Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.mft
File: shna0BUe3wUqLxyX34hKWoeotfU.mft (raw, json)
Hash identifier: SIuMQ0qfgyQHbG4spzdgU1uvwtMP99X4N2knF4ctJmk=
Subject key identifier: F5:4D:70:EC:2A:F7:0D:1D:37:89:2D:B5:D5:01:2F:49:CB:20:6D:60
Authority key identifier: B2:19:DA:D0:15:1E:DF:05:2A:2F:1C:97:DF:88:4A:5A:87:A8:B5:F5
Certificate issuer: /CN=b219dad0151edf052a2f1c97df884a5a87a8b5f5
Certificate serial: 0197D47463A1A63D5838EC2066EBECEFFB5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/shna0BUe3wUqLxyX34hKWoeotfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.mft
Manifest number: 0768
Signing time: Fri 04 Jul 2025 08:01:26 +0000
Manifest this update: Fri 04 Jul 2025 08:01:26 +0000
Manifest next update: Sat 05 Jul 2025 08:01:26 +0000
Files and hashes: 1: shna0BUe3wUqLxyX34hKWoeotfU.crl (hash: HTb2f9pXnDwxa4B3k2vp14vzQUx1FZl5Dz4vxHhGKlo=)
2: yqdi2I4mvyqmB4-2BzPkMkJ3hIY.roa (hash: oTSjwH5eKf8we68+dtERfn9uiSN2W5Nb5pDWgRrwsxA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.mft
rsync://rpki.ripe.net/repository/DEFAULT/shna0BUe3wUqLxyX34hKWoeotfU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Jul 2025 08:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:d4:74:63:a1:a6:3d:58:38:ec:20:66:eb:ec:ef:fb:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b219dad0151edf052a2f1c97df884a5a87a8b5f5
Validity
Not Before: Jul 4 08:01:26 2025 GMT
Not After : Jul 5 08:01:26 2025 GMT
Subject: CN=f54d70ec2af70d1d37892db5d5012f49cb206d60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:97:42:0a:e8:8d:76:59:dd:34:b0:be:3f:75:
f6:77:b8:8c:af:e0:54:af:62:4d:ba:13:e7:84:ac:
c5:3e:ca:9b:92:84:d5:bb:f1:aa:30:bb:2d:9e:e1:
13:30:40:96:bf:1d:cb:7c:23:6c:93:4a:dd:17:3d:
de:9f:03:2a:27:41:f6:e8:9e:4f:c4:c8:0f:64:40:
2e:5c:f0:97:cb:b9:21:00:f5:71:38:c0:ae:29:4c:
c4:ed:47:24:1d:10:1e:18:ea:2a:e5:4a:5f:58:28:
60:a1:87:88:ed:4c:c3:f2:38:8c:d5:cb:20:30:71:
be:f4:e6:c6:cc:b0:6a:49:26:7c:33:91:3c:fe:51:
d1:4c:94:6a:49:66:12:92:c6:6f:11:55:c5:cf:b2:
6f:44:62:e8:4d:5b:fa:a7:f2:3f:f1:63:ea:5c:81:
90:0d:91:eb:5d:eb:fb:40:f3:71:a6:53:fd:0d:7f:
cf:64:39:99:c9:b7:23:7d:da:41:13:63:d8:f1:fc:
dd:2d:3b:8f:a7:56:63:a3:f6:41:e2:d2:31:81:06:
1a:25:d6:44:7a:b8:c3:d5:bd:38:06:4b:0e:0c:0b:
ff:61:c0:00:31:33:2c:ac:3e:59:48:f7:c8:6e:00:
05:d3:2d:8c:6a:17:78:ba:b9:4f:ae:00:29:7a:68:
f7:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:4D:70:EC:2A:F7:0D:1D:37:89:2D:B5:D5:01:2F:49:CB:20:6D:60
X509v3 Authority Key Identifier:
keyid:B2:19:DA:D0:15:1E:DF:05:2A:2F:1C:97:DF:88:4A:5A:87:A8:B5:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/shna0BUe3wUqLxyX34hKWoeotfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:2e:1a:22:d4:8c:ef:07:98:e3:cc:1f:f8:78:f0:1a:68:fe:
90:38:db:a2:ed:95:cb:22:6e:e9:5b:23:ac:19:0b:52:3a:82:
eb:ea:a8:58:62:9f:b1:86:12:52:f0:0d:d8:68:5a:a0:a7:09:
da:47:5f:0d:31:e7:28:76:fd:bd:36:75:a1:c7:9d:a1:9c:e6:
e7:9f:73:90:52:bb:10:6d:34:eb:17:42:87:cc:34:c5:af:1a:
8b:49:1e:17:a0:cb:cf:e9:4a:63:32:89:cc:ef:0d:14:c6:79:
47:7c:17:69:2d:4f:b8:26:c7:5c:74:70:df:2d:14:81:8f:e5:
62:d3:17:c2:56:69:bf:5a:43:7f:22:1b:5f:11:4b:13:0e:6a:
3b:bb:21:15:a9:dd:a1:7b:5f:60:6d:7d:c8:41:a9:d2:d9:2e:
1a:e8:b1:12:0c:f1:ca:d4:10:cb:67:f8:10:81:71:65:cd:f8:
d5:46:b8:b5:c9:ba:e8:91:dd:ea:33:c3:84:79:85:34:5c:0a:
50:48:6a:ac:24:f4:94:d0:f4:f3:8a:c8:75:76:2c:11:a4:7a:
ed:94:97:ed:15:b3:37:c2:91:13:53:6b:6f:df:b4:8a:59:76:
da:4c:3b:6b:88:67:b3:b1:e0:a1:c7:4e:be:e3:32:25:e7:2b:
28:49:7b:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 15:08:39 2025 by rpki-client