Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft
File: Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft (raw, json)
Hash identifier: ouD6AI1tOXES+O+CpbzU+icBCLRd1cnOeKpQi3x4zFc=
Subject key identifier: 2B:50:C6:2F:13:57:AD:55:6F:83:67:BE:AF:EA:AF:78:BC:9F:3E:48
Authority key identifier: 4A:1D:20:BE:77:E1:22:32:32:3C:14:22:FB:51:98:FE:A0:08:60:34
Certificate issuer: /CN=4a1d20be77e12232323c1422fb5198fea0086034
Certificate serial: 0199FE0FC3DD581D6AB2DDA6B4028C32288D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 20:01:09 +0000
Manifest this update: Sun 19 Oct 2025 20:01:09 +0000
Manifest next update: Mon 20 Oct 2025 20:01:09 +0000
Files and hashes: 1: Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.crl (hash: MwX1d3uRoG6u3cqrmZBV0rh0jr3oQVSJpmiZHHUUxaw=)
2: mN2qB1BO4S5r9HWkXJU36eJQAJo.roa (hash: CEQM9W3lMs7LPoWAqhYjN1IkeHCfM/C5tJypbGgHYt4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:0f:c3:dd:58:1d:6a:b2:dd:a6:b4:02:8c:32:28:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a1d20be77e12232323c1422fb5198fea0086034
Validity
Not Before: Oct 19 20:01:09 2025 GMT
Not After : Oct 20 20:01:09 2025 GMT
Subject: CN=2b50c62f1357ad556f8367beafeaaf78bc9f3e48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:e9:ee:34:f1:f5:3f:58:e3:d6:5c:1c:cb:6f:
7c:0e:f5:e8:b8:09:65:8a:a8:96:e4:14:c5:e4:57:
e8:80:c6:75:82:d2:f3:d2:8f:33:c6:cb:42:b9:d8:
0f:b3:36:1f:ba:ee:16:87:f5:e0:58:a7:49:09:db:
00:86:69:35:27:90:19:07:9a:98:f4:df:75:4f:13:
e7:08:22:5f:fc:70:04:fb:ad:60:24:00:73:34:c3:
44:97:6c:8e:29:69:57:e0:69:eb:d6:c0:1b:fa:10:
a7:f3:df:a1:cd:76:31:4f:61:3a:c8:3a:e2:02:8f:
bf:27:95:43:6c:2b:a3:81:37:45:e9:07:98:3d:ff:
64:c0:85:de:72:22:f8:cd:91:8f:8e:16:5e:61:9c:
cd:dc:bd:0d:a9:08:68:98:82:8b:64:fc:06:df:7a:
91:08:7b:6d:3f:4e:2b:cf:f9:fa:7c:0d:c3:da:23:
62:8a:e8:fd:0a:f5:f3:f6:75:47:f5:28:78:1f:95:
97:68:ac:c2:6d:be:93:da:7c:28:ca:db:78:d2:d8:
86:df:bc:11:d8:02:fa:34:9f:05:c0:87:97:bb:91:
43:eb:4f:a9:f5:c1:db:e9:db:9d:f0:33:05:16:f5:
4e:ab:a9:9a:21:26:31:d9:44:3f:c3:2d:db:75:4f:
24:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:50:C6:2F:13:57:AD:55:6F:83:67:BE:AF:EA:AF:78:BC:9F:3E:48
X509v3 Authority Key Identifier:
keyid:4A:1D:20:BE:77:E1:22:32:32:3C:14:22:FB:51:98:FE:A0:08:60:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:b8:6c:bd:52:37:7f:4f:fc:73:12:32:c4:f7:8c:8e:87:4f:
27:4a:c8:7f:07:0a:9a:b5:84:cf:64:67:ec:bf:e1:07:d7:29:
84:e5:19:1b:fe:1b:fc:bf:87:4b:b5:5e:d0:5c:bc:ac:e1:e5:
77:1b:10:0b:0f:bb:34:c3:17:43:02:5d:c1:b5:8e:dd:69:17:
f6:bb:a2:b7:39:fa:8a:33:ca:e9:a9:c7:8e:b2:09:44:6b:a0:
63:6b:4f:19:04:6a:10:fc:68:fa:4e:80:6f:62:b3:a4:d3:1f:
1b:6f:2b:1f:00:a4:8a:34:5d:e4:d5:56:fe:36:8d:82:63:3e:
24:9a:0c:0c:4b:49:a8:85:82:f7:88:5b:69:4d:1e:c0:19:6b:
78:2c:45:ad:7f:0d:d9:40:70:e7:48:a8:ae:68:f3:22:cc:48:
f0:95:00:99:f0:85:ef:55:db:35:e3:d9:2d:8a:6a:73:1e:61:
0f:d2:1f:a2:17:9b:ae:5d:e9:56:a4:82:63:22:08:b5:ee:86:
ca:b6:9f:26:d5:b0:fc:b9:61:1d:6a:2e:c9:88:61:0f:4f:04:
91:fe:2f:f4:23:01:78:ed:20:ad:5c:cf:01:d6:71:ab:ab:fa:
ed:a5:c3:9a:90:69:12:25:ec:14:59:6b:e6:f1:aa:a4:59:de:
b6:9a:8f:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 22:36:23 2025 by rpki-client