Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.mft
File: shXNjm2zVEGYTZx9_Jr7ZT5V3_E.mft (raw, json)
Hash identifier: dHGi0wUq0PVXK/8KcpsntnQR5mRqBTnB9TFXLgz2XCY=
Subject key identifier: 8C:D5:17:0C:DC:7B:9B:0D:65:C1:75:A6:A0:DC:74:D9:22:5A:85:04
Authority key identifier: B2:15:CD:8E:6D:B3:54:41:98:4D:9C:7D:FC:9A:FB:65:3E:55:DF:F1
Certificate issuer: /CN=b215cd8e6db35441984d9c7dfc9afb653e55dff1
Certificate serial: 0199FDA1D4618BEFE6D1A9692E1799F628C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.mft
Manifest number: 164B
Signing time: Sun 19 Oct 2025 18:01:05 +0000
Manifest this update: Sun 19 Oct 2025 18:01:05 +0000
Manifest next update: Mon 20 Oct 2025 18:01:05 +0000
Files and hashes: 1: UkWKB7R6wSYKBpsuiwwV880UfCk.roa (hash: pQhrMKgkx/zqcMJYjMVoXY14ZtF5KkWfSepRK8YAXxs=)
2: shXNjm2zVEGYTZx9_Jr7ZT5V3_E.crl (hash: hmfZ6omUPIrY/s7aO6/wUe2O9Rv5ZBIodV/40dFcnNY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.mft
rsync://rpki.ripe.net/repository/DEFAULT/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:a1:d4:61:8b:ef:e6:d1:a9:69:2e:17:99:f6:28:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b215cd8e6db35441984d9c7dfc9afb653e55dff1
Validity
Not Before: Oct 19 18:01:05 2025 GMT
Not After : Oct 20 18:01:05 2025 GMT
Subject: CN=8cd5170cdc7b9b0d65c175a6a0dc74d9225a8504
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:0d:05:1a:b4:b3:ed:29:48:77:74:db:f7:70:
7b:2d:6d:b8:07:b6:54:3f:46:3c:00:0f:f5:7d:13:
43:fc:1d:e8:5d:19:37:0f:65:85:31:43:f5:78:7a:
67:16:aa:8a:af:06:47:70:cd:a1:9d:2b:f0:f2:50:
de:cd:4c:7d:34:a1:79:59:29:94:70:7c:cd:11:18:
76:49:4c:d3:cf:9a:5c:48:6a:99:9b:16:b1:41:7f:
7f:07:04:d6:ca:14:e0:1b:50:13:f7:d1:aa:6f:b9:
26:a1:3f:bb:9a:99:ac:c2:2f:ef:99:ba:a7:11:66:
7d:1a:be:e8:99:d4:c7:1b:1c:17:f1:f0:9b:5a:4f:
12:10:ce:53:49:bd:aa:a0:95:5d:a1:b1:10:29:9f:
b5:3c:0b:62:ad:2c:3d:21:11:a4:4b:e2:2e:88:68:
b7:8c:e7:94:72:5d:d5:01:3e:83:f1:76:90:99:fa:
dc:12:b7:dd:70:f9:70:8d:ef:f3:22:7e:06:2e:0b:
2f:a9:2a:f7:3c:03:5a:ea:3f:f3:18:f1:ab:ea:94:
4c:6f:37:bc:44:fe:6f:8e:1f:4a:6e:ac:f8:77:b5:
07:b5:bb:b3:68:ac:b1:b1:f0:04:81:e7:cd:af:92:
d2:26:88:c2:66:3e:2a:78:de:fc:32:90:05:f6:7c:
3c:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:D5:17:0C:DC:7B:9B:0D:65:C1:75:A6:A0:DC:74:D9:22:5A:85:04
X509v3 Authority Key Identifier:
keyid:B2:15:CD:8E:6D:B3:54:41:98:4D:9C:7D:FC:9A:FB:65:3E:55:DF:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:8e:e8:7e:1f:f3:b5:1c:af:2a:6a:db:11:03:2b:10:63:85:
b1:22:26:26:62:9b:f3:1f:c0:bb:d7:61:b9:d9:87:88:4f:bd:
b3:dc:5e:4a:0e:d2:74:2d:96:58:72:eb:ef:8b:20:5a:89:4f:
f3:eb:86:7a:6e:58:15:61:ba:4f:12:a4:b6:e9:ee:fc:05:e0:
43:a3:9b:78:0b:32:da:c2:a7:55:e7:d5:20:17:dd:e9:dc:ad:
86:d2:4e:16:cb:3b:ba:db:99:5f:b1:93:5d:04:21:a2:b2:6b:
c1:3d:2d:63:46:18:a5:50:69:21:ea:16:b4:25:19:84:69:53:
aa:5f:b9:f2:94:42:c4:1b:2a:c7:01:34:06:23:f1:43:44:6c:
82:47:a5:86:be:73:dd:15:f0:4d:a0:34:69:6c:01:99:60:94:
f5:80:56:53:4f:b7:75:32:e3:e9:00:84:ff:8b:b4:54:c4:a9:
4a:09:19:c0:20:e1:d1:f5:a4:b6:31:10:46:f8:8c:c0:d3:13:
6f:14:36:f5:a2:d6:ca:37:fd:46:a9:2d:9b:60:6a:d3:eb:1b:
f1:9f:08:3e:e0:74:4f:70:50:b6:dd:14:06:d4:8a:d3:f3:01:
49:5d:58:9d:8e:6b:89:11:cc:20:82:99:5e:d2:9b:73:0c:79:
db:ea:e7:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:07:37 2025 by rpki-client