Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/991f1c-999b-4f75-b0bf-5129172b6966/1/sho_SvlKWA6557WFQqAISyHCsJs.mft
File: sho_SvlKWA6557WFQqAISyHCsJs.mft (raw, json)
Hash identifier: KkODcs+OENusxCYJvzPx2tpDqTD/42Nt9mFhr3vq+64=
Subject key identifier: 83:2C:91:9F:BC:5D:FA:7A:CF:2D:19:EC:7D:C2:E9:55:49:A9:FE:1F
Authority key identifier: B2:1A:3F:4A:F9:4A:58:0E:B9:E7:B5:85:42:A0:08:4B:21:C2:B0:9B
Certificate issuer: /CN=b21a3f4af94a580eb9e7b58542a0084b21c2b09b
Certificate serial: 0199FDD98B8976D69B3CEC1E2DE0624B6708
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sho_SvlKWA6557WFQqAISyHCsJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/991f1c-999b-4f75-b0bf-5129172b6966/1/sho_SvlKWA6557WFQqAISyHCsJs.mft
Manifest number: 07C4
Signing time: Sun 19 Oct 2025 19:01:56 +0000
Manifest this update: Sun 19 Oct 2025 19:01:56 +0000
Manifest next update: Mon 20 Oct 2025 19:01:56 +0000
Files and hashes: 1: 1hp0FN2Zg5pDjgoZFlg4J_guib0.roa (hash: Q0hgLFUWzZKKVmCPawFvjEl4SPCELVdqx/7++z9jxEg=)
2: sho_SvlKWA6557WFQqAISyHCsJs.crl (hash: kTIROz/RhmvT82iprTiR77vJsJLJ738RJQtedISoeJw=)
3: ygg1jPU11rM4AgPA_fHJm1HIbDA.roa (hash: bQEdp6E9utyQGzeJGQwHEXnTvCFMaSrhkRZ3o6gqExk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/991f1c-999b-4f75-b0bf-5129172b6966/1/sho_SvlKWA6557WFQqAISyHCsJs.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/991f1c-999b-4f75-b0bf-5129172b6966/1/sho_SvlKWA6557WFQqAISyHCsJs.mft
rsync://rpki.ripe.net/repository/DEFAULT/sho_SvlKWA6557WFQqAISyHCsJs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:8b:89:76:d6:9b:3c:ec:1e:2d:e0:62:4b:67:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b21a3f4af94a580eb9e7b58542a0084b21c2b09b
Validity
Not Before: Oct 19 19:01:56 2025 GMT
Not After : Oct 20 19:01:56 2025 GMT
Subject: CN=832c919fbc5dfa7acf2d19ec7dc2e95549a9fe1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:b2:de:36:c0:f9:f2:84:bb:67:82:2d:ea:25:
f5:37:2e:6a:52:56:94:51:80:1a:3d:77:60:95:d8:
4d:48:99:4c:c5:f8:a8:7c:41:a2:e5:59:bd:b3:c0:
95:83:b2:1d:28:fd:eb:72:29:a7:e9:02:63:c2:9c:
32:0a:d3:88:cf:5f:93:7e:ae:9a:8e:0d:b0:0f:62:
9b:88:8b:01:14:2d:a8:23:6b:08:20:62:85:4d:41:
f5:ee:3d:5c:40:86:ac:63:59:20:24:eb:7d:da:41:
9b:0b:d0:20:2d:54:e0:49:58:ce:8b:33:07:eb:52:
9f:67:ca:e3:a5:87:53:47:2f:8a:f0:db:ad:8b:f8:
c9:a2:18:52:49:db:ea:ac:6a:5e:51:16:27:f0:37:
b8:f9:a4:8f:c8:bf:8d:92:e6:a0:17:74:83:c0:ff:
e7:a5:e6:e3:ab:aa:aa:a1:19:55:df:21:f7:06:64:
db:f1:b7:a3:2a:37:ff:07:a6:18:ca:61:c1:2f:80:
06:95:0d:2e:1b:ef:eb:f2:a6:aa:df:ff:95:8e:db:
3f:64:7d:70:f1:56:5d:c6:77:39:52:e3:b4:fa:90:
64:b1:42:ec:36:eb:0f:5e:61:e8:3e:b3:93:1d:c3:
0c:15:98:4a:cb:ab:55:7b:e3:5e:76:4a:34:da:6a:
e0:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:2C:91:9F:BC:5D:FA:7A:CF:2D:19:EC:7D:C2:E9:55:49:A9:FE:1F
X509v3 Authority Key Identifier:
keyid:B2:1A:3F:4A:F9:4A:58:0E:B9:E7:B5:85:42:A0:08:4B:21:C2:B0:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sho_SvlKWA6557WFQqAISyHCsJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/991f1c-999b-4f75-b0bf-5129172b6966/1/sho_SvlKWA6557WFQqAISyHCsJs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/991f1c-999b-4f75-b0bf-5129172b6966/1/sho_SvlKWA6557WFQqAISyHCsJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
da:10:57:f2:a0:0a:98:57:a1:05:68:56:fd:3a:f0:c3:8b:14:
6e:76:6b:56:25:32:09:c0:66:c4:27:71:ab:50:8c:9c:d1:d9:
8b:b5:54:38:09:c1:58:83:bb:1e:63:f8:72:d1:c7:c2:7c:95:
8b:6c:75:36:0c:03:30:8d:e4:cc:f5:fc:9b:ba:a4:3c:a8:9b:
8a:07:3e:d8:2d:a5:9e:3d:a4:0f:23:57:b6:29:80:8e:f1:d9:
c5:36:1d:ab:1e:e9:dd:11:fe:ac:a5:8a:c8:e2:7f:9f:a4:0f:
21:e0:48:73:ba:a5:4c:47:7d:5b:1c:2a:f4:8a:28:20:30:30:
30:07:d1:cb:39:47:bc:9d:00:39:cd:ba:a1:bd:55:2b:6f:aa:
53:c7:02:ec:3d:63:c8:cb:a0:0d:09:fd:6a:83:db:0c:fa:9a:
5b:ca:63:05:9d:c7:40:5f:fd:a8:72:54:d2:8e:4e:d4:88:72:
fd:18:a7:88:99:f9:e9:38:38:7e:93:28:30:7a:66:49:ed:7a:
c4:76:89:1b:70:79:7c:d3:cf:06:f3:ad:81:d7:00:54:1a:38:
24:33:c7:a5:cb:4b:38:ff:96:9d:f6:d4:6d:30:09:b4:39:15:
0e:38:57:4d:3c:22:95:61:bd:83:8c:d4:98:cf:77:27:65:43:
97:cc:3e:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 21:00:04 2025 by rpki-client