Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/52a1e5-86f1-49f7-a773-cb3e29b6ad32/1/sh47KsUJcPsSbL3xnX-zFdzBxF0.mft
File: sh47KsUJcPsSbL3xnX-zFdzBxF0.mft (raw, json)
Hash identifier: 3Ctc/W/z7mlnSF0LRrPHsZ4GL5aMzRsQKDndWPRYWr8=
Subject key identifier: D4:B2:DB:14:85:75:EB:00:1F:63:5A:76:A0:CC:F6:85:9A:17:46:60
Authority key identifier: B2:1E:3B:2A:C5:09:70:FB:12:6C:BD:F1:9D:7F:B3:15:DC:C1:C4:5D
Certificate issuer: /CN=b21e3b2ac50970fb126cbdf19d7fb315dcc1c45d
Certificate serial: 0197BA7E8A4E28E9E3A8E7AD41E98D8D0929
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sh47KsUJcPsSbL3xnX-zFdzBxF0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/52a1e5-86f1-49f7-a773-cb3e29b6ad32/1/sh47KsUJcPsSbL3xnX-zFdzBxF0.mft
Manifest number: 44
Signing time: Sun 29 Jun 2025 07:02:24 +0000
Manifest this update: Sun 29 Jun 2025 07:02:24 +0000
Manifest next update: Mon 30 Jun 2025 07:02:24 +0000
Files and hashes: 1: 5wrNYPlSCkVTpZCOkOfJiVfHH1s.roa (hash: vV52rVETrxDxRFyAGhG26EED/lJXHQxzwHDXgoc8s8o=)
2: sh47KsUJcPsSbL3xnX-zFdzBxF0.crl (hash: ZHRxhK2jcEZIiz0wI5ywb/dJ8S2PqCMat8qvDm9nY5E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/52a1e5-86f1-49f7-a773-cb3e29b6ad32/1/sh47KsUJcPsSbL3xnX-zFdzBxF0.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/52a1e5-86f1-49f7-a773-cb3e29b6ad32/1/sh47KsUJcPsSbL3xnX-zFdzBxF0.mft
rsync://rpki.ripe.net/repository/DEFAULT/sh47KsUJcPsSbL3xnX-zFdzBxF0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 07:02:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ba:7e:8a:4e:28:e9:e3:a8:e7:ad:41:e9:8d:8d:09:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b21e3b2ac50970fb126cbdf19d7fb315dcc1c45d
Validity
Not Before: Jun 29 07:02:24 2025 GMT
Not After : Jun 30 07:02:24 2025 GMT
Subject: CN=d4b2db148575eb001f635a76a0ccf6859a174660
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:04:fb:e8:74:ae:f4:0e:9b:95:35:09:7e:5a:
09:61:99:44:e5:0f:ba:8c:30:cb:b5:c1:d4:62:a5:
b7:eb:cd:df:39:07:d0:40:9b:c8:dd:06:e5:74:99:
65:2a:c5:73:6b:f3:a8:e4:93:5c:d3:23:d9:63:c7:
5b:a0:84:37:3f:38:8e:c7:10:eb:02:67:93:24:80:
a6:52:b2:8b:46:a4:2d:0c:ea:e3:8a:e2:bc:9c:04:
37:bc:35:be:56:16:22:c8:d8:53:18:90:cd:f9:a0:
c5:cc:06:ff:90:aa:01:f0:89:aa:07:7c:70:bb:56:
5a:e7:4a:37:11:34:ec:cf:a6:23:5e:56:a4:6e:57:
e5:7b:17:75:9f:21:02:40:80:12:84:3f:ca:d6:84:
f2:01:63:13:8f:7e:90:bb:3a:33:55:b0:2b:6b:5e:
cf:1b:46:00:74:12:80:a6:42:7e:c2:f3:bd:2d:63:
88:a9:0a:52:d6:6c:c2:c2:c8:4f:bf:b5:a6:11:c7:
a2:e8:ef:06:dd:ef:ca:f5:cc:52:c0:a9:2f:e0:81:
2c:44:91:d4:4d:f1:1b:64:7e:91:61:92:2a:6b:8d:
4f:87:f4:1d:d0:dd:e7:f8:38:a9:b1:df:1e:61:c2:
09:d8:36:91:be:ee:0d:a8:e9:52:b6:b6:98:e0:df:
83:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:B2:DB:14:85:75:EB:00:1F:63:5A:76:A0:CC:F6:85:9A:17:46:60
X509v3 Authority Key Identifier:
keyid:B2:1E:3B:2A:C5:09:70:FB:12:6C:BD:F1:9D:7F:B3:15:DC:C1:C4:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sh47KsUJcPsSbL3xnX-zFdzBxF0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/52a1e5-86f1-49f7-a773-cb3e29b6ad32/1/sh47KsUJcPsSbL3xnX-zFdzBxF0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/52a1e5-86f1-49f7-a773-cb3e29b6ad32/1/sh47KsUJcPsSbL3xnX-zFdzBxF0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:cc:74:6a:66:5e:33:0d:b4:0c:f3:54:c6:77:83:84:0b:07:
43:1d:33:27:fe:6e:75:c2:6c:c0:8c:3e:b7:58:f4:04:5e:ac:
64:8a:22:93:cd:3e:15:1c:c3:f2:6f:92:04:9f:ea:ab:00:94:
f3:a2:0a:19:b2:5f:d8:10:69:8d:3f:c5:fb:78:f3:08:a7:9d:
b0:0c:ab:6c:c9:1c:52:2a:53:7c:da:ea:9c:64:17:dc:15:f1:
a6:19:6b:ed:48:c0:bd:e6:0e:f7:95:78:44:ac:a4:b6:60:95:
e2:e9:a3:52:a2:32:4c:5b:5a:aa:4f:b6:be:a4:f9:59:bd:1d:
b6:5f:ce:06:d8:8d:ad:cc:86:9d:e9:ff:ee:09:e5:4d:6c:2a:
b4:40:e3:f0:f2:be:8b:4e:d0:2c:1b:dd:0f:34:8d:8c:9b:59:
d5:13:75:0e:6c:90:8f:fd:3a:62:1d:aa:03:8d:96:0e:ff:a3:
da:1c:e1:7a:0c:85:83:a4:ee:9c:f0:fd:e2:3d:55:8b:f1:0a:
05:6c:69:fc:2e:e1:eb:04:fb:39:1c:39:28:02:de:5c:a9:9d:
c1:42:bd:d9:26:03:ca:06:65:0e:1e:e7:a9:39:53:c0:fb:b8:
37:8b:ea:3a:0b:14:dd:ee:d6:5a:21:f2:46:37:b8:e7:7e:e8:
29:9e:6d:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 16:55:52 2025 by rpki-client