Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.mft
File: shXNjm2zVEGYTZx9_Jr7ZT5V3_E.mft (raw, json)
Hash identifier: /E1Z14tjt0AYXEHhDDpqWPXKME9E6rMM4Rn0xRt7tfQ=
Subject key identifier: 60:58:7D:45:8E:23:D8:2E:8F:51:5C:59:4C:85:C1:86:D2:B7:72:0C
Authority key identifier: B2:15:CD:8E:6D:B3:54:41:98:4D:9C:7D:FC:9A:FB:65:3E:55:DF:F1
Certificate issuer: /CN=b215cd8e6db35441984d9c7dfc9afb653e55dff1
Certificate serial: 0198D66025287E769EFB235DF4ADC147E1C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.mft
Manifest number: 15B2
Signing time: Sat 23 Aug 2025 10:01:21 +0000
Manifest this update: Sat 23 Aug 2025 10:01:21 +0000
Manifest next update: Sun 24 Aug 2025 10:01:21 +0000
Files and hashes: 1: UkWKB7R6wSYKBpsuiwwV880UfCk.roa (hash: pQhrMKgkx/zqcMJYjMVoXY14ZtF5KkWfSepRK8YAXxs=)
2: shXNjm2zVEGYTZx9_Jr7ZT5V3_E.crl (hash: K+USivux7yJXd+lFBWnpoHI1t/Ku9GivXej7H2+2lD0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.mft
rsync://rpki.ripe.net/repository/DEFAULT/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:25:28:7e:76:9e:fb:23:5d:f4:ad:c1:47:e1:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b215cd8e6db35441984d9c7dfc9afb653e55dff1
Validity
Not Before: Aug 23 10:01:21 2025 GMT
Not After : Aug 24 10:01:21 2025 GMT
Subject: CN=60587d458e23d82e8f515c594c85c186d2b7720c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:4c:3d:9d:4b:f5:87:c5:a9:54:03:f5:1b:1b:
aa:a6:b3:18:d2:ec:f4:35:9e:97:05:86:95:d4:fa:
d2:3d:fc:af:3d:f9:68:6e:b6:51:df:7c:76:4b:39:
f6:6b:8c:9e:a9:e8:9d:62:40:99:1a:86:15:62:bb:
6d:23:60:19:13:79:3d:ba:22:08:3c:21:8b:68:69:
57:ed:9c:f6:8e:25:93:06:2b:00:7a:75:54:fe:19:
07:00:59:8a:aa:ca:26:e0:16:cc:1a:93:1c:39:a9:
2c:fa:21:7d:87:9c:f3:10:b5:12:ea:6e:d7:f4:d7:
8f:ef:51:29:bb:f4:40:ac:d6:78:e7:f2:bd:0f:11:
f6:41:5d:c0:70:86:38:0c:a8:6f:57:d9:18:67:bb:
4b:7b:5f:1a:05:d3:71:73:7e:20:e7:1d:87:90:15:
92:6b:bf:85:3c:58:aa:bd:34:2b:1c:70:f8:cc:52:
b0:68:ff:a3:b9:cb:b3:97:26:7f:7f:84:ac:a6:77:
a0:5a:32:9d:c6:e4:7b:d5:39:4f:5a:50:e3:0c:cb:
40:eb:30:f5:7d:7d:bc:80:b6:65:46:6b:ec:0e:05:
18:f5:d6:80:9a:f9:9c:96:64:a9:88:0b:80:d4:8f:
f8:70:bb:64:fa:6c:9d:24:6f:25:db:26:74:ce:f1:
f1:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:58:7D:45:8E:23:D8:2E:8F:51:5C:59:4C:85:C1:86:D2:B7:72:0C
X509v3 Authority Key Identifier:
keyid:B2:15:CD:8E:6D:B3:54:41:98:4D:9C:7D:FC:9A:FB:65:3E:55:DF:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:a4:17:47:70:b7:a2:e9:ae:30:6c:f2:35:35:48:31:48:97:
d5:95:28:0d:25:61:f9:ce:3c:99:10:7a:a5:01:5a:33:22:30:
ba:d8:9d:cc:a1:71:fe:ec:03:a5:99:a6:80:60:c9:a6:d7:9b:
81:50:18:d8:cb:a2:fa:c2:4e:dc:66:96:79:1b:19:9e:69:1a:
e6:3a:62:24:a5:46:f0:82:3f:c1:ef:16:4b:c3:c3:a2:e2:d1:
ee:65:4f:58:6f:d1:11:62:8a:85:86:81:5f:ff:06:b5:6a:e7:
ff:81:63:dc:9b:b7:5b:b7:41:a9:90:1d:60:b8:4c:29:7c:58:
63:32:3c:e1:98:a9:19:cc:6e:6d:ec:7b:20:0e:8b:e8:3c:44:
03:1f:f3:e8:5d:e7:68:1c:f0:f5:21:35:d4:58:d7:25:11:7a:
24:5b:9e:6d:0e:d4:5c:bc:e4:c0:d5:0d:5c:06:3c:18:9f:3e:
0c:c1:0c:da:f6:c4:50:96:a7:c5:f6:b1:02:27:13:4f:12:f5:
7c:08:15:05:e3:f3:dc:7a:43:c9:06:a0:26:a4:81:2c:5c:67:
20:2a:5a:bf:10:b8:fa:70:30:bd:b9:e7:cd:ab:c6:2b:cd:7c:
fc:d5:d0:2f:93:8f:fd:d9:e9:76:e1:3c:81:d8:5c:37:ff:d7:
bc:75:1b:de
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWYCUofnae+yNd9K3BR+HBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyMTVjZDhlNmRiMzU0NDE5ODRkOWM3ZGZjOWFmYjY1M2U1
NWRmZjEwHhcNMjUwODIzMTAwMTIxWhcNMjUwODI0MTAwMTIxWjAzMTEwLwYDVQQD
Eyg2MDU4N2Q0NThlMjNkODJlOGY1MTVjNTk0Yzg1YzE4NmQyYjc3MjBjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq0w9nUv1h8WpVAP1GxuqprMY0uz0
NZ6XBYaV1PrSPfyvPflobrZR33x2Szn2a4yeqeidYkCZGoYVYrttI2AZE3k9uiII
PCGLaGlX7Zz2jiWTBisAenVU/hkHAFmKqsom4BbMGpMcOaks+iF9h5zzELUS6m7X
9NeP71Epu/RArNZ45/K9DxH2QV3AcIY4DKhvV9kYZ7tLe18aBdNxc34g5x2HkBWS
a7+FPFiqvTQrHHD4zFKwaP+jucuzlyZ/f4SspnegWjKdxuR71TlPWlDjDMtA6zD1
fX28gLZlRmvsDgUY9daAmvmclmSpiAuA1I/4cLtk+mydJG8l2yZ0zvHxVQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGBYfUWOI9guj1FcWUyFwYbSt3IMMB8GA1UdIwQY
MBaAFLIVzY5ts1RBmE2cffya+2U+Vd/xMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2hYTmptMnpWRUdZVFp4OV9KcjdaVDVWM19FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS8zOGI3OTItMThmYi00YmVkLTk5MGMt
ZTk1MGQ4N2Y4ZTI1LzEvc2hYTmptMnpWRUdZVFp4OV9KcjdaVDVWM19FLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS8zOGI3OTItMThmYi00YmVkLTk5MGMtZTk1MGQ4N2Y4ZTI1
LzEvc2hYTmptMnpWRUdZVFp4OV9KcjdaVDVWM19FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhKQXR3C3
oumuMGzyNTVIMUiX1ZUoDSVh+c48mRB6pQFaMyIwutidzKFx/uwDpZmmgGDJpteb
gVAY2Mui+sJO3GaWeRsZnmka5jpiJKVG8II/we8WS8PDouLR7mVPWG/REWKKhYaB
X/8GtWrn/4Fj3Ju3W7dBqZAdYLhMKXxYYzI84ZipGcxubex7IA6L6DxEAx/z6F3n
aBzw9SE11FjXJRF6JFuebQ7UXLzkwNUNXAY8GJ8+DMEM2vbEUJanxfaxAicTTxL1
fAgVBePz3HpDyQagJqSBLFxnICpavxC4+nAwvbnnzavGK818/NXQL5OP/dnpduE8
gdhcN//XvHUb3g==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:19:02 2025 by rpki-client