
07:2b:81:aa:7c:ca:dd:70:05:15:e0:ac:28:b7:e6:6f:b9:ee:
f9:9f:74:cb:62:d2:5d:ee:70:0c:f7:ab:ea:8b:61:e7:5d:20:
b8:da:2c:35:12:b7:00:04:aa:fe:0a:4d:41:76:ad:2b:d7:30:
61:af:c4:81:97:fc:70:b2:8f:de:0c:5f:83:1d:28:a9:b5:2b:
18:f2:37:54:2e:58:3a:a0:5c:01:78:f2:ae:60:9c:91:8c:fc:
da:51:af:14:82:11:10:a5:1c:56:3e:06:72:b2:96:80:86:e0:
c2:02:01:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:24:39 2025 by rpki-client