Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.mft
File: shna0BUe3wUqLxyX34hKWoeotfU.mft (raw, json)
Hash identifier: YfKGuESC8aytkjbtmYdJ34Md3sfnPzidYTvl5Jrlo7E=
Subject key identifier: 42:AA:7D:EC:7A:00:16:67:50:FF:02:5E:67:DB:93:2C:74:B5:5B:85
Authority key identifier: B2:19:DA:D0:15:1E:DF:05:2A:2F:1C:97:DF:88:4A:5A:87:A8:B5:F5
Certificate issuer: /CN=b219dad0151edf052a2f1c97df884a5a87a8b5f5
Certificate serial: 0199228CD83B39AA639D2ABA16F6620E462D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/shna0BUe3wUqLxyX34hKWoeotfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.mft
Manifest number: 0815
Signing time: Sun 07 Sep 2025 05:01:19 +0000
Manifest this update: Sun 07 Sep 2025 05:01:19 +0000
Manifest next update: Mon 08 Sep 2025 05:01:19 +0000
Files and hashes: 1: shna0BUe3wUqLxyX34hKWoeotfU.crl (hash: lc5uSCwLupvgI+u7VVdxAALLbtLpJygDmgT8BJBlMz0=)
2: yqdi2I4mvyqmB4-2BzPkMkJ3hIY.roa (hash: oTSjwH5eKf8we68+dtERfn9uiSN2W5Nb5pDWgRrwsxA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.mft
rsync://rpki.ripe.net/repository/DEFAULT/shna0BUe3wUqLxyX34hKWoeotfU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:d8:3b:39:aa:63:9d:2a:ba:16:f6:62:0e:46:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b219dad0151edf052a2f1c97df884a5a87a8b5f5
Validity
Not Before: Sep 7 05:01:19 2025 GMT
Not After : Sep 8 05:01:19 2025 GMT
Subject: CN=42aa7dec7a00166750ff025e67db932c74b55b85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:96:d3:16:8b:49:7c:39:ed:34:22:a4:bb:bf:
4a:c8:86:6f:cc:47:2f:74:87:01:f6:89:32:6c:8e:
0b:f0:b6:b8:d3:63:ee:aa:8f:5f:9d:53:66:58:99:
64:c8:42:08:75:e2:de:9b:43:00:d7:b6:f1:e0:ab:
e9:0e:c2:c3:8d:9e:d3:06:25:bc:42:0e:73:78:59:
64:a7:bd:4e:73:41:a8:74:3b:bf:a0:b0:97:7b:51:
9c:f9:e0:7b:7e:ee:25:91:7b:43:54:e6:b4:1b:f0:
5e:92:52:da:a3:ed:37:84:22:2e:bc:64:ff:3c:f5:
8f:7f:5c:a0:60:db:bb:05:af:19:62:08:46:53:98:
44:dd:3d:94:c2:7c:bc:ed:14:28:72:bf:19:74:c1:
87:9a:b4:3a:01:e0:e8:a1:2f:d3:4d:04:e2:af:f0:
8f:9e:04:b1:0a:d2:65:4d:1c:d6:ea:5f:5f:d7:99:
68:aa:70:3f:f4:4c:46:af:9e:8a:b5:b7:25:2d:b9:
de:c8:e5:33:43:4d:0c:c3:83:15:66:92:37:d0:20:
44:b8:b0:e1:d5:99:ce:2e:72:ab:d2:c1:ae:71:df:
0d:06:fe:e7:18:c4:7d:51:43:fb:ec:11:2c:0c:02:
72:fa:ec:7a:1f:34:ea:2a:7c:61:67:4e:77:6a:12:
9f:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:AA:7D:EC:7A:00:16:67:50:FF:02:5E:67:DB:93:2C:74:B5:5B:85
X509v3 Authority Key Identifier:
keyid:B2:19:DA:D0:15:1E:DF:05:2A:2F:1C:97:DF:88:4A:5A:87:A8:B5:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/shna0BUe3wUqLxyX34hKWoeotfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:7e:34:c1:79:a4:2d:eb:b5:90:32:bf:d6:da:0f:63:97:17:
05:32:c6:8c:26:33:f8:ea:d7:a8:7a:48:ce:ff:0a:f9:50:c0:
39:70:4a:ef:00:de:10:a8:44:47:f5:5f:da:7e:d2:01:5a:7a:
f6:85:03:26:0d:5a:6b:7f:1f:46:47:c8:2a:d7:a4:ef:d7:b9:
7f:88:60:8d:b1:dc:1d:16:47:0f:4a:62:d2:f4:02:a2:49:3e:
85:3e:99:d4:5d:f6:6e:f2:82:de:ed:55:bb:4e:65:c4:f1:e0:
5a:24:86:ba:c7:a3:98:19:10:51:29:56:93:07:c8:10:2e:d3:
15:47:5a:7c:a4:29:c6:3f:ba:8d:20:68:75:3a:af:d8:bb:a8:
bb:c7:99:fd:f5:96:87:39:4b:de:d1:51:cc:9d:95:a8:e3:76:
8f:28:05:68:1b:cd:2a:a2:9d:db:77:c9:ae:0d:0d:85:b6:44:
0a:04:93:9e:7e:a3:65:e9:eb:f5:a7:08:65:c8:ca:b2:a5:4f:
24:39:d0:9e:33:ab:93:a3:f8:07:a6:51:01:ad:ac:60:19:ec:
10:3c:37:88:ad:81:50:57:5d:17:23:5e:91:c7:3e:cf:25:8d:
24:da:d5:e3:91:29:44:80:06:42:ec:d9:58:fb:5a:23:86:e2:
31:8d:df:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:09:26 2025 by rpki-client