Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft
File: Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft (raw, json)
Hash identifier: M3fuFc4nBZFvu+0UY8Bgo3vQ0r4TgZc+3z8/NO7J7hY=
Subject key identifier: CE:94:B5:55:62:6F:BC:C7:22:0E:BD:F6:1A:F3:83:B1:6F:3E:72:8C
Authority key identifier: 4A:1D:20:BE:77:E1:22:32:32:3C:14:22:FB:51:98:FE:A0:08:60:34
Certificate issuer: /CN=4a1d20be77e12232323c1422fb5198fea0086034
Certificate serial: 0198D698935B11A1F866483DB19CDF908ECE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 11:03:00 +0000
Manifest this update: Sat 23 Aug 2025 11:03:00 +0000
Manifest next update: Sun 24 Aug 2025 11:03:00 +0000
Files and hashes: 1: Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.crl (hash: 6kQ+tI8WI5gkRM+H6ZYCTi5Owj2Zi0oRhHi9TuDO79U=)
2: mN2qB1BO4S5r9HWkXJU36eJQAJo.roa (hash: CEQM9W3lMs7LPoWAqhYjN1IkeHCfM/C5tJypbGgHYt4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:98:93:5b:11:a1:f8:66:48:3d:b1:9c:df:90:8e:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a1d20be77e12232323c1422fb5198fea0086034
Validity
Not Before: Aug 23 11:03:00 2025 GMT
Not After : Aug 24 11:03:00 2025 GMT
Subject: CN=ce94b555626fbcc7220ebdf61af383b16f3e728c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:8e:61:22:be:ab:04:80:ba:e3:f2:4b:7a:da:
be:6c:f3:a2:15:95:a6:60:8a:48:78:18:a2:5e:37:
6b:8c:93:b2:de:9e:56:dc:62:40:01:5f:30:53:e9:
5c:60:6e:57:b8:9c:63:26:71:df:c7:f2:c2:a0:a3:
09:98:35:e0:9d:bf:68:5b:23:f5:76:c1:34:7c:f5:
63:aa:33:c0:8a:ee:42:38:b8:10:c3:4e:7c:cf:68:
65:ef:40:4b:83:94:5d:87:4b:68:54:00:ef:d1:c7:
6d:6d:b2:db:1f:e3:69:a3:8c:a5:15:27:cf:69:ac:
80:2e:1d:62:51:23:8f:c8:cd:a7:3e:18:ac:cf:b1:
ae:38:c2:dc:ae:6c:ae:0e:43:49:24:e7:73:f5:9e:
81:9e:23:85:97:b2:7b:59:cd:b5:73:f7:ed:2c:f3:
fa:7e:1c:af:e5:77:ce:a7:2d:59:32:b0:d4:34:ec:
60:5c:c9:b7:6f:fa:94:aa:4f:69:b1:19:c8:1f:94:
76:13:46:c0:b3:54:eb:eb:13:68:a7:2a:df:68:07:
14:96:6b:1e:6c:0d:6f:61:2b:24:e3:29:ce:0c:10:
b2:22:14:c9:b0:bf:50:82:a3:fd:8a:6a:56:b1:b8:
2b:2e:78:5a:5f:7a:be:2d:19:89:72:4c:50:b5:8a:
ae:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:94:B5:55:62:6F:BC:C7:22:0E:BD:F6:1A:F3:83:B1:6F:3E:72:8C
X509v3 Authority Key Identifier:
keyid:4A:1D:20:BE:77:E1:22:32:32:3C:14:22:FB:51:98:FE:A0:08:60:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:f7:95:35:00:69:09:dc:1d:cc:27:0c:00:3a:1e:ca:8b:13:
51:7d:48:b8:45:9c:19:ac:3a:c7:46:b4:13:29:fb:41:d4:37:
37:3b:9d:bc:6c:60:41:60:fd:78:5f:c4:e3:3a:1c:c8:b5:54:
b3:69:58:d0:7b:57:e7:c3:01:f5:9a:13:1e:cf:d3:62:67:ae:
f1:db:a6:f9:f5:32:fe:fe:10:f9:b8:fa:bf:0e:74:5f:9c:f6:
fb:ea:7f:ed:ac:63:30:49:3a:b6:dc:10:d0:8d:eb:b9:68:6c:
21:8a:37:cf:57:c3:41:2b:39:2e:ee:6a:e3:21:9b:23:f8:da:
cf:12:d3:a3:31:e1:29:5d:57:f1:a0:78:3d:8d:12:31:5c:bd:
f4:72:30:cf:b1:59:f5:c9:64:62:d1:b0:14:0c:f1:bb:e2:0f:
4a:01:fe:27:49:34:77:6b:78:8d:07:67:de:9c:07:f5:6f:57:
99:ab:b5:c1:ec:1d:00:95:a7:04:b9:75:ed:dc:8d:29:0b:3b:
8c:e3:cd:b1:ce:54:2d:f4:93:6f:54:95:02:1f:b0:8c:3d:ef:
24:a2:b4:b9:86:27:7c:a4:bf:40:97:91:f0:c6:5d:a6:c6:cf:
e3:85:5a:b9:7a:f5:72:b9:a0:32:06:ff:0c:35:26:93:b8:d0:
f8:39:ac:c4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWmJNbEaH4Zkg9sZzfkI7OMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRhMWQyMGJlNzdlMTIyMzIzMjNjMTQyMmZiNTE5OGZlYTAw
ODYwMzQwHhcNMjUwODIzMTEwMzAwWhcNMjUwODI0MTEwMzAwWjAzMTEwLwYDVQQD
EyhjZTk0YjU1NTYyNmZiY2M3MjIwZWJkZjYxYWYzODNiMTZmM2U3MjhjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo45hIr6rBIC64/JLetq+bPOiFZWm
YIpIeBiiXjdrjJOy3p5W3GJAAV8wU+lcYG5XuJxjJnHfx/LCoKMJmDXgnb9oWyP1
dsE0fPVjqjPAiu5COLgQw058z2hl70BLg5Rdh0toVADv0cdtbbLbH+Npo4ylFSfP
aayALh1iUSOPyM2nPhisz7GuOMLcrmyuDkNJJOdz9Z6BniOFl7J7Wc21c/ftLPP6
fhyv5XfOpy1ZMrDUNOxgXMm3b/qUqk9psRnIH5R2E0bAs1Tr6xNopyrfaAcUlmse
bA1vYSsk4ynODBCyIhTJsL9QgqP9impWsbgrLnhaX3q+LRmJckxQtYqulQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM6UtVVib7zHIg699hrzg7FvPnKMMB8GA1UdIwQY
MBaAFEodIL534SIyMjwUIvtRmP6gCGA0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2gwZ3ZuZmhJakl5UEJRaS0xR1lfcUFJWURRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi82M2M5ZGItOGFiOS00YzFlLWFmMjct
ZWQyODg1MWVjYjc2LzEvU2gwZ3ZuZmhJakl5UEJRaS0xR1lfcUFJWURRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYi82M2M5ZGItOGFiOS00YzFlLWFmMjctZWQyODg1MWVjYjc2
LzEvU2gwZ3ZuZmhJakl5UEJRaS0xR1lfcUFJWURRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOveVNQBp
CdwdzCcMADoeyosTUX1IuEWcGaw6x0a0Eyn7QdQ3NzudvGxgQWD9eF/E4zocyLVU
s2lY0HtX58MB9ZoTHs/TYmeu8dum+fUy/v4Q+bj6vw50X5z2++p/7axjMEk6ttwQ
0I3ruWhsIYo3z1fDQSs5Lu5q4yGbI/jazxLTozHhKV1X8aB4PY0SMVy99HIwz7FZ
9clkYtGwFAzxu+IPSgH+J0k0d2t4jQdn3pwH9W9Xmau1wewdAJWnBLl17dyNKQs7
jOPNsc5ULfSTb1SVAh+wjD3vJKK0uYYnfKS/QJeR8MZdpsbP44VauXr1crmgMgb/
DDUmk7jQ+DmsxA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 14:14:52 2025 by rpki-client