Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/991f1c-999b-4f75-b0bf-5129172b6966/1/sho_SvlKWA6557WFQqAISyHCsJs.mft
File: sho_SvlKWA6557WFQqAISyHCsJs.mft (raw, json)
Hash identifier: e1uJHJiBxlupZ0EYH2trWwVibf30YJg3yAozoncrOzs=
Subject key identifier: 88:CE:2C:06:82:A4:EC:8E:8B:91:EE:24:13:74:2A:0A:80:53:F9:62
Authority key identifier: B2:1A:3F:4A:F9:4A:58:0E:B9:E7:B5:85:42:A0:08:4B:21:C2:B0:9B
Certificate issuer: /CN=b21a3f4af94a580eb9e7b58542a0084b21c2b09b
Certificate serial: 019E205A3C456F9102E5C188D0E00F242054
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sho_SvlKWA6557WFQqAISyHCsJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/991f1c-999b-4f75-b0bf-5129172b6966/1/sho_SvlKWA6557WFQqAISyHCsJs.mft
Manifest number: 09EA
Signing time: Wed 13 May 2026 08:00:45 +0000
Manifest this update: Wed 13 May 2026 08:00:45 +0000
Manifest next update: Thu 14 May 2026 08:00:45 +0000
Files and hashes: 1: FAa3npHJ-L9iUJPTk_A-3MIPVVU.roa (hash: JYa0nKEHZRi3AuXbXRg8MOneanSxScpD3pl7YEaHW68=)
2: MwiX1sWT4L9Sd2jLdKK-is1cuoU.roa (hash: oswXbOPtoGvOkQD2v1oxYSwYp3lw3uvemjQYUy0pcbU=)
3: sho_SvlKWA6557WFQqAISyHCsJs.crl (hash: CpsRg6xvyzPWfyH4lDigu7JIDbjCN6h6w1+/V6Dz6j0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/991f1c-999b-4f75-b0bf-5129172b6966/1/sho_SvlKWA6557WFQqAISyHCsJs.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/991f1c-999b-4f75-b0bf-5129172b6966/1/sho_SvlKWA6557WFQqAISyHCsJs.mft
rsync://rpki.ripe.net/repository/DEFAULT/sho_SvlKWA6557WFQqAISyHCsJs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:5a:3c:45:6f:91:02:e5:c1:88:d0:e0:0f:24:20:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b21a3f4af94a580eb9e7b58542a0084b21c2b09b
Validity
Not Before: May 13 08:00:45 2026 GMT
Not After : May 14 08:00:45 2026 GMT
Subject: CN=88ce2c0682a4ec8e8b91ee2413742a0a8053f962
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:89:be:01:fd:56:25:d3:54:14:80:f0:05:6a:
10:3f:66:00:6c:2e:25:4f:8a:9d:a7:cc:32:ab:da:
8c:e7:d1:84:22:01:6b:ed:5d:f5:14:e6:c4:df:04:
7b:f5:77:8a:99:ea:8f:eb:a8:b9:df:3b:0f:b1:8d:
ab:58:f8:26:55:f4:f5:64:06:6d:e1:22:d4:9f:f1:
ae:96:82:8c:6f:c8:d5:5f:d0:93:47:82:88:aa:0a:
ac:54:30:21:e7:93:a7:33:97:08:25:65:1f:bb:97:
1f:c1:1d:b4:d4:98:2d:51:b3:70:86:3b:3c:f0:75:
c6:e4:37:12:a6:c1:dd:a1:ce:44:39:6b:b5:7d:a0:
d7:0e:80:55:11:aa:e5:48:3d:2c:5d:85:a0:04:29:
2a:f7:ce:4d:dd:ef:78:42:1d:94:a5:fc:78:59:a8:
68:c9:0c:d8:b4:f9:e6:66:1c:c5:da:18:f7:ca:da:
01:0b:98:91:1d:4b:1f:fb:5c:a1:63:35:3a:7d:ae:
d4:b3:5a:81:e0:90:6a:80:34:50:e7:b2:5e:5a:45:
fc:43:a4:cf:45:8a:f4:fb:cf:2f:8d:b5:8a:66:26:
1c:fd:1c:5e:b2:a7:0f:29:ce:4b:42:92:dd:43:33:
d9:0a:1c:ac:e7:b1:de:bd:ce:0d:a4:92:3b:bd:6b:
64:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:CE:2C:06:82:A4:EC:8E:8B:91:EE:24:13:74:2A:0A:80:53:F9:62
X509v3 Authority Key Identifier:
keyid:B2:1A:3F:4A:F9:4A:58:0E:B9:E7:B5:85:42:A0:08:4B:21:C2:B0:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sho_SvlKWA6557WFQqAISyHCsJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/991f1c-999b-4f75-b0bf-5129172b6966/1/sho_SvlKWA6557WFQqAISyHCsJs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/991f1c-999b-4f75-b0bf-5129172b6966/1/sho_SvlKWA6557WFQqAISyHCsJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:e0:cd:53:46:2c:63:63:3f:6e:6e:60:6b:c1:89:41:bf:d0:
42:0f:c9:09:6b:75:1c:32:a9:9e:98:14:be:c9:f2:c5:05:d4:
dc:a9:d0:a9:f0:e8:b9:85:7a:29:f8:fb:59:2b:23:66:df:1e:
d4:86:6b:e5:c6:b3:35:7c:f6:45:18:f3:93:2e:1f:cf:a3:eb:
05:6e:e3:1b:b6:47:1b:26:ec:75:aa:82:1d:9c:d9:b8:08:c9:
fe:60:d4:26:27:43:b8:7f:6a:d5:1d:80:7b:bc:5c:49:ce:01:
83:fa:b7:8d:7c:06:39:86:8c:1c:5a:68:12:0f:21:27:27:40:
cc:92:24:b3:c2:2c:34:da:38:cb:2b:3b:43:98:42:c5:e7:d2:
07:f3:c9:64:6d:45:0e:e2:fe:2a:c3:80:63:86:a9:24:40:a9:
59:fd:25:ab:f9:ae:b0:8d:70:ad:2e:37:fb:90:6a:8b:04:1e:
dd:86:ab:73:39:a7:03:b5:72:9e:aa:e4:98:72:2e:c9:0f:7f:
b4:ad:17:55:bf:48:f6:b5:33:bb:47:e0:eb:84:cc:34:f8:65:
77:20:5e:69:2e:4a:1b:7a:c5:21:0c:2d:bc:b2:a9:d8:64:b8:
af:4c:30:0e:24:17:05:b0:75:de:79:34:ab:29:8e:70:c4:bd:
94:5a:ca:93
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4gWjxFb5EC5cGI0OAPJCBUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyMWEzZjRhZjk0YTU4MGViOWU3YjU4NTQyYTAwODRiMjFj
MmIwOWIwHhcNMjYwNTEzMDgwMDQ1WhcNMjYwNTE0MDgwMDQ1WjAzMTEwLwYDVQQD
Eyg4OGNlMmMwNjgyYTRlYzhlOGI5MWVlMjQxMzc0MmEwYTgwNTNmOTYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnYm+Af1WJdNUFIDwBWoQP2YAbC4l
T4qdp8wyq9qM59GEIgFr7V31FObE3wR79XeKmeqP66i53zsPsY2rWPgmVfT1ZAZt
4SLUn/GuloKMb8jVX9CTR4KIqgqsVDAh55OnM5cIJWUfu5cfwR201JgtUbNwhjs8
8HXG5DcSpsHdoc5EOWu1faDXDoBVEarlSD0sXYWgBCkq985N3e94Qh2Upfx4Waho
yQzYtPnmZhzF2hj3ytoBC5iRHUsf+1yhYzU6fa7Us1qB4JBqgDRQ57JeWkX8Q6TP
RYr0+88vjbWKZiYc/RxesqcPKc5LQpLdQzPZChys57Hevc4NpJI7vWtkuwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIjOLAaCpOyOi5HuJBN0KgqAU/liMB8GA1UdIwQY
MBaAFLIaP0r5SlgOuee1hUKgCEshwrCbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2hvX1N2bEtXQTY1NTdXRlFxQUlTeUhDc0pzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS85OTFmMWMtOTk5Yi00Zjc1LWIwYmYt
NTEyOTE3MmI2OTY2LzEvc2hvX1N2bEtXQTY1NTdXRlFxQUlTeUhDc0pzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYS85OTFmMWMtOTk5Yi00Zjc1LWIwYmYtNTEyOTE3MmI2OTY2
LzEvc2hvX1N2bEtXQTY1NTdXRlFxQUlTeUhDc0pzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO+DNU0Ys
Y2M/bm5ga8GJQb/QQg/JCWt1HDKpnpgUvsnyxQXU3KnQqfDouYV6Kfj7WSsjZt8e
1IZr5cazNXz2RRjzky4fz6PrBW7jG7ZHGybsdaqCHZzZuAjJ/mDUJidDuH9q1R2A
e7xcSc4Bg/q3jXwGOYaMHFpoEg8hJydAzJIks8IsNNo4yys7Q5hCxefSB/PJZG1F
DuL+KsOAY4apJECpWf0lq/musI1wrS43+5BqiwQe3YarczmnA7VynqrkmHIuyQ9/
tK0XVb9I9rUzu0fg64TMNPhldyBeaS5KG3rFIQwtvLKp2GS4r0wwDiQXBbB13nk0
qymOcMS9lFrKkw==
-----END CERTIFICATE-----
Generated at Wed May 13 11:34:35 2026 by rpki-client