Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft
File: Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft (raw, json)
Hash identifier: o/yq97C084UO4zj/CeGnhBg+98u+6DWjGgyY+xSU9tc=
Subject key identifier: 12:EB:24:5B:1E:C8:16:95:CB:47:DA:54:E3:68:4E:72:C5:45:4F:4C
Authority key identifier: 4A:1D:20:BE:77:E1:22:32:32:3C:14:22:FB:51:98:FE:A0:08:60:34
Certificate issuer: /CN=4a1d20be77e12232323c1422fb5198fea0086034
Certificate serial: 019A71EEAD67D5860225BBA17438A0C36958
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft
Manifest number: 171F
Signing time: Tue 11 Nov 2025 08:00:58 +0000
Manifest this update: Tue 11 Nov 2025 08:00:58 +0000
Manifest next update: Wed 12 Nov 2025 08:00:58 +0000
Files and hashes: 1: Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.crl (hash: Rxxc7dsLFsZRX6vMzrurbDL8/12gLlo3zGYGY6atIp4=)
2: mN2qB1BO4S5r9HWkXJU36eJQAJo.roa (hash: CEQM9W3lMs7LPoWAqhYjN1IkeHCfM/C5tJypbGgHYt4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 08:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:ee:ad:67:d5:86:02:25:bb:a1:74:38:a0:c3:69:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a1d20be77e12232323c1422fb5198fea0086034
Validity
Not Before: Nov 11 08:00:58 2025 GMT
Not After : Nov 12 08:00:58 2025 GMT
Subject: CN=12eb245b1ec81695cb47da54e3684e72c5454f4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:a4:05:e6:78:8c:b5:0a:30:46:a2:6e:38:b0:
f8:5a:4b:04:9c:8d:0d:76:91:88:48:e9:b5:92:1b:
4a:a9:5e:0e:7a:67:9f:ae:6b:54:28:45:92:38:18:
7d:28:83:3a:1c:d8:7f:bf:a8:92:f6:37:26:55:89:
98:f9:fa:84:f4:83:1b:7d:e8:4c:41:b7:5b:84:72:
53:99:06:ac:3f:10:9d:5a:57:c4:8a:c8:4d:c9:9a:
e1:e6:a2:c3:3e:7f:51:e7:7f:78:ac:c8:59:ba:ac:
b1:b5:59:ae:15:8f:82:a7:d6:a1:64:23:0e:0c:85:
ab:20:ca:64:4a:32:78:5c:27:02:17:2f:fc:fe:31:
e7:e2:85:47:5d:1b:3e:03:26:7d:5b:6e:13:5f:10:
55:6d:4f:07:20:71:27:1e:68:22:80:98:56:38:7c:
78:33:2c:13:a8:e3:d7:d1:8b:18:68:01:bd:ea:a1:
5c:02:45:73:c0:1b:a8:31:84:14:8d:8f:ad:56:6f:
d9:f3:e9:30:b5:89:4a:59:39:bb:e2:20:d4:59:41:
3e:88:a8:15:b6:68:9f:0d:39:e7:cd:bb:93:8b:97:
8a:35:de:0d:e0:03:7e:65:0b:c1:b0:f4:89:da:a9:
a0:60:71:43:6c:1a:ae:34:ca:fe:03:08:3b:de:59:
29:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:EB:24:5B:1E:C8:16:95:CB:47:DA:54:E3:68:4E:72:C5:45:4F:4C
X509v3 Authority Key Identifier:
keyid:4A:1D:20:BE:77:E1:22:32:32:3C:14:22:FB:51:98:FE:A0:08:60:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:0b:a8:39:cd:99:63:c1:ae:a6:00:c5:7e:de:09:1f:14:fe:
f2:95:e2:c3:7d:50:76:4c:7d:99:44:1e:6b:30:8c:d0:c6:82:
4b:cf:dc:16:15:78:61:8b:22:4b:5a:62:89:1b:6d:9b:32:b0:
b3:49:cf:30:85:53:c7:2b:e6:1a:0e:2b:6e:c9:9b:fa:74:23:
5b:6b:75:bf:c3:a5:6c:77:c2:1f:84:24:85:7c:bb:40:13:c2:
6b:0e:c2:42:52:58:11:6d:6c:8a:45:3a:8d:9a:2c:16:a1:c7:
c2:d8:ff:a2:a0:ce:c7:97:b5:2b:8c:8b:4a:61:45:0f:e2:76:
37:b0:a9:4b:45:4d:df:02:32:3a:e5:b9:7b:bf:ba:20:44:57:
39:55:bc:7d:82:a0:e8:c1:a4:30:68:03:0a:2b:d0:af:5e:34:
89:ff:5e:81:37:31:f9:72:3b:3c:bd:8a:07:9b:8b:c6:08:9a:
33:fd:11:f8:3a:57:14:f7:db:3a:36:24:c3:46:ff:76:ea:be:
ce:20:91:78:28:d3:6d:15:5a:29:0b:49:45:e7:ed:55:e5:cd:
63:dd:d6:c5:5f:f4:95:a9:ec:c4:a5:40:65:70:db:c5:9a:6f:
a5:73:f0:14:b1:db:06:3d:a0:b7:5c:fb:44:2c:e4:d2:fa:c5:
9c:64:7e:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:17:32 2025 by rpki-client