Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.mft
File: shXNjm2zVEGYTZx9_Jr7ZT5V3_E.mft (raw, json)
Hash identifier: MjTM3VZkXsDicrssx0n+ZoYEF3EHuWiYOrYypnw+LRM=
Subject key identifier: 94:39:84:9D:7B:4C:E8:7E:A3:5A:F8:5B:E9:97:F4:5E:98:3E:99:05
Authority key identifier: B2:15:CD:8E:6D:B3:54:41:98:4D:9C:7D:FC:9A:FB:65:3E:55:DF:F1
Certificate issuer: /CN=b215cd8e6db35441984d9c7dfc9afb653e55dff1
Certificate serial: 0197B6A247250C566FA109D3643EEF74E918
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.mft
Manifest number: 151D
Signing time: Sat 28 Jun 2025 13:02:57 +0000
Manifest this update: Sat 28 Jun 2025 13:02:57 +0000
Manifest next update: Sun 29 Jun 2025 13:02:57 +0000
Files and hashes: 1: UkWKB7R6wSYKBpsuiwwV880UfCk.roa (hash: pQhrMKgkx/zqcMJYjMVoXY14ZtF5KkWfSepRK8YAXxs=)
2: shXNjm2zVEGYTZx9_Jr7ZT5V3_E.crl (hash: Uc11vYKUamZR5N4oZHW/qCtUtE4LIqknG2D8fLtCFt8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.mft
rsync://rpki.ripe.net/repository/DEFAULT/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a2:47:25:0c:56:6f:a1:09:d3:64:3e:ef:74:e9:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b215cd8e6db35441984d9c7dfc9afb653e55dff1
Validity
Not Before: Jun 28 13:02:57 2025 GMT
Not After : Jun 29 13:02:57 2025 GMT
Subject: CN=9439849d7b4ce87ea35af85be997f45e983e9905
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:8d:a1:be:30:39:d1:9d:72:6b:39:fc:0e:64:
cc:1c:71:a1:89:a3:b4:fe:85:7e:81:70:8a:40:c4:
fc:13:42:7c:15:18:45:63:26:59:b7:d5:b2:0f:e4:
1d:0f:1c:21:6f:87:13:be:6f:cf:8f:bc:7b:a3:10:
e8:7d:1b:6d:33:23:8e:6e:cc:5b:ba:42:4a:29:8c:
41:a2:11:68:de:87:75:a1:5c:dc:b5:95:ce:90:5a:
a4:20:a1:f9:ba:0a:c5:da:84:b1:61:04:27:27:7c:
56:ba:e7:0c:dd:2f:9c:6a:8c:e3:30:3e:c6:f0:a1:
c8:85:00:e3:7a:d2:5c:56:ba:ce:a4:5c:bf:cc:c1:
b0:44:f1:6e:6e:0c:69:06:f3:25:e2:3d:73:45:43:
0b:5c:4c:a8:28:36:59:a7:dd:fb:68:5a:9c:00:f0:
b2:96:7b:78:23:eb:d1:ff:87:52:3c:af:7e:01:d8:
96:55:57:7b:cd:a1:36:ce:40:2c:0c:8d:6d:e3:27:
a2:de:bb:ce:b2:a2:c0:d4:35:cb:3e:99:b4:a1:f5:
e5:80:76:56:1c:51:a0:2c:f0:aa:33:d3:43:5c:5a:
52:71:f1:66:0d:8a:77:84:97:db:13:ba:30:9c:08:
f6:b3:42:fd:ee:32:8a:99:7a:9b:c5:b9:61:28:52:
63:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:39:84:9D:7B:4C:E8:7E:A3:5A:F8:5B:E9:97:F4:5E:98:3E:99:05
X509v3 Authority Key Identifier:
keyid:B2:15:CD:8E:6D:B3:54:41:98:4D:9C:7D:FC:9A:FB:65:3E:55:DF:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:6c:33:a8:24:34:8c:57:64:2a:86:d9:c3:9e:c9:b8:40:b1:
72:26:f4:5b:92:81:88:9d:d0:2e:98:fd:17:04:34:00:35:8e:
92:af:91:a4:74:a3:b4:cb:c5:ca:2b:ee:e5:a9:d8:b3:0f:41:
d0:51:ef:07:85:fc:09:96:f8:5e:b1:54:1e:2a:56:8e:ef:d1:
21:e9:43:a7:88:98:3f:df:58:a1:06:26:41:bc:1a:88:5c:fb:
6a:e5:0f:ca:8a:1e:15:57:71:28:1c:52:82:e3:49:50:e8:32:
f1:34:b3:be:4d:2f:55:51:f7:0f:b6:ab:21:d4:c1:5d:43:1c:
aa:77:28:97:a8:13:e9:91:73:b1:d7:3d:37:e0:ea:c8:d5:11:
0b:67:85:05:bf:f1:f0:be:79:4e:f7:24:57:f4:a8:7f:0d:72:
0c:c7:94:8c:70:28:e5:05:98:8a:ba:4a:bc:b8:02:0d:22:97:
de:e3:13:48:05:e8:0f:c2:c4:13:8f:83:08:83:93:a6:33:a5:
69:e2:e4:56:72:f8:73:f3:d2:55:40:df:b9:41:a6:ef:59:28:
96:60:53:22:4d:6d:e6:ad:69:92:f3:a9:f9:ba:9e:12:dd:cb:
af:36:3e:14:dc:d6:11:bd:94:a0:92:c4:03:f5:75:ca:d1:5f:
8f:1e:77:39
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2okclDFZvoQnTZD7vdOkYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyMTVjZDhlNmRiMzU0NDE5ODRkOWM3ZGZjOWFmYjY1M2U1
NWRmZjEwHhcNMjUwNjI4MTMwMjU3WhcNMjUwNjI5MTMwMjU3WjAzMTEwLwYDVQQD
Eyg5NDM5ODQ5ZDdiNGNlODdlYTM1YWY4NWJlOTk3ZjQ1ZTk4M2U5OTA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Y2hvjA50Z1yazn8DmTMHHGhiaO0
/oV+gXCKQMT8E0J8FRhFYyZZt9WyD+QdDxwhb4cTvm/Pj7x7oxDofRttMyOObsxb
ukJKKYxBohFo3od1oVzctZXOkFqkIKH5ugrF2oSxYQQnJ3xWuucM3S+caozjMD7G
8KHIhQDjetJcVrrOpFy/zMGwRPFubgxpBvMl4j1zRUMLXEyoKDZZp937aFqcAPCy
lnt4I+vR/4dSPK9+AdiWVVd7zaE2zkAsDI1t4yei3rvOsqLA1DXLPpm0ofXlgHZW
HFGgLPCqM9NDXFpScfFmDYp3hJfbE7ownAj2s0L97jKKmXqbxblhKFJjnwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJQ5hJ17TOh+o1r4W+mX9F6YPpkFMB8GA1UdIwQY
MBaAFLIVzY5ts1RBmE2cffya+2U+Vd/xMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2hYTmptMnpWRUdZVFp4OV9KcjdaVDVWM19FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS8zOGI3OTItMThmYi00YmVkLTk5MGMt
ZTk1MGQ4N2Y4ZTI1LzEvc2hYTmptMnpWRUdZVFp4OV9KcjdaVDVWM19FLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS8zOGI3OTItMThmYi00YmVkLTk5MGMtZTk1MGQ4N2Y4ZTI1
LzEvc2hYTmptMnpWRUdZVFp4OV9KcjdaVDVWM19FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPWwzqCQ0
jFdkKobZw57JuECxcib0W5KBiJ3QLpj9FwQ0ADWOkq+RpHSjtMvFyivu5anYsw9B
0FHvB4X8CZb4XrFUHipWju/RIelDp4iYP99YoQYmQbwaiFz7auUPyooeFVdxKBxS
guNJUOgy8TSzvk0vVVH3D7arIdTBXUMcqncol6gT6ZFzsdc9N+DqyNURC2eFBb/x
8L55TvckV/Sofw1yDMeUjHAo5QWYirpKvLgCDSKX3uMTSAXoD8LEE4+DCIOTpjOl
aeLkVnL4c/PSVUDfuUGm71kolmBTIk1t5q1pkvOp+bqeEt3LrzY+FNzWEb2UoJLE
A/V1ytFfjx53OQ==
-----END CERTIFICATE-----
Generated at Sat Jun 28 22:33:27 2025 by rpki-client