Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/2f5f22-7439-4208-8b39-7d11fcf17123/1/sHATRrrVXff13IGLu7z7t9sQcKs.mft
File: sHATRrrVXff13IGLu7z7t9sQcKs.mft (raw, json)
Hash identifier: OZnwfiDWRTW0FxF7wY+4g8RqcNC4oa9iPaC7Zdg8zrw=
Subject key identifier: 1A:CB:29:E6:9A:4C:13:D2:DF:04:8B:77:B7:F9:4E:75:AC:B1:A4:E9
Authority key identifier: B0:70:13:46:BA:D5:5D:F7:F5:DC:81:8B:BB:BC:FB:B7:DB:10:70:AB
Certificate issuer: /CN=b0701346bad55df7f5dc818bbbbcfbb7db1070ab
Certificate serial: 0198D4A7F8A017E42438D168863BB7EBEFB8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sHATRrrVXff13IGLu7z7t9sQcKs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/2f5f22-7439-4208-8b39-7d11fcf17123/1/sHATRrrVXff13IGLu7z7t9sQcKs.mft
Manifest number: 081D
Signing time: Sat 23 Aug 2025 02:00:34 +0000
Manifest this update: Sat 23 Aug 2025 02:00:34 +0000
Manifest next update: Sun 24 Aug 2025 02:00:34 +0000
Files and hashes: 1: 2vj5B04hPRrl36o4PSEreNmSh7Y.roa (hash: IJqTeCNZ6pF/BafJ55wl0YbKPxsnvPNim6xG4D9/f0M=)
2: sHATRrrVXff13IGLu7z7t9sQcKs.crl (hash: wKOJGHijlsB2NyPS4ouPpjxL5veB/hx0Q6IMA5E8jcg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/2f5f22-7439-4208-8b39-7d11fcf17123/1/sHATRrrVXff13IGLu7z7t9sQcKs.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/2f5f22-7439-4208-8b39-7d11fcf17123/1/sHATRrrVXff13IGLu7z7t9sQcKs.mft
rsync://rpki.ripe.net/repository/DEFAULT/sHATRrrVXff13IGLu7z7t9sQcKs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a7:f8:a0:17:e4:24:38:d1:68:86:3b:b7:eb:ef:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0701346bad55df7f5dc818bbbbcfbb7db1070ab
Validity
Not Before: Aug 23 02:00:34 2025 GMT
Not After : Aug 24 02:00:34 2025 GMT
Subject: CN=1acb29e69a4c13d2df048b77b7f94e75acb1a4e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b8:3c:71:17:f5:cf:5f:78:dc:a9:f6:7b:b2:
bd:70:e6:49:16:28:90:56:38:6b:69:0e:9b:f4:0a:
ac:86:77:c1:3d:34:eb:b4:2f:31:73:66:b1:50:e9:
fe:bc:c4:f5:f7:ae:cb:94:62:e8:5e:a6:63:38:fa:
d9:9e:70:33:cf:b1:01:85:d6:37:45:4f:ec:90:e5:
bd:7b:03:17:f7:c5:04:8b:33:7c:cc:8f:d6:7b:48:
16:15:f5:03:f5:8e:cb:3a:7d:d8:44:d3:bc:13:5a:
8b:5f:40:77:78:66:43:0e:67:51:ed:e1:66:22:1a:
49:99:5c:27:cf:ef:49:55:a9:f1:aa:86:c0:4b:94:
8e:5d:b5:b6:b2:be:d3:41:9f:b6:b9:84:eb:0c:44:
c8:07:76:84:52:12:33:07:0c:25:26:4a:18:ce:4b:
97:c5:81:50:81:68:3b:50:02:f1:4f:26:e5:a7:7d:
be:57:92:b2:b4:bc:14:68:01:83:c3:8e:4d:ef:c0:
17:73:4f:04:85:09:55:e9:21:d8:79:55:2c:92:5e:
22:86:e1:4b:93:8f:31:28:06:10:fa:e2:a0:f8:10:
e0:75:0f:34:2e:33:b7:42:a6:cb:d9:90:d8:b4:4b:
67:0b:97:f8:d4:3f:99:e4:40:59:49:03:ce:cb:7b:
e8:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:CB:29:E6:9A:4C:13:D2:DF:04:8B:77:B7:F9:4E:75:AC:B1:A4:E9
X509v3 Authority Key Identifier:
keyid:B0:70:13:46:BA:D5:5D:F7:F5:DC:81:8B:BB:BC:FB:B7:DB:10:70:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sHATRrrVXff13IGLu7z7t9sQcKs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/2f5f22-7439-4208-8b39-7d11fcf17123/1/sHATRrrVXff13IGLu7z7t9sQcKs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/2f5f22-7439-4208-8b39-7d11fcf17123/1/sHATRrrVXff13IGLu7z7t9sQcKs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:6c:e4:20:46:02:32:10:ed:e4:11:2f:9a:a2:bd:db:9b:cc:
a8:9d:60:b9:a0:cd:b6:43:eb:b2:94:c4:a8:07:96:9a:65:94:
a6:2c:98:78:87:c4:6d:08:d2:57:8e:44:e3:8c:18:f9:f0:a1:
3b:0e:9e:43:94:e0:74:f6:b3:fc:4b:07:3b:be:21:c0:8f:d3:
ba:1f:6d:21:14:76:73:d0:24:60:0e:a2:92:a5:84:d2:0b:74:
c2:f1:f0:45:03:34:aa:26:4f:55:26:d3:0a:2b:ff:ff:40:19:
23:42:ae:d0:41:8a:39:55:c8:b1:8b:6b:b9:4b:d4:a9:3e:9c:
b0:2f:fd:0b:ec:da:3f:9a:60:5c:67:3f:a2:c9:67:8c:66:25:
5e:b3:32:84:76:5a:75:97:49:8b:9c:07:b0:d9:1e:52:a8:ba:
16:a6:f9:02:18:d3:0c:43:35:44:e6:5b:e2:b5:ac:41:ff:ba:
a9:fc:d3:12:d6:bd:0c:2b:3b:9d:74:4b:00:b0:e5:4f:69:ab:
8a:57:f0:1e:22:74:e8:09:f9:d1:51:99:9c:38:bc:fa:df:50:
b2:39:87:47:b0:4f:7b:9f:e1:3f:23:83:5e:e5:46:c7:f4:68:
08:55:e8:37:5c:28:03:e9:4c:6f:f4:2a:d5:fb:c4:80:f5:b1:
a8:43:f4:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:32:42 2025 by rpki-client