Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/52a1e5-86f1-49f7-a773-cb3e29b6ad32/1/sh47KsUJcPsSbL3xnX-zFdzBxF0.mft
File: sh47KsUJcPsSbL3xnX-zFdzBxF0.mft (raw, json)
Hash identifier: 81fMNcC9AhKtDoOmyviDz0xRc1gFsVWLrwn0oirGu4U=
Subject key identifier: 51:A0:0D:94:A2:FD:8A:4B:66:FC:FA:38:96:C9:9C:10:01:8D:36:A9
Authority key identifier: B2:1E:3B:2A:C5:09:70:FB:12:6C:BD:F1:9D:7F:B3:15:DC:C1:C4:5D
Certificate issuer: /CN=b21e3b2ac50970fb126cbdf19d7fb315dcc1c45d
Certificate serial: 0199FDD8B14D16B1EF7B958B747CC485DDA2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sh47KsUJcPsSbL3xnX-zFdzBxF0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/52a1e5-86f1-49f7-a773-cb3e29b6ad32/1/sh47KsUJcPsSbL3xnX-zFdzBxF0.mft
Manifest number: 0170
Signing time: Sun 19 Oct 2025 19:01:00 +0000
Manifest this update: Sun 19 Oct 2025 19:01:00 +0000
Manifest next update: Mon 20 Oct 2025 19:01:00 +0000
Files and hashes: 1: 5wrNYPlSCkVTpZCOkOfJiVfHH1s.roa (hash: vV52rVETrxDxRFyAGhG26EED/lJXHQxzwHDXgoc8s8o=)
2: sh47KsUJcPsSbL3xnX-zFdzBxF0.crl (hash: 8+CBaWHtiIURh32Dfss+ry9iwazrszWsT7r7MVRN6Yo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/52a1e5-86f1-49f7-a773-cb3e29b6ad32/1/sh47KsUJcPsSbL3xnX-zFdzBxF0.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/52a1e5-86f1-49f7-a773-cb3e29b6ad32/1/sh47KsUJcPsSbL3xnX-zFdzBxF0.mft
rsync://rpki.ripe.net/repository/DEFAULT/sh47KsUJcPsSbL3xnX-zFdzBxF0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d8:b1:4d:16:b1:ef:7b:95:8b:74:7c:c4:85:dd:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b21e3b2ac50970fb126cbdf19d7fb315dcc1c45d
Validity
Not Before: Oct 19 19:01:00 2025 GMT
Not After : Oct 20 19:01:00 2025 GMT
Subject: CN=51a00d94a2fd8a4b66fcfa3896c99c10018d36a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d4:b7:45:4b:fc:c8:f7:ab:20:bb:5b:55:97:
bf:aa:ea:a3:23:44:50:14:92:d9:bd:83:ca:f7:73:
a5:d4:a7:d2:12:ea:00:7a:5a:66:33:b0:d8:05:71:
9d:6e:ac:9b:1e:27:87:db:22:91:72:aa:66:44:08:
b6:b9:43:33:76:76:1d:33:04:2a:6a:4f:7b:8a:91:
41:e2:27:5d:cb:b4:cd:f4:50:72:76:be:10:da:93:
d3:e8:60:18:47:51:48:03:76:79:4b:73:e9:a6:1b:
d0:1d:84:1d:70:ee:77:29:16:17:23:4e:ee:43:b9:
f1:6e:27:8e:7c:fb:86:fb:66:b0:4f:a1:71:ec:8d:
94:7b:62:e6:32:3e:b6:6d:4c:d6:e3:43:57:74:9b:
17:69:18:cd:cd:c9:28:7e:1f:f9:1d:b2:3e:72:d3:
cf:db:da:1b:bc:3b:8e:1a:94:a7:78:bd:18:8d:a5:
f5:01:81:60:36:c6:00:46:ee:ee:1e:8f:a1:79:5c:
e6:e2:87:1b:86:b8:c0:8e:5b:7d:e1:2d:17:75:0a:
87:f5:00:1e:40:d7:90:fb:e5:a7:57:61:53:4a:9e:
ce:09:8d:c1:ff:da:66:9a:f4:b7:3c:d2:ae:4d:93:
ae:5f:55:a2:6f:b3:24:a0:38:1d:03:e7:68:3c:bf:
82:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:A0:0D:94:A2:FD:8A:4B:66:FC:FA:38:96:C9:9C:10:01:8D:36:A9
X509v3 Authority Key Identifier:
keyid:B2:1E:3B:2A:C5:09:70:FB:12:6C:BD:F1:9D:7F:B3:15:DC:C1:C4:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sh47KsUJcPsSbL3xnX-zFdzBxF0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/52a1e5-86f1-49f7-a773-cb3e29b6ad32/1/sh47KsUJcPsSbL3xnX-zFdzBxF0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/52a1e5-86f1-49f7-a773-cb3e29b6ad32/1/sh47KsUJcPsSbL3xnX-zFdzBxF0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:be:07:e2:16:52:fb:bf:bf:32:3e:3a:2c:6b:46:22:56:59:
0e:c3:9c:7a:1d:89:d0:bd:94:2f:a7:0a:8a:ce:f2:bc:9c:13:
00:ee:ea:3e:21:62:a6:71:00:f8:58:7d:68:f4:5a:90:3c:94:
85:04:df:d1:84:4d:9d:76:4a:16:0f:76:f1:c0:80:f8:0d:1a:
eb:7e:dc:38:6e:3f:72:37:c0:a8:b1:d4:86:f5:c3:ce:7d:fe:
ae:f5:5f:3a:ff:97:2e:ef:a4:7d:21:ff:75:dc:37:33:4b:65:
3b:fa:0d:5b:fa:b3:b0:0f:10:ed:ab:52:28:55:bf:cf:e0:8e:
ce:57:ff:f6:79:75:a4:9d:c1:d4:79:f7:5a:33:f8:88:ff:73:
a0:4f:0f:50:d6:d7:86:9a:72:33:9b:e1:4f:02:40:5a:c0:d2:
f9:ac:29:65:b5:ee:26:5b:84:23:8e:6d:ab:5f:6b:52:3b:b3:
35:3f:64:d1:b9:87:d5:dd:fb:ef:ab:a8:b7:f0:08:68:bb:d2:
a3:53:35:18:ad:d0:a0:a0:bc:9d:0e:17:4c:c7:81:66:19:4a:
1e:ab:26:33:29:b2:8d:6f:09:6b:56:7f:e5:6a:12:18:fa:eb:
36:d5:ec:12:24:97:f5:b9:d4:e3:e2:13:2e:2b:2e:a4:e7:f0:
53:6e:82:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:48:45 2025 by rpki-client