Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/2f5f22-7439-4208-8b39-7d11fcf17123/1/sHATRrrVXff13IGLu7z7t9sQcKs.mft
File: sHATRrrVXff13IGLu7z7t9sQcKs.mft (raw, json)
Hash identifier: 0HAdIsJIsLKIZWz8amNpJ75MjE+Uo1WYVBytwaZTezw=
Subject key identifier: 57:B8:84:53:D0:DD:FB:0D:90:4B:22:5E:19:F9:3F:60:4B:E4:59:30
Authority key identifier: B0:70:13:46:BA:D5:5D:F7:F5:DC:81:8B:BB:BC:FB:B7:DB:10:70:AB
Certificate issuer: /CN=b0701346bad55df7f5dc818bbbbcfbb7db1070ab
Certificate serial: 0199FE103DDFE38933B4305ACA3ABD61171B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sHATRrrVXff13IGLu7z7t9sQcKs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/2f5f22-7439-4208-8b39-7d11fcf17123/1/sHATRrrVXff13IGLu7z7t9sQcKs.mft
Manifest number: 08B7
Signing time: Sun 19 Oct 2025 20:01:41 +0000
Manifest this update: Sun 19 Oct 2025 20:01:41 +0000
Manifest next update: Mon 20 Oct 2025 20:01:41 +0000
Files and hashes: 1: 2vj5B04hPRrl36o4PSEreNmSh7Y.roa (hash: IJqTeCNZ6pF/BafJ55wl0YbKPxsnvPNim6xG4D9/f0M=)
2: sHATRrrVXff13IGLu7z7t9sQcKs.crl (hash: 6rmnM+tQgASG/Iu27KyCCWBYJoNChXnTc0q6RTmAfM0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/2f5f22-7439-4208-8b39-7d11fcf17123/1/sHATRrrVXff13IGLu7z7t9sQcKs.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/2f5f22-7439-4208-8b39-7d11fcf17123/1/sHATRrrVXff13IGLu7z7t9sQcKs.mft
rsync://rpki.ripe.net/repository/DEFAULT/sHATRrrVXff13IGLu7z7t9sQcKs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:10:3d:df:e3:89:33:b4:30:5a:ca:3a:bd:61:17:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0701346bad55df7f5dc818bbbbcfbb7db1070ab
Validity
Not Before: Oct 19 20:01:41 2025 GMT
Not After : Oct 20 20:01:41 2025 GMT
Subject: CN=57b88453d0ddfb0d904b225e19f93f604be45930
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:fe:61:83:0f:4e:85:5c:18:86:26:64:15:5d:
28:b9:70:32:7c:34:fc:58:87:9a:60:2a:7f:c7:a8:
e9:eb:ec:f9:ee:f1:93:16:bb:82:0d:a7:aa:d1:68:
7e:87:a6:ad:4f:f9:db:52:ac:4b:1a:5a:ee:4c:60:
47:2e:62:73:50:1b:42:a0:21:db:60:a8:03:b5:99:
72:52:fb:2c:c0:8f:65:64:91:8d:3c:c5:38:d9:8c:
da:ab:85:92:18:95:01:e4:60:71:3a:eb:58:b3:d8:
ec:bd:55:2a:5c:7f:2d:34:27:30:06:cf:39:16:bc:
d9:c5:ab:50:45:c8:7d:8d:1f:51:0c:f3:dc:6f:ec:
14:f4:92:94:33:25:cb:59:45:4a:31:4c:54:77:10:
e1:42:11:47:00:69:9e:42:63:df:05:6b:86:90:fa:
79:b9:e0:b2:02:0e:78:08:3a:7b:a4:c6:cc:ea:49:
ec:de:26:fb:cf:a6:a2:6e:71:d8:7a:bd:1f:30:ab:
7d:76:34:af:ef:65:99:39:7a:ae:f3:6e:d5:23:e3:
e5:4f:f1:7b:23:ee:3a:b5:a7:1d:34:4d:9b:4e:0c:
83:f7:00:8b:81:d2:9b:c3:62:8f:09:b5:cb:68:f5:
74:cd:d4:83:f9:6d:83:81:6b:2b:b0:8a:ee:a4:4c:
f2:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:B8:84:53:D0:DD:FB:0D:90:4B:22:5E:19:F9:3F:60:4B:E4:59:30
X509v3 Authority Key Identifier:
keyid:B0:70:13:46:BA:D5:5D:F7:F5:DC:81:8B:BB:BC:FB:B7:DB:10:70:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sHATRrrVXff13IGLu7z7t9sQcKs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/2f5f22-7439-4208-8b39-7d11fcf17123/1/sHATRrrVXff13IGLu7z7t9sQcKs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/2f5f22-7439-4208-8b39-7d11fcf17123/1/sHATRrrVXff13IGLu7z7t9sQcKs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:26:37:4e:c5:61:fb:7a:0c:67:13:fd:58:76:a4:ef:57:1b:
b0:f1:da:3f:f5:f7:6a:4d:68:08:0b:cc:98:d4:b8:da:84:78:
ba:d4:90:c9:57:6c:31:ff:39:99:06:95:83:32:69:95:e5:11:
f9:57:be:bd:c0:84:84:ca:01:01:ee:b0:8b:36:e3:a7:10:f5:
31:dc:88:99:7e:46:83:6e:3a:9e:d5:ef:d5:53:49:64:b7:b5:
d4:97:e4:0c:b7:d4:ac:3b:e0:f7:c5:5e:c3:68:34:f6:b0:1f:
d8:ad:9b:59:10:e6:00:d9:e9:8d:b2:69:d0:f5:ef:88:9a:ac:
a0:9c:13:61:f8:8d:75:74:cd:e6:89:f4:7f:10:da:25:1a:9c:
c1:f7:46:c3:ea:e6:a5:72:d1:dd:fb:17:2c:dd:a9:04:9f:83:
c6:88:89:f4:3f:3f:3b:96:32:8d:95:6e:c5:88:94:e8:41:ca:
f1:0e:94:e3:bb:c3:02:c5:7a:0e:a2:f8:e8:fd:80:f5:cd:9f:
2b:28:10:f1:fc:eb:be:4a:90:46:b9:51:ed:09:ee:97:d1:d6:
32:99:18:e7:d9:86:a0:2e:0a:e9:a6:cb:e7:94:ea:40:6f:b8:
9d:92:8c:12:0b:83:01:60:7a:6a:3c:ec:56:99:d5:02:b0:fe:
93:93:54:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 00:00:44 2025 by rpki-client