Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/52a1e5-86f1-49f7-a773-cb3e29b6ad32/1/sh47KsUJcPsSbL3xnX-zFdzBxF0.mft
File: sh47KsUJcPsSbL3xnX-zFdzBxF0.mft (raw, json)
Hash identifier: knd0VpY5dh+tfDUcuR7byOOpYMJIjidy6W152dlURMg=
Subject key identifier: 5B:A4:4D:FC:BB:FA:52:0B:E1:D9:C1:FD:FF:AF:F4:2D:65:B0:13:87
Authority key identifier: B2:1E:3B:2A:C5:09:70:FB:12:6C:BD:F1:9D:7F:B3:15:DC:C1:C4:5D
Certificate issuer: /CN=b21e3b2ac50970fb126cbdf19d7fb315dcc1c45d
Certificate serial: 0198D660B1483890125EB8C7CFD63D2E7200
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sh47KsUJcPsSbL3xnX-zFdzBxF0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/52a1e5-86f1-49f7-a773-cb3e29b6ad32/1/sh47KsUJcPsSbL3xnX-zFdzBxF0.mft
Manifest number: D7
Signing time: Sat 23 Aug 2025 10:01:57 +0000
Manifest this update: Sat 23 Aug 2025 10:01:57 +0000
Manifest next update: Sun 24 Aug 2025 10:01:57 +0000
Files and hashes: 1: 5wrNYPlSCkVTpZCOkOfJiVfHH1s.roa (hash: vV52rVETrxDxRFyAGhG26EED/lJXHQxzwHDXgoc8s8o=)
2: sh47KsUJcPsSbL3xnX-zFdzBxF0.crl (hash: 9IuvX6/fxUGtGS3wQnx0BY3T/xkw86ipQEa2nZBysxA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/52a1e5-86f1-49f7-a773-cb3e29b6ad32/1/sh47KsUJcPsSbL3xnX-zFdzBxF0.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/52a1e5-86f1-49f7-a773-cb3e29b6ad32/1/sh47KsUJcPsSbL3xnX-zFdzBxF0.mft
rsync://rpki.ripe.net/repository/DEFAULT/sh47KsUJcPsSbL3xnX-zFdzBxF0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:b1:48:38:90:12:5e:b8:c7:cf:d6:3d:2e:72:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b21e3b2ac50970fb126cbdf19d7fb315dcc1c45d
Validity
Not Before: Aug 23 10:01:57 2025 GMT
Not After : Aug 24 10:01:57 2025 GMT
Subject: CN=5ba44dfcbbfa520be1d9c1fdffaff42d65b01387
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:66:2a:7f:8e:a8:21:0a:ae:97:dd:a7:2f:7b:
e4:08:99:6d:ba:64:ae:76:bd:8b:e4:6b:a6:88:83:
a1:19:39:b5:d4:81:9e:13:35:dd:7f:63:94:3b:4c:
82:a0:fc:4f:c2:22:1d:9c:93:52:32:c8:23:5a:85:
f4:09:b8:4e:78:56:a2:bc:b2:2e:ef:3b:a7:de:38:
61:aa:b9:d4:96:21:0d:1c:5d:3c:b1:59:35:fb:63:
74:1c:70:f9:9d:4b:0e:48:9f:fe:17:0d:3c:3c:f3:
64:b4:0e:07:e1:c6:4d:cc:6d:22:66:04:cf:5b:f0:
6d:aa:04:f9:bf:d3:9d:66:e6:c8:59:0b:c7:f4:45:
2b:00:2d:1f:6d:24:55:65:20:21:e2:f6:af:77:87:
26:86:9a:25:b9:31:9f:d3:b4:c0:c3:7e:c0:9c:f1:
a8:bc:92:6c:1a:b6:94:c8:e3:1a:ea:a5:21:59:49:
08:97:18:ec:06:45:f1:1d:e9:89:d3:56:3f:2a:20:
ad:c1:36:6b:20:4a:6f:33:0b:6b:68:5f:a9:c7:53:
94:dc:68:93:9e:eb:9d:7a:b8:af:18:b4:97:6f:1f:
69:25:4a:6f:48:00:3c:91:d3:47:1e:42:f6:ff:2f:
0b:e7:de:24:72:4d:68:29:af:f0:4e:71:6f:bd:7c:
88:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:A4:4D:FC:BB:FA:52:0B:E1:D9:C1:FD:FF:AF:F4:2D:65:B0:13:87
X509v3 Authority Key Identifier:
keyid:B2:1E:3B:2A:C5:09:70:FB:12:6C:BD:F1:9D:7F:B3:15:DC:C1:C4:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sh47KsUJcPsSbL3xnX-zFdzBxF0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/52a1e5-86f1-49f7-a773-cb3e29b6ad32/1/sh47KsUJcPsSbL3xnX-zFdzBxF0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/52a1e5-86f1-49f7-a773-cb3e29b6ad32/1/sh47KsUJcPsSbL3xnX-zFdzBxF0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:40:02:64:58:0b:94:66:a9:45:ab:87:d6:02:d9:29:76:60:
cf:d3:3a:17:ae:19:29:c5:6f:7a:8f:00:a5:d2:47:cd:8f:fd:
c6:a7:ea:53:90:c4:99:f0:28:f9:26:8a:f6:3b:ab:c0:ba:84:
0e:f9:37:0d:d2:73:26:88:f0:86:63:14:89:e1:b8:88:41:b7:
44:0d:57:a9:0e:91:f9:63:e3:53:48:65:b2:c1:43:1c:08:77:
d7:97:b6:bf:24:30:53:54:d8:25:2e:2b:47:b6:9e:6b:d4:18:
45:69:d7:85:86:de:c6:43:18:d7:94:e9:46:8e:db:e1:be:9e:
a9:b6:f3:d9:a2:96:34:50:77:d4:a2:a6:ce:85:2e:b2:9d:02:
a3:3e:c3:10:08:8e:55:8f:c1:0d:a1:84:67:89:f8:6f:01:e0:
a8:c2:81:bd:8d:6a:0e:4f:8c:6b:6b:21:58:9d:29:f6:32:00:
23:90:f8:19:59:f6:48:03:98:c1:17:81:c5:1d:e4:60:10:9a:
c1:69:98:52:b4:e0:62:c6:ca:44:57:b7:e4:99:c4:79:00:25:
ce:f8:2e:24:a9:57:cb:aa:2f:62:85:b3:eb:85:16:17:7c:6d:
75:a5:a8:02:50:5b:c0:62:1e:36:b1:ae:8d:25:5d:3c:c8:99:
00:df:89:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:22:18 2025 by rpki-client