Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.mft
File: shna0BUe3wUqLxyX34hKWoeotfU.mft (raw, json)
Hash identifier: XJLqR3sPZU8VOmpH3SYqjubn2TkfBKbJtPdbhjVOJDI=
Subject key identifier: 1D:CE:19:06:DA:AC:F1:4E:73:B3:00:2A:FF:6C:DB:0C:89:0F:B7:90
Authority key identifier: B2:19:DA:D0:15:1E:DF:05:2A:2F:1C:97:DF:88:4A:5A:87:A8:B5:F5
Certificate issuer: /CN=b219dad0151edf052a2f1c97df884a5a87a8b5f5
Certificate serial: 0199FCC6995EDC609A58094C3B8C006E2677
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/shna0BUe3wUqLxyX34hKWoeotfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.mft
Manifest number: 0886
Signing time: Sun 19 Oct 2025 14:01:37 +0000
Manifest this update: Sun 19 Oct 2025 14:01:37 +0000
Manifest next update: Mon 20 Oct 2025 14:01:37 +0000
Files and hashes: 1: shna0BUe3wUqLxyX34hKWoeotfU.crl (hash: 1gYrCxIZSkgQ5bljIYMZqhiVWjAYMid0e2oYA/Ganq8=)
2: yqdi2I4mvyqmB4-2BzPkMkJ3hIY.roa (hash: oTSjwH5eKf8we68+dtERfn9uiSN2W5Nb5pDWgRrwsxA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.mft
rsync://rpki.ripe.net/repository/DEFAULT/shna0BUe3wUqLxyX34hKWoeotfU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:99:5e:dc:60:9a:58:09:4c:3b:8c:00:6e:26:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b219dad0151edf052a2f1c97df884a5a87a8b5f5
Validity
Not Before: Oct 19 14:01:37 2025 GMT
Not After : Oct 20 14:01:37 2025 GMT
Subject: CN=1dce1906daacf14e73b3002aff6cdb0c890fb790
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:94:1b:95:fa:ec:3f:3e:8f:f2:a2:11:21:b1:
90:0f:b7:88:03:a1:db:9e:5c:e6:37:c5:3a:db:83:
13:00:ed:c2:a8:42:a9:a3:77:13:19:6e:3a:b9:20:
36:53:82:4f:6d:64:ac:43:29:37:39:8e:d7:bb:9a:
c0:a7:c3:c9:8c:e2:5b:2d:a0:ae:72:49:e2:0f:2e:
f0:f3:a0:c2:6f:69:17:92:f6:01:8c:77:29:ab:a7:
ad:e9:04:96:ec:64:5c:cb:a3:eb:b3:83:c1:28:7e:
00:46:0d:fa:ce:7a:5c:19:3a:d5:b7:cb:bf:7f:c3:
da:80:ef:79:25:c4:22:79:93:10:0c:45:03:e0:75:
40:40:61:c8:83:b4:fd:2b:4b:17:9b:5e:fa:c1:3e:
c3:8f:64:6c:6c:d7:a6:6b:74:34:ab:56:e6:c2:f2:
df:09:8b:35:20:e6:94:78:d1:a5:ed:19:24:7e:e9:
85:a5:96:00:8e:02:49:66:d3:52:44:ae:8d:b8:bd:
27:e5:36:f1:76:12:c1:18:6e:f3:91:af:4d:22:da:
fb:44:03:8b:f5:48:26:1a:fc:09:77:da:b3:86:5e:
8b:19:94:85:89:23:eb:a4:d7:d5:1d:2f:9d:b4:3d:
71:12:f4:dd:22:d9:7b:2f:f7:8c:05:40:e4:0e:44:
23:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:CE:19:06:DA:AC:F1:4E:73:B3:00:2A:FF:6C:DB:0C:89:0F:B7:90
X509v3 Authority Key Identifier:
keyid:B2:19:DA:D0:15:1E:DF:05:2A:2F:1C:97:DF:88:4A:5A:87:A8:B5:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/shna0BUe3wUqLxyX34hKWoeotfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:e5:ef:72:ba:09:72:79:3c:11:e6:db:e0:a2:c2:1e:a5:1d:
cc:c4:c2:b4:85:9c:79:81:e7:69:4f:54:44:21:a6:1a:e3:aa:
cb:49:45:c6:3c:d7:be:d7:b7:32:10:78:36:5c:7a:46:09:60:
c6:62:59:f2:2a:68:2a:c6:08:86:64:7b:cb:b5:8e:42:22:f7:
7f:5f:5b:fe:0a:67:33:03:92:bf:a0:bc:be:84:82:6b:f4:af:
77:74:ad:98:1c:85:67:93:6e:c2:da:83:85:53:06:97:4d:60:
61:c4:20:d9:fc:02:74:56:ac:7a:91:ee:79:2c:fa:31:25:06:
77:82:cc:2d:dd:77:0e:27:fe:58:53:96:a8:d8:b8:8c:dd:1f:
2b:36:7c:d6:f8:55:68:ca:47:cc:eb:e4:9d:1b:a8:4d:95:64:
be:2e:b1:42:96:83:c6:94:3f:5c:4c:0e:fe:d8:00:ad:8f:38:
31:da:d1:2f:12:d1:66:fa:e9:57:81:f4:97:8c:01:95:a5:b6:
0f:d9:a0:ee:35:ff:bc:06:e1:51:0e:11:77:65:b3:8c:d3:ed:
1b:d8:98:64:12:6a:5b:e1:d9:b6:56:90:6c:fb:78:25:6b:93:
ab:04:db:03:65:5c:f2:37:04:c8:32:d1:cc:60:2a:7c:35:84:
0f:05:b3:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:43:57 2025 by rpki-client