Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/97c916-81b1-4b3a-9fee-356a19f55506/1/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.mft
File: Sh7Uv1AsDy2LyHAmwYrJhZsPHew.mft (raw, json)
Hash identifier: l9Nv3hkhIKdRQmLcSIWN5FMbdcrOaVH23/MAYt1lrLA=
Subject key identifier: 8D:BF:87:F0:D9:31:F1:06:DB:2B:83:F4:26:30:3C:A7:87:6D:41:53
Authority key identifier: 4A:1E:D4:BF:50:2C:0F:2D:8B:C8:70:26:C1:8A:C9:85:9B:0F:1D:EC
Certificate issuer: /CN=4a1ed4bf502c0f2d8bc87026c18ac9859b0f1dec
Certificate serial: 0199FC8F4D87E1FA188ECD8C791D4AFBEBBD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/97c916-81b1-4b3a-9fee-356a19f55506/1/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.mft
Manifest number: 16E1
Signing time: Sun 19 Oct 2025 13:01:13 +0000
Manifest this update: Sun 19 Oct 2025 13:01:13 +0000
Manifest next update: Mon 20 Oct 2025 13:01:13 +0000
Files and hashes: 1: Sh7Uv1AsDy2LyHAmwYrJhZsPHew.crl (hash: 6jtFI1mLO992LNGEmpSEN/2MEtJCEBsSIK/6MyKXFvs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/97c916-81b1-4b3a-9fee-356a19f55506/1/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/97c916-81b1-4b3a-9fee-356a19f55506/1/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.mft
rsync://rpki.ripe.net/repository/DEFAULT/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:4d:87:e1:fa:18:8e:cd:8c:79:1d:4a:fb:eb:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a1ed4bf502c0f2d8bc87026c18ac9859b0f1dec
Validity
Not Before: Oct 19 13:01:13 2025 GMT
Not After : Oct 20 13:01:13 2025 GMT
Subject: CN=8dbf87f0d931f106db2b83f426303ca7876d4153
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:f8:d0:1a:7e:5c:c4:9e:ae:e4:82:9d:2c:1d:
6a:1c:02:65:3a:6b:2f:da:13:14:0a:8d:15:9c:96:
57:4b:7b:6c:18:df:83:6b:f7:26:26:3c:ae:b8:80:
f2:c6:0a:67:32:09:db:cc:d6:b4:f3:1d:ca:ed:1a:
24:7f:07:ce:f1:db:95:84:23:d2:49:30:2f:73:49:
c5:8a:6d:83:4a:e6:e1:cf:8c:57:db:d9:ef:17:da:
54:14:fc:25:f0:ec:e0:0e:02:16:69:ba:5b:21:b9:
14:87:b5:24:a8:9d:d1:42:19:21:14:18:67:a4:4f:
46:d3:24:11:fe:96:c4:0b:d6:c2:39:35:5a:3a:5f:
95:bd:4e:cb:3d:11:53:42:39:a0:b2:6c:19:4f:1f:
85:d9:33:8d:49:72:a9:56:d4:fb:05:7e:87:93:54:
48:ae:a2:fe:11:19:e0:23:83:9f:4f:41:b5:6d:4a:
a4:91:52:dd:a2:df:33:7f:99:ba:53:83:65:8e:f7:
dc:c9:b8:35:dc:73:9c:bc:99:d3:e7:b3:5a:bd:63:
29:67:f4:eb:26:0e:3e:e8:b6:08:85:46:e4:51:dd:
0a:0d:cc:97:76:5c:82:f5:45:a0:b9:ca:5c:68:3d:
cc:85:86:94:6c:55:ca:68:22:53:a5:ae:25:d2:f7:
7b:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:BF:87:F0:D9:31:F1:06:DB:2B:83:F4:26:30:3C:A7:87:6D:41:53
X509v3 Authority Key Identifier:
keyid:4A:1E:D4:BF:50:2C:0F:2D:8B:C8:70:26:C1:8A:C9:85:9B:0F:1D:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/97c916-81b1-4b3a-9fee-356a19f55506/1/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/97c916-81b1-4b3a-9fee-356a19f55506/1/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:61:77:ec:e3:16:a0:06:23:dd:53:56:c9:d2:d4:2b:3e:3e:
ce:ee:2c:7e:40:e7:d7:ab:8b:98:a7:72:de:2d:11:04:dd:76:
b1:7a:e5:39:91:3d:32:0b:70:c5:91:e5:6c:39:24:59:53:f3:
d5:8f:b8:8e:e9:cd:ac:63:2b:19:84:d1:8c:38:f9:a2:f9:22:
43:68:29:9b:a5:d2:cf:c3:df:e7:8c:32:db:29:1e:c0:50:f7:
d9:8a:e4:99:e8:e4:41:85:eb:6a:1c:5a:7b:ff:0a:03:0b:84:
92:6a:e4:87:37:78:13:ff:81:02:f1:86:d0:ab:05:e7:ec:25:
5d:29:be:1a:02:56:ee:17:ff:b4:69:70:46:12:20:40:64:cc:
42:bb:22:90:99:75:87:16:a2:02:ad:58:fd:c9:fd:b7:43:70:
96:cc:3e:1f:33:b7:a4:2e:24:c6:2b:ec:65:cc:65:c5:ba:48:
f1:bf:97:d2:cf:f0:f1:de:d1:db:b5:db:93:88:76:61:a7:73:
cf:33:9a:43:9a:7e:5c:46:c6:f9:69:69:a1:43:f6:cf:f5:c9:
8d:0b:db:f5:17:f2:42:69:7a:0a:5a:bc:3c:f9:fd:36:53:0c:
32:61:27:ab:42:15:b6:af:7d:f9:a4:c3:2e:e1:b9:c1:6d:2c:
86:33:21:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:49:18 2025 by rpki-client