Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.mft
File: shna0BUe3wUqLxyX34hKWoeotfU.mft (raw, json)
Hash identifier: KyBWpyUOXC+MCKRqWV+bV3TKGKAzlXhU9qv8ygAQ1y4=
Subject key identifier: 7C:FA:86:21:6E:C6:4B:7A:E8:1B:41:BB:E2:BD:E4:7C:C3:76:71:BA
Authority key identifier: B2:19:DA:D0:15:1E:DF:05:2A:2F:1C:97:DF:88:4A:5A:87:A8:B5:F5
Certificate issuer: /CN=b219dad0151edf052a2f1c97df884a5a87a8b5f5
Certificate serial: 0198D73AE006E81E6AA2B4723CE3553020CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/shna0BUe3wUqLxyX34hKWoeotfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.mft
Manifest number: 07EE
Signing time: Sat 23 Aug 2025 14:00:16 +0000
Manifest this update: Sat 23 Aug 2025 14:00:16 +0000
Manifest next update: Sun 24 Aug 2025 14:00:16 +0000
Files and hashes: 1: shna0BUe3wUqLxyX34hKWoeotfU.crl (hash: Y15F+dT5d3kxAt4pfU/GRQANNAdrVGBOv1trwgKqva4=)
2: yqdi2I4mvyqmB4-2BzPkMkJ3hIY.roa (hash: oTSjwH5eKf8we68+dtERfn9uiSN2W5Nb5pDWgRrwsxA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.mft
rsync://rpki.ripe.net/repository/DEFAULT/shna0BUe3wUqLxyX34hKWoeotfU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:3a:e0:06:e8:1e:6a:a2:b4:72:3c:e3:55:30:20:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b219dad0151edf052a2f1c97df884a5a87a8b5f5
Validity
Not Before: Aug 23 14:00:16 2025 GMT
Not After : Aug 24 14:00:16 2025 GMT
Subject: CN=7cfa86216ec64b7ae81b41bbe2bde47cc37671ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:d8:48:8d:8a:7c:8d:08:b1:2f:6c:cd:b2:bb:
c5:81:35:fc:e6:08:b8:97:5f:e9:08:74:1b:88:5c:
73:58:36:a1:a5:17:4d:02:0d:57:7a:fb:77:14:33:
85:71:ef:93:4d:35:a3:e7:d5:b6:cf:70:07:2b:8d:
88:b4:23:b9:ac:fe:e9:e4:06:1b:8e:55:20:cc:a3:
b1:b8:e7:f7:3a:a7:f8:35:ef:66:51:b5:9f:75:93:
b4:02:a8:15:5a:4c:3f:e4:c5:b8:c0:0f:3a:78:e1:
67:67:a8:e0:12:a7:c5:13:b5:a7:67:24:d4:25:54:
30:9b:70:84:8b:0b:f6:70:7b:70:b5:42:9e:3c:4c:
0e:8d:ef:a7:90:c5:be:99:05:9b:05:ac:c1:bf:1d:
75:4b:1c:5b:0b:18:f5:47:c9:36:a5:58:ab:d6:a6:
53:e7:46:69:64:bf:15:b6:88:b9:cd:53:58:d0:7f:
41:64:0e:4b:dd:c6:ba:f7:a5:27:ff:86:7e:6e:dd:
60:00:49:33:ce:79:13:4e:47:88:e0:c8:e2:03:0a:
f6:3d:7d:9a:78:9c:7e:de:e4:60:c8:d9:96:91:4f:
28:26:2f:cb:1c:b0:0d:64:b3:5a:45:f3:b2:a0:b8:
a6:db:2e:e4:3b:b7:42:d0:0f:ac:9f:8e:32:50:4f:
a1:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:FA:86:21:6E:C6:4B:7A:E8:1B:41:BB:E2:BD:E4:7C:C3:76:71:BA
X509v3 Authority Key Identifier:
keyid:B2:19:DA:D0:15:1E:DF:05:2A:2F:1C:97:DF:88:4A:5A:87:A8:B5:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/shna0BUe3wUqLxyX34hKWoeotfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:6c:bd:63:fa:d5:f9:30:ce:2a:ad:a8:de:3a:d0:a5:36:5b:
ba:00:d4:db:18:a1:ec:32:c8:4d:db:d2:8b:8f:ac:00:91:f7:
61:69:32:ca:65:f1:07:67:8f:91:f1:a9:3c:b2:cb:e1:47:ab:
08:ed:c8:ca:db:0e:dc:55:b6:90:3e:01:2b:b4:51:1a:cd:ae:
fc:ea:c7:8b:38:4f:a5:ef:d0:da:b6:bd:bb:dc:11:a5:fd:02:
23:f2:06:13:5f:77:04:e7:45:8a:f7:5e:5b:5c:ea:b9:ac:2d:
1e:c7:c7:6f:a1:dd:4a:ce:ad:49:6a:6e:22:b4:73:a2:c7:ca:
c6:91:53:37:ea:c9:e3:2e:12:93:5d:2a:7f:88:1c:f5:3c:ad:
bc:e9:b3:86:3b:ef:85:f7:a9:53:66:e2:db:59:92:e7:18:f2:
33:e3:86:46:ba:e0:c5:e8:2b:00:fd:9d:37:62:8f:39:f6:cb:
5d:17:92:05:1b:95:79:95:52:2f:f9:bb:c6:d8:bf:2c:df:9d:
8b:7f:0a:5f:2c:0d:cb:5c:4e:86:a4:4e:1f:29:b5:15:92:e1:
3b:c4:59:7b:3d:55:86:dc:1e:94:ed:1a:ec:01:a6:dc:f4:b2:
eb:9e:ee:9c:29:99:37:30:d7:55:07:e7:34:7a:2e:99:33:ce:
ab:46:55:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 00:44:45 2025 by rpki-client