Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/bd59ae-5b7d-4c26-8e14-24b9e8211885/1/shUnDjtZdrRPOt7OVwR9HgeHunU.mft
File: shUnDjtZdrRPOt7OVwR9HgeHunU.mft (raw, json)
Hash identifier: c+CqvrzPk4wiX/RJg+Elu3v+EZAZQEGxcX0hYhfjV2M=
Subject key identifier: 96:37:32:21:8B:4B:4A:AD:E4:6B:D9:6D:5C:C1:57:D2:88:05:CF:1B
Authority key identifier: B2:15:27:0E:3B:59:76:B4:4F:3A:DE:CE:57:04:7D:1E:07:87:BA:75
Certificate issuer: /CN=b215270e3b5976b44f3adece57047d1e0787ba75
Certificate serial: 019849D36B0EB399F6FD45AC4716353AA911
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/shUnDjtZdrRPOt7OVwR9HgeHunU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/bd59ae-5b7d-4c26-8e14-24b9e8211885/1/shUnDjtZdrRPOt7OVwR9HgeHunU.mft
Manifest number: 1600
Signing time: Sun 27 Jul 2025 03:00:48 +0000
Manifest this update: Sun 27 Jul 2025 03:00:48 +0000
Manifest next update: Mon 28 Jul 2025 03:00:48 +0000
Files and hashes: 1: P2sE-3tUICXx7cfC0favLdtRCZ0.roa (hash: ayIaE8Pk074Tx7I6FVVUWCPvr0NKwOuaUa8Xe24IzDg=)
2: eGoVDFCAKRgMU7yFCgUyj1lHOYk.roa (hash: i9IHtchSCoTvu2jWZ+d1LDgXIzrS7PbiIZtxvaQvRRk=)
3: shUnDjtZdrRPOt7OVwR9HgeHunU.crl (hash: 4iQXvVQ4RzrCFRoZ/XMw2+ldyY1KAOHiyQBKxgkePKg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/bd59ae-5b7d-4c26-8e14-24b9e8211885/1/shUnDjtZdrRPOt7OVwR9HgeHunU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/bd59ae-5b7d-4c26-8e14-24b9e8211885/1/shUnDjtZdrRPOt7OVwR9HgeHunU.mft
rsync://rpki.ripe.net/repository/DEFAULT/shUnDjtZdrRPOt7OVwR9HgeHunU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 03:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:49:d3:6b:0e:b3:99:f6:fd:45:ac:47:16:35:3a:a9:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b215270e3b5976b44f3adece57047d1e0787ba75
Validity
Not Before: Jul 27 03:00:48 2025 GMT
Not After : Jul 28 03:00:48 2025 GMT
Subject: CN=963732218b4b4aade46bd96d5cc157d28805cf1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:e0:33:c0:84:25:2b:44:31:ec:73:ee:1a:72:
6a:78:a1:f6:db:e1:1b:1f:45:f1:27:f3:fa:8b:5a:
b9:a0:e4:6d:d7:7d:b7:91:80:bf:59:a1:4d:a6:fc:
4e:60:28:28:4b:37:16:34:03:32:bf:ae:08:f5:51:
c6:fa:86:35:14:00:f1:c7:57:e8:15:ff:98:9e:2c:
8f:d1:dc:b3:8a:b5:54:c0:b5:f1:27:5d:30:71:f3:
bf:d6:1d:9a:9a:5f:41:91:8f:a5:cc:ec:13:fe:68:
8e:12:e8:a5:b9:7b:05:cb:56:2d:30:a3:63:81:22:
c5:85:a7:38:8c:22:ea:b2:cc:e2:b1:04:5e:e2:14:
04:87:77:92:e5:b0:c6:0e:a0:2a:b0:72:08:37:b4:
29:85:8e:94:cc:90:17:1a:8f:14:66:50:b4:d7:ab:
d3:8b:b1:17:41:b1:55:0b:06:c4:72:9b:9b:8a:09:
a3:f1:f3:60:98:34:c1:e9:9b:9e:77:99:43:aa:07:
0c:1e:c9:9d:ae:e9:2b:d1:a8:7c:07:07:9e:06:45:
d3:89:d4:86:39:d7:ed:61:c2:12:f7:56:ca:28:f6:
cf:5c:34:fe:da:f8:85:4b:03:00:cd:59:c0:e6:d5:
99:7d:d8:a9:54:5a:3b:dc:96:37:01:16:fc:4f:52:
78:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:37:32:21:8B:4B:4A:AD:E4:6B:D9:6D:5C:C1:57:D2:88:05:CF:1B
X509v3 Authority Key Identifier:
keyid:B2:15:27:0E:3B:59:76:B4:4F:3A:DE:CE:57:04:7D:1E:07:87:BA:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/shUnDjtZdrRPOt7OVwR9HgeHunU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/bd59ae-5b7d-4c26-8e14-24b9e8211885/1/shUnDjtZdrRPOt7OVwR9HgeHunU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/bd59ae-5b7d-4c26-8e14-24b9e8211885/1/shUnDjtZdrRPOt7OVwR9HgeHunU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:64:4c:ef:0b:95:fc:f3:cb:f1:3f:b8:cd:0e:0c:fc:57:c7:
44:10:ac:da:f1:d6:ca:f1:ef:fd:d3:9e:3f:9c:f4:f9:1d:c0:
a0:a3:38:80:e8:81:1b:2d:fa:b3:20:0f:ad:71:ba:2b:64:e1:
09:19:1a:8f:d3:16:d1:a5:db:49:d1:bd:e4:6b:d1:2c:1b:0f:
2c:68:36:8d:98:84:7a:8c:de:7f:77:f2:40:87:2d:25:1d:2c:
69:cb:d3:8f:9e:f7:33:54:cf:c5:d4:a0:fb:3e:4b:21:0d:4a:
cb:d1:72:a8:47:ee:e4:dc:a3:72:42:f8:80:04:a3:a8:25:73:
21:b8:1b:8d:5f:bd:dc:28:c9:bc:1d:d4:dc:c7:f3:12:7c:62:
92:e3:45:1e:fc:99:f3:12:ef:be:ce:2a:c3:1d:b4:b8:f3:e4:
5f:46:2d:3d:e0:a4:2e:23:00:bb:26:5c:61:2f:ec:44:4e:92:
f4:a6:18:55:f6:ff:c4:06:e4:35:53:39:c8:c6:14:2c:f4:4d:
d1:24:de:f9:ce:bf:88:3f:f3:c9:e6:c7:ba:ae:a3:dc:09:75:
17:40:b7:ef:9e:7f:9d:16:e6:00:bd:0d:35:1b:21:9b:46:b2:
e0:53:7c:1c:ff:cd:0e:45:a5:d2:c1:74:e1:fc:d3:47:45:6d:
d5:a4:a8:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 13:15:42 2025 by rpki-client