Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/bd59ae-5b7d-4c26-8e14-24b9e8211885/1/shUnDjtZdrRPOt7OVwR9HgeHunU.mft
File: shUnDjtZdrRPOt7OVwR9HgeHunU.mft (raw, json)
Hash identifier: l94SGkw6euaLn21QktW29etQzJIHoD9Ae8xnj9BiSD8=
Subject key identifier: E0:8A:2E:BC:46:55:84:7A:D0:89:22:4D:42:CC:28:19:24:2F:1F:F3
Authority key identifier: B2:15:27:0E:3B:59:76:B4:4F:3A:DE:CE:57:04:7D:1E:07:87:BA:75
Certificate issuer: /CN=b215270e3b5976b44f3adece57047d1e0787ba75
Certificate serial: 01974AE90676729709287CBC8BD4B64532AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/shUnDjtZdrRPOt7OVwR9HgeHunU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/bd59ae-5b7d-4c26-8e14-24b9e8211885/1/shUnDjtZdrRPOt7OVwR9HgeHunU.mft
Manifest number: 157C
Signing time: Sat 07 Jun 2025 15:01:14 +0000
Manifest this update: Sat 07 Jun 2025 15:01:14 +0000
Manifest next update: Sun 08 Jun 2025 15:01:14 +0000
Files and hashes: 1: P2sE-3tUICXx7cfC0favLdtRCZ0.roa (hash: ayIaE8Pk074Tx7I6FVVUWCPvr0NKwOuaUa8Xe24IzDg=)
2: eGoVDFCAKRgMU7yFCgUyj1lHOYk.roa (hash: i9IHtchSCoTvu2jWZ+d1LDgXIzrS7PbiIZtxvaQvRRk=)
3: shUnDjtZdrRPOt7OVwR9HgeHunU.crl (hash: mRJrdZizFVnCwb1stuR3dNTtgvyciBzcApZd678BNZA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/bd59ae-5b7d-4c26-8e14-24b9e8211885/1/shUnDjtZdrRPOt7OVwR9HgeHunU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/bd59ae-5b7d-4c26-8e14-24b9e8211885/1/shUnDjtZdrRPOt7OVwR9HgeHunU.mft
rsync://rpki.ripe.net/repository/DEFAULT/shUnDjtZdrRPOt7OVwR9HgeHunU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:e9:06:76:72:97:09:28:7c:bc:8b:d4:b6:45:32:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b215270e3b5976b44f3adece57047d1e0787ba75
Validity
Not Before: Jun 7 15:01:14 2025 GMT
Not After : Jun 8 15:01:14 2025 GMT
Subject: CN=e08a2ebc4655847ad089224d42cc2819242f1ff3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:24:fb:6c:f3:b8:38:c0:1b:e5:f0:0a:68:73:
1b:3f:b0:17:0c:67:a2:95:ca:5a:9f:c5:58:34:01:
4a:4e:46:31:f4:99:19:c7:6b:53:77:a7:92:c7:f8:
0e:9d:d1:b5:45:f8:85:ee:91:ff:ff:de:e1:0a:17:
ce:ea:1b:ca:a6:f4:a1:ba:af:7e:03:6f:dd:0b:19:
36:46:ca:bf:00:6f:01:cc:71:a7:56:39:96:1d:77:
68:5e:ac:d9:3b:35:7e:7a:07:88:37:c9:22:18:7d:
20:a1:13:96:8e:4f:a9:13:61:4d:b0:8f:27:57:0d:
dc:3d:0a:41:2e:78:6c:88:40:d9:e8:f7:01:bd:f5:
9a:a5:97:61:05:0c:c1:39:d0:55:a0:e9:b5:7e:f1:
53:b4:c1:28:9d:99:bc:8e:fa:b5:e9:0b:ff:4b:1c:
af:70:01:b7:1f:05:ac:fc:8c:43:3b:40:93:28:30:
9f:e4:26:0d:53:e6:f4:23:c2:ff:c1:25:3b:fb:3f:
d7:cf:24:07:7c:77:00:d7:54:99:62:db:e4:b1:50:
c3:dd:2f:3f:8e:a4:f3:65:3e:38:9f:c9:2d:e3:13:
73:89:6f:53:1f:40:32:86:bf:fd:ea:59:98:94:1e:
24:6a:10:d5:bf:c0:8c:fe:e1:ff:a4:90:bf:2e:d1:
a9:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:8A:2E:BC:46:55:84:7A:D0:89:22:4D:42:CC:28:19:24:2F:1F:F3
X509v3 Authority Key Identifier:
keyid:B2:15:27:0E:3B:59:76:B4:4F:3A:DE:CE:57:04:7D:1E:07:87:BA:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/shUnDjtZdrRPOt7OVwR9HgeHunU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/bd59ae-5b7d-4c26-8e14-24b9e8211885/1/shUnDjtZdrRPOt7OVwR9HgeHunU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/bd59ae-5b7d-4c26-8e14-24b9e8211885/1/shUnDjtZdrRPOt7OVwR9HgeHunU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:5a:45:a4:09:08:2a:20:31:6e:f3:9a:13:05:1d:4b:42:ac:
fb:e4:d2:25:a9:9e:d9:50:4f:35:4b:ef:2d:4c:e1:e9:89:7c:
2e:1a:12:81:3e:39:40:74:95:da:b8:c0:34:ca:a2:34:64:0f:
33:1c:81:2c:74:7f:77:90:63:18:3b:b7:ad:83:54:cf:fc:a9:
15:5f:0e:b1:5e:02:ee:1f:c6:34:51:3e:d8:d9:22:45:71:f6:
d9:b0:4c:f3:35:e8:be:0f:27:a6:02:a1:72:f1:d7:6d:a5:2e:
1a:b9:53:aa:80:69:a0:75:49:a3:31:25:81:72:08:37:76:dd:
9d:e9:a4:d1:66:7d:09:5f:55:51:a4:7d:3c:90:0a:14:a3:d5:
af:09:73:33:cd:d2:3e:34:9c:86:5e:1a:a8:4a:4d:98:f0:1d:
af:26:ef:dd:b6:19:70:3e:0f:b9:08:38:37:98:e1:24:ba:5e:
4f:c0:70:0d:e1:3b:66:e6:82:a0:55:33:e3:59:ef:3b:1c:c1:
a4:c3:b4:26:94:0f:96:98:e3:57:5d:8d:20:c6:b2:a5:24:ec:
d7:d7:0b:36:42:83:29:a9:42:51:6a:b7:20:b4:6f:ca:f9:ef:
e7:8f:90:6b:4a:5e:d3:20:71:c5:2c:1b:0f:f8:45:76:35:52:
49:6a:27:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 17:23:35 2025 by rpki-client