Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/809cd5-f23f-4720-8c64-59eb384e0967/1/JcUDXdNt8HSfTWKZyPy-1hVcARc.mft
File: JcUDXdNt8HSfTWKZyPy-1hVcARc.mft (raw, json)
Hash identifier: SDa0yGQztrgpgLkrMZGeMlmDPJOPFdnsOsMZLoDuRAg=
Subject key identifier: 9F:A1:09:7C:04:EC:86:E7:60:0B:73:9C:0D:5A:1E:71:1A:89:60:BC
Authority key identifier: 25:C5:03:5D:D3:6D:F0:74:9F:4D:62:99:C8:FC:BE:D6:15:5C:01:17
Certificate issuer: /CN=25c5035dd36df0749f4d6299c8fcbed6155c0117
Certificate serial: 019849657D88FB741D64020B04EA480CFE3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JcUDXdNt8HSfTWKZyPy-1hVcARc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/809cd5-f23f-4720-8c64-59eb384e0967/1/JcUDXdNt8HSfTWKZyPy-1hVcARc.mft
Manifest number: 15FD
Signing time: Sun 27 Jul 2025 01:00:44 +0000
Manifest this update: Sun 27 Jul 2025 01:00:44 +0000
Manifest next update: Mon 28 Jul 2025 01:00:44 +0000
Files and hashes: 1: JcUDXdNt8HSfTWKZyPy-1hVcARc.crl (hash: KwEU1bRcq05tFgW5Z4N41haTtoW/9PCLCrgzBwr359s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/809cd5-f23f-4720-8c64-59eb384e0967/1/JcUDXdNt8HSfTWKZyPy-1hVcARc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cc/809cd5-f23f-4720-8c64-59eb384e0967/1/JcUDXdNt8HSfTWKZyPy-1hVcARc.mft
rsync://rpki.ripe.net/repository/DEFAULT/JcUDXdNt8HSfTWKZyPy-1hVcARc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 00:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:49:65:7d:88:fb:74:1d:64:02:0b:04:ea:48:0c:fe:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25c5035dd36df0749f4d6299c8fcbed6155c0117
Validity
Not Before: Jul 27 01:00:44 2025 GMT
Not After : Jul 28 01:00:44 2025 GMT
Subject: CN=9fa1097c04ec86e7600b739c0d5a1e711a8960bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:9d:7e:68:1f:03:5c:9a:e0:94:65:a1:99:8a:
b2:7f:5a:93:93:b7:1a:e7:39:20:af:56:a3:c5:9f:
53:32:a6:68:5f:2a:02:59:ac:df:72:83:5a:01:c0:
f0:e4:19:a0:4c:8b:70:6b:0c:3c:46:d8:07:da:01:
bb:df:97:03:5e:47:a1:38:5e:83:83:0c:da:45:e8:
34:eb:54:a9:0b:5c:fc:f8:b7:bb:8a:23:17:10:c0:
c2:60:54:09:9d:da:e6:51:03:94:c5:ce:2e:f4:1b:
1b:75:57:fb:c3:68:92:01:64:43:4e:b2:59:ae:b0:
53:e8:db:3b:fc:9a:96:0a:0f:65:41:10:88:39:e5:
72:27:70:11:e0:8c:4b:fd:14:5f:55:58:7b:f7:55:
a5:4a:b0:c0:38:ae:ef:36:75:c3:78:39:81:92:ae:
43:e2:4c:74:08:1e:f0:40:a6:5c:01:98:3d:4b:3f:
71:f9:6f:9d:09:0d:ff:00:ae:0c:82:2e:f6:90:6d:
ba:14:d6:bf:6b:ba:7a:8e:b1:43:ab:8d:84:e8:11:
a6:c6:d2:cf:97:e3:32:d7:b1:fa:83:d9:df:da:59:
ab:34:ec:63:10:54:6d:13:c5:fb:5a:79:ac:a0:59:
9d:30:39:45:e7:76:ae:58:b5:3b:e7:de:7e:c8:59:
c4:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:A1:09:7C:04:EC:86:E7:60:0B:73:9C:0D:5A:1E:71:1A:89:60:BC
X509v3 Authority Key Identifier:
keyid:25:C5:03:5D:D3:6D:F0:74:9F:4D:62:99:C8:FC:BE:D6:15:5C:01:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JcUDXdNt8HSfTWKZyPy-1hVcARc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/809cd5-f23f-4720-8c64-59eb384e0967/1/JcUDXdNt8HSfTWKZyPy-1hVcARc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/809cd5-f23f-4720-8c64-59eb384e0967/1/JcUDXdNt8HSfTWKZyPy-1hVcARc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:e9:13:66:e9:23:90:f5:85:ff:0c:da:07:a5:53:c7:fb:39:
cd:81:b5:bd:50:e0:d8:a2:20:78:ff:f5:5f:d9:ed:7d:4c:69:
f7:9c:46:2b:5b:73:2a:84:5d:98:1d:5c:03:1a:a6:94:b4:e9:
db:d7:91:26:04:ab:a8:c2:5d:6c:06:49:8c:03:6f:21:b5:7a:
74:66:93:fe:6d:b8:57:63:f3:bd:e7:0e:05:28:9d:d0:86:92:
58:e8:03:48:07:4a:0d:da:f4:32:12:75:03:b3:28:7d:1e:13:
30:fe:bb:41:bb:c2:c4:8c:ac:be:7b:d5:cf:ed:6b:16:6b:cb:
5c:b2:55:3c:09:a3:4b:d0:36:7b:d3:86:31:47:51:22:f4:5f:
29:42:64:c1:b4:65:01:13:7b:3a:2c:0a:fa:92:ee:16:28:51:
b9:ff:cc:08:86:34:c4:94:15:ec:08:26:a3:6f:d2:2b:a7:62:
30:66:3e:31:11:82:05:0f:97:a3:ac:c7:9a:9f:4f:9e:06:1c:
82:ad:62:fb:5a:b2:9c:68:0a:5a:e0:bf:2f:1a:9f:4d:f8:ed:
79:03:08:c1:68:2f:f3:eb:ec:13:5f:3f:8b:7d:64:46:74:6f:
d0:b5:5a:fa:d1:e6:77:34:30:cc:6e:50:e8:95:51:7b:2c:4a:
04:14:0a:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 09:54:37 2025 by rpki-client