Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/088521-2398-457b-b1e3-dd3360393391/1/JKtnE2v5kKqL6IV6aNLDmezWKZo.mft
File: JKtnE2v5kKqL6IV6aNLDmezWKZo.mft (raw, json)
Hash identifier: +DDnAsfuFYyYevb9XEWppNNwdRYHaRp6y8k7Kq6ebrA=
Subject key identifier: 86:D9:16:40:26:60:9D:D8:AB:03:16:21:23:EF:AC:D6:60:83:2F:D6
Authority key identifier: 24:AB:67:13:6B:F9:90:AA:8B:E8:85:7A:68:D2:C3:99:EC:D6:29:9A
Certificate issuer: /CN=24ab67136bf990aa8be8857a68d2c399ecd6299a
Certificate serial: 01984BC1D404DAF268380493374A7C28A9EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JKtnE2v5kKqL6IV6aNLDmezWKZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/088521-2398-457b-b1e3-dd3360393391/1/JKtnE2v5kKqL6IV6aNLDmezWKZo.mft
Manifest number: 1591
Signing time: Sun 27 Jul 2025 12:00:50 +0000
Manifest this update: Sun 27 Jul 2025 12:00:50 +0000
Manifest next update: Mon 28 Jul 2025 12:00:50 +0000
Files and hashes: 1: JKtnE2v5kKqL6IV6aNLDmezWKZo.crl (hash: umKG3QPtEpHAWlOF7q8sTqnDbAwfjNaEXyHFP29DKmE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/088521-2398-457b-b1e3-dd3360393391/1/JKtnE2v5kKqL6IV6aNLDmezWKZo.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/088521-2398-457b-b1e3-dd3360393391/1/JKtnE2v5kKqL6IV6aNLDmezWKZo.mft
rsync://rpki.ripe.net/repository/DEFAULT/JKtnE2v5kKqL6IV6aNLDmezWKZo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 05:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4b:c1:d4:04:da:f2:68:38:04:93:37:4a:7c:28:a9:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24ab67136bf990aa8be8857a68d2c399ecd6299a
Validity
Not Before: Jul 27 12:00:50 2025 GMT
Not After : Jul 28 12:00:50 2025 GMT
Subject: CN=86d9164026609dd8ab03162123efacd660832fd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:68:a1:08:85:8b:09:e1:7d:38:ab:0b:14:2e:
d9:a1:82:63:72:20:ff:2d:11:67:ba:c1:47:aa:33:
6e:67:b3:6c:fd:55:90:9f:de:91:3a:61:09:69:75:
e6:41:6d:43:9b:45:70:39:9a:95:a1:08:a3:d8:6a:
9c:5a:f6:ed:b3:3a:33:4a:6b:00:ee:73:26:9a:0f:
fc:e9:d7:73:4a:4b:7e:ed:0e:7c:86:73:c3:c5:9e:
d9:20:76:63:2a:57:e9:46:4a:da:6a:3e:79:c1:65:
d2:50:30:6e:a1:ac:7d:8e:fc:ff:48:16:ae:6d:d6:
47:35:cc:6b:79:2f:70:01:11:28:b0:aa:d6:ca:e8:
4b:4d:be:94:dc:58:6b:5c:d1:b5:e0:43:44:b2:b7:
2f:96:68:60:5b:17:50:fe:7d:5c:0c:61:37:11:51:
09:a9:71:03:31:f7:c2:c0:18:aa:3a:af:94:67:ee:
4f:e2:ec:74:64:5a:7b:e2:44:f3:34:58:92:ff:f4:
7d:aa:8d:65:c6:a2:f5:44:cb:36:a2:b0:ea:4a:72:
65:23:a5:44:25:84:7e:55:56:fa:3a:32:e9:a1:15:
0b:e9:5a:d6:23:cb:ae:96:ce:ff:37:2d:93:06:7f:
84:54:4e:14:ad:48:44:4e:30:8a:06:11:da:af:d4:
33:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:D9:16:40:26:60:9D:D8:AB:03:16:21:23:EF:AC:D6:60:83:2F:D6
X509v3 Authority Key Identifier:
keyid:24:AB:67:13:6B:F9:90:AA:8B:E8:85:7A:68:D2:C3:99:EC:D6:29:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JKtnE2v5kKqL6IV6aNLDmezWKZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/088521-2398-457b-b1e3-dd3360393391/1/JKtnE2v5kKqL6IV6aNLDmezWKZo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/088521-2398-457b-b1e3-dd3360393391/1/JKtnE2v5kKqL6IV6aNLDmezWKZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:09:e9:b8:f3:58:09:3c:41:fc:c8:c2:d5:12:c6:90:3d:d2:
a0:f1:e5:3f:a3:9e:af:87:d9:c9:e8:df:97:f9:1f:e3:f3:24:
b7:2a:62:5a:e7:cd:56:86:e2:ed:d9:df:1c:06:c5:c2:ca:4d:
3d:f3:b7:b5:72:5d:b6:61:fa:d1:2b:a7:db:23:fa:38:74:4e:
a1:07:89:1c:bd:ec:1f:41:9b:d3:c3:f5:8e:42:a5:6b:8d:d9:
e8:4c:13:93:89:a9:bb:1a:10:40:1b:06:41:8a:e8:09:f8:87:
ff:81:e4:cf:5f:27:c7:e4:59:6f:3e:01:da:81:d8:0d:12:af:
3f:8a:8a:b3:3a:3a:47:0c:12:c1:51:d0:4d:52:00:4f:e1:74:
7e:59:d8:66:77:fe:f6:b1:1f:a7:1d:5d:c6:e1:f2:00:15:c8:
c5:a4:56:17:aa:1d:1f:15:fb:64:42:59:7d:a6:9c:e0:59:77:
78:af:e1:41:b6:f8:23:a9:88:af:d5:d9:af:74:fc:aa:14:ee:
f8:98:e2:ac:71:49:44:d0:13:c4:e5:5b:6b:54:f7:64:c5:35:
d8:f8:db:66:e2:15:3c:ad:4e:ce:bf:55:b0:c2:d2:97:ad:00:
17:71:04:0f:55:c4:dc:27:87:9b:e6:3f:9e:25:28:8d:be:ed:
05:f1:5b:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 13:43:40 2025 by rpki-client