Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft
File: Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft (raw, json)
Hash identifier: awseDsRku6IlTlB2bGtxpk/YU/cM1UaGEXmf5G1yakA=
Subject key identifier: B8:91:B3:26:6C:3F:AE:26:D4:7A:52:7E:03:BD:77:A3:EF:CC:75:44
Authority key identifier: 4A:1D:20:BE:77:E1:22:32:32:3C:14:22:FB:51:98:FE:A0:08:60:34
Certificate issuer: /CN=4a1d20be77e12232323c1422fb5198fea0086034
Certificate serial: 019923D60F381B15CB1929D1CFD653F87D36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft
Manifest number: 1672
Signing time: Sun 07 Sep 2025 11:00:55 +0000
Manifest this update: Sun 07 Sep 2025 11:00:55 +0000
Manifest next update: Mon 08 Sep 2025 11:00:55 +0000
Files and hashes: 1: Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.crl (hash: V/jWvqFNNWnpsY8zfQ4rXQu4RvBQs3fHugf8AWDOwD8=)
2: mN2qB1BO4S5r9HWkXJU36eJQAJo.roa (hash: CEQM9W3lMs7LPoWAqhYjN1IkeHCfM/C5tJypbGgHYt4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:d6:0f:38:1b:15:cb:19:29:d1:cf:d6:53:f8:7d:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a1d20be77e12232323c1422fb5198fea0086034
Validity
Not Before: Sep 7 11:00:55 2025 GMT
Not After : Sep 8 11:00:55 2025 GMT
Subject: CN=b891b3266c3fae26d47a527e03bd77a3efcc7544
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:53:1e:a2:6c:4f:a9:7a:68:dc:32:49:b9:3e:
e4:db:65:d4:e9:12:be:ca:5f:72:fa:0c:f7:51:bb:
4e:ec:f3:c2:69:d3:e1:96:a1:0d:03:85:cf:43:f0:
b2:77:cc:4a:dc:48:c6:10:3b:b6:9f:9a:ce:06:37:
44:5c:2e:50:04:32:c8:9c:20:a8:53:57:84:7f:8a:
2b:6e:42:42:6d:c8:c0:98:98:5e:88:3b:80:31:4c:
ad:b8:7b:6b:df:16:e6:0a:40:07:6b:9e:fa:a9:9e:
57:74:ff:9f:ea:c5:8a:b1:69:f7:ff:e0:d8:29:49:
14:67:71:fe:27:c7:4e:15:cb:56:2e:2c:e6:ce:07:
1b:12:17:1c:ca:9b:e7:00:af:59:bf:56:bb:d1:d0:
4c:29:91:0c:ff:e6:e4:96:c7:f6:0f:48:cc:78:e4:
6f:74:05:92:d7:62:b3:aa:83:34:3d:8b:1a:aa:c8:
b5:d7:34:ef:02:74:2e:7e:43:e6:9c:44:2c:c6:6e:
4d:0b:b9:a1:6f:60:33:46:1f:6f:ea:94:e8:53:2f:
9e:cc:79:a0:d1:38:01:0e:25:5f:15:25:1e:c1:e6:
30:b3:82:5d:de:7c:27:94:e5:71:58:96:7c:e4:22:
2d:28:23:38:29:1c:92:08:6a:55:86:26:ec:e2:05:
7e:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:91:B3:26:6C:3F:AE:26:D4:7A:52:7E:03:BD:77:A3:EF:CC:75:44
X509v3 Authority Key Identifier:
keyid:4A:1D:20:BE:77:E1:22:32:32:3C:14:22:FB:51:98:FE:A0:08:60:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:97:c3:29:9d:60:f5:66:48:97:d8:b0:35:7d:e8:a0:51:14:
e4:c0:50:1b:ec:88:44:6d:19:50:df:90:24:e7:e9:e9:d6:51:
12:1e:c6:f6:99:02:28:8f:65:4d:6d:86:77:6d:61:60:b2:81:
7c:6d:74:bb:8c:e9:74:12:f4:f0:62:e0:57:97:b6:6b:bd:cd:
51:46:38:ed:27:a2:3f:eb:93:e6:42:65:6e:bf:05:d5:5e:28:
8a:86:2e:a1:8f:40:4c:a5:84:7e:ac:68:2e:72:dd:1e:0d:aa:
02:1a:57:28:9e:15:01:66:ac:fd:48:50:05:cc:7d:e4:ae:2d:
fe:65:cf:2c:f5:31:fa:90:ee:05:9f:2c:78:1e:12:a7:41:06:
95:93:32:4b:e4:84:cc:16:17:d6:9d:29:19:77:3d:fd:ab:a9:
31:5c:56:ee:70:10:7d:24:17:5d:6b:f3:30:24:24:cd:d1:4f:
f6:81:cd:e2:f1:47:f5:4d:34:95:e3:d2:f7:64:85:9b:4b:b0:
a5:91:4e:c9:5d:ce:ed:50:49:91:e7:0d:e9:36:81:bf:44:5e:
95:d3:9a:80:f0:c2:ec:c9:77:81:d4:e4:d2:59:1a:ec:f0:f4:
f4:01:fc:32:da:c8:64:0b:7f:44:4b:4c:18:51:6e:0e:52:09:
fd:cd:ef:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:52:40 2025 by rpki-client