Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.mft
File: shna0BUe3wUqLxyX34hKWoeotfU.mft (raw, json)
Hash identifier: maztpTU9lvTg5EQjzIfJZ8H9/whmVk2uYt53EXxknR8=
Subject key identifier: 89:C7:0E:D1:07:0E:E1:27:2F:ED:1B:F8:CC:CA:85:E6:7A:8A:7B:D2
Authority key identifier: B2:19:DA:D0:15:1E:DF:05:2A:2F:1C:97:DF:88:4A:5A:87:A8:B5:F5
Certificate issuer: /CN=b219dad0151edf052a2f1c97df884a5a87a8b5f5
Certificate serial: 019A2553E36612561272E6AFF47E0711E805
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/shna0BUe3wUqLxyX34hKWoeotfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.mft
Manifest number: 089B
Signing time: Mon 27 Oct 2025 11:00:45 +0000
Manifest this update: Mon 27 Oct 2025 11:00:45 +0000
Manifest next update: Tue 28 Oct 2025 11:00:45 +0000
Files and hashes: 1: shna0BUe3wUqLxyX34hKWoeotfU.crl (hash: sa/l2V6JutdrMP67M4ZD+vxRUMR91ctcYqKN6T2v3rA=)
2: yqdi2I4mvyqmB4-2BzPkMkJ3hIY.roa (hash: oTSjwH5eKf8we68+dtERfn9uiSN2W5Nb5pDWgRrwsxA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.mft
rsync://rpki.ripe.net/repository/DEFAULT/shna0BUe3wUqLxyX34hKWoeotfU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 08:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:25:53:e3:66:12:56:12:72:e6:af:f4:7e:07:11:e8:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b219dad0151edf052a2f1c97df884a5a87a8b5f5
Validity
Not Before: Oct 27 11:00:45 2025 GMT
Not After : Oct 28 11:00:45 2025 GMT
Subject: CN=89c70ed1070ee1272fed1bf8ccca85e67a8a7bd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:b0:d9:da:51:5d:33:7d:5b:03:c2:37:78:60:
87:30:66:c2:1d:d6:86:a5:cb:89:89:9a:9b:6a:3c:
e9:1a:02:10:06:42:c4:51:3c:45:3e:4f:2b:0b:ce:
c2:85:40:7e:8a:c5:e7:62:c7:eb:ba:61:41:76:c1:
51:98:91:11:b5:ec:ad:4f:e3:1d:93:2e:15:32:97:
ae:5b:25:3a:d8:a7:23:09:ec:22:a9:f2:33:a2:61:
df:54:e7:8e:d9:26:92:b3:be:fd:fc:85:cd:cd:85:
5d:89:7a:c1:69:af:f8:86:1d:11:90:4c:de:b2:a3:
b7:77:18:17:61:fb:db:11:e8:56:1f:91:e0:b2:28:
a8:93:97:54:5c:0f:89:70:81:7a:ed:98:39:a2:01:
a8:a8:9f:de:de:19:9f:dd:31:07:21:4d:64:5e:3f:
f0:63:c5:5b:f4:a6:5b:0b:41:2e:7c:6e:d2:20:dc:
e1:ca:1c:3a:c0:a6:58:2e:8b:1b:e9:92:54:0c:f4:
d6:49:6c:12:e6:12:c9:9b:43:92:c4:21:db:28:e1:
ae:8e:53:ca:b5:99:34:60:ff:a9:2e:69:e2:91:04:
14:bd:52:75:ab:f2:9f:f5:3a:5e:8b:45:92:41:be:
20:4a:77:7f:c7:3b:be:29:70:43:48:5a:ed:0b:48:
d2:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:C7:0E:D1:07:0E:E1:27:2F:ED:1B:F8:CC:CA:85:E6:7A:8A:7B:D2
X509v3 Authority Key Identifier:
keyid:B2:19:DA:D0:15:1E:DF:05:2A:2F:1C:97:DF:88:4A:5A:87:A8:B5:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/shna0BUe3wUqLxyX34hKWoeotfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/77482d-4830-49f7-b6bd-7650d9732a52/1/shna0BUe3wUqLxyX34hKWoeotfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:46:ae:10:93:84:ac:f0:94:35:c8:72:4f:89:a3:d2:5a:4b:
f0:81:c4:00:f5:0b:ca:53:f0:11:35:3c:04:2a:53:29:9f:38:
55:b5:57:84:39:a3:61:76:4f:eb:ca:81:c3:48:9a:fb:4e:a0:
a9:61:59:08:00:fb:15:b4:ec:19:dd:9d:7a:35:bb:4f:d1:9f:
49:f3:ef:19:24:9b:c2:72:cd:9a:51:78:c2:2a:52:95:e6:d1:
16:85:c4:0c:9f:a3:04:f1:ae:00:1e:2a:d0:04:40:24:23:cb:
1f:81:b3:0d:b9:55:3a:fb:ac:8c:26:c7:db:c6:39:1b:eb:e2:
40:63:aa:e7:03:57:fd:b4:3a:16:4c:e2:96:24:32:fd:dc:71:
f5:63:08:99:49:7c:9a:30:76:31:b9:c9:88:15:a0:0a:b7:9e:
72:c0:12:06:b2:29:9a:7b:13:29:a0:7d:59:bf:fd:20:13:18:
2d:9e:d5:08:4b:c3:13:87:7f:05:34:af:f4:12:e7:7b:c3:79:
5e:45:a7:15:04:77:a5:42:42:51:63:c4:c4:c9:9e:63:25:9f:
a9:92:9e:9c:8f:ea:c8:0e:18:51:2d:6b:fb:f6:2a:c8:61:e8:
af:5b:59:15:30:f6:53:2e:cd:85:67:94:dd:c3:b8:3a:44:eb:
ea:31:d8:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 14:31:59 2025 by rpki-client