Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/548417-5b01-4f5e-b9b3-4eddbeb8387b/1/JbqHlfPn4tLHyQ8cNmbPf5KD2p4.mft
File: JbqHlfPn4tLHyQ8cNmbPf5KD2p4.mft (raw, json)
Hash identifier: vvYPJtM/lzP+yqg1cPDEoZRDcyYYNJFhFvfboa6IgP8=
Subject key identifier: AE:9C:9D:2A:0A:84:5C:3E:9F:5A:92:F3:D1:79:18:77:95:7C:5A:6C
Authority key identifier: 25:BA:87:95:F3:E7:E2:D2:C7:C9:0F:1C:36:66:CF:7F:92:83:DA:9E
Certificate issuer: /CN=25ba8795f3e7e2d2c7c90f1c3666cf7f9283da9e
Certificate serial: 0199239F6E48944F073B3828A1AA7AAA6E6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JbqHlfPn4tLHyQ8cNmbPf5KD2p4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/548417-5b01-4f5e-b9b3-4eddbeb8387b/1/JbqHlfPn4tLHyQ8cNmbPf5KD2p4.mft
Manifest number: 166C
Signing time: Sun 07 Sep 2025 10:01:14 +0000
Manifest this update: Sun 07 Sep 2025 10:01:14 +0000
Manifest next update: Mon 08 Sep 2025 10:01:14 +0000
Files and hashes: 1: JbqHlfPn4tLHyQ8cNmbPf5KD2p4.crl (hash: 0JksBKT7809bGG5vHY2fUKR5Qauns/ybeMcBtf4lGPI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/548417-5b01-4f5e-b9b3-4eddbeb8387b/1/JbqHlfPn4tLHyQ8cNmbPf5KD2p4.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/548417-5b01-4f5e-b9b3-4eddbeb8387b/1/JbqHlfPn4tLHyQ8cNmbPf5KD2p4.mft
rsync://rpki.ripe.net/repository/DEFAULT/JbqHlfPn4tLHyQ8cNmbPf5KD2p4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9f:6e:48:94:4f:07:3b:38:28:a1:aa:7a:aa:6e:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25ba8795f3e7e2d2c7c90f1c3666cf7f9283da9e
Validity
Not Before: Sep 7 10:01:14 2025 GMT
Not After : Sep 8 10:01:14 2025 GMT
Subject: CN=ae9c9d2a0a845c3e9f5a92f3d1791877957c5a6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:64:c7:36:c4:d7:91:70:59:92:10:d7:b7:58:
eb:fd:d9:6f:01:40:0e:be:f9:0a:9f:1a:39:90:19:
91:54:d2:e3:19:3c:5b:1e:44:c0:94:f0:12:99:92:
94:e9:86:be:50:09:54:ed:ba:d1:bb:75:58:44:db:
0c:bb:ea:e0:cd:dc:08:ec:24:fc:6c:9e:0a:9f:d2:
a0:75:13:5a:7c:40:cc:01:a0:5b:8f:3b:f4:1a:38:
b4:a0:c5:2a:88:94:d3:ad:6c:28:09:89:ff:3c:8a:
d1:44:2c:21:45:1e:66:0e:34:92:89:eb:5a:df:20:
59:f1:70:31:88:f4:c0:3f:92:40:0e:01:70:2c:63:
df:80:2d:d1:34:f0:e2:c8:64:41:95:b5:f3:28:22:
7b:a7:9b:f6:e9:e7:fb:9c:8c:35:a5:90:cd:49:bd:
3a:6f:ec:f4:db:83:dc:de:88:6f:1f:26:1f:21:54:
81:e9:cd:d4:a5:54:a1:96:55:b7:da:f4:4b:01:c9:
f4:76:4d:39:66:a1:e4:fc:6d:0f:fb:1a:2f:eb:e3:
0d:c0:cb:40:7d:cd:70:71:2e:aa:41:89:82:13:7f:
3e:8c:21:b0:8e:fc:49:1a:85:8b:c6:4f:97:71:9f:
b6:19:6f:90:7e:36:73:b4:73:0b:05:e2:39:2d:e7:
6a:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:9C:9D:2A:0A:84:5C:3E:9F:5A:92:F3:D1:79:18:77:95:7C:5A:6C
X509v3 Authority Key Identifier:
keyid:25:BA:87:95:F3:E7:E2:D2:C7:C9:0F:1C:36:66:CF:7F:92:83:DA:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JbqHlfPn4tLHyQ8cNmbPf5KD2p4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/548417-5b01-4f5e-b9b3-4eddbeb8387b/1/JbqHlfPn4tLHyQ8cNmbPf5KD2p4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/548417-5b01-4f5e-b9b3-4eddbeb8387b/1/JbqHlfPn4tLHyQ8cNmbPf5KD2p4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:e2:37:87:02:08:f3:1f:39:39:f9:40:5c:73:ac:72:2a:57:
87:bd:4b:c6:39:3d:1f:e0:c1:5c:1e:b8:1f:04:6f:8f:36:3d:
9e:26:2b:17:f0:bf:02:02:8b:4b:17:37:c9:c9:af:11:f8:a3:
25:4d:ca:ec:f8:24:15:4c:04:cc:50:c3:6c:3e:48:c4:9c:a9:
f6:c4:8d:04:c9:9b:cc:e0:2c:86:cc:9b:2f:1d:f1:67:a0:a4:
9a:41:29:8a:b5:b9:39:15:a3:36:38:3e:43:46:3e:c0:61:71:
18:51:58:eb:54:55:a3:69:60:ac:97:e7:04:14:0a:27:19:79:
35:f6:0a:0d:45:99:7d:54:4b:05:5e:a0:2b:11:d6:5f:c5:a9:
3b:1c:67:6a:0a:6a:8a:b7:07:9f:99:8c:b7:02:a7:4f:34:02:
e6:49:5b:09:18:a7:b8:e3:f4:19:29:47:88:d0:53:1e:79:a4:
0d:cd:18:fa:11:75:86:3d:f1:00:07:aa:8e:37:df:1a:3e:c2:
d0:86:2e:fb:f1:fd:c2:df:b8:d3:4b:17:62:1c:c2:64:f5:2e:
55:fd:c2:19:22:d6:2e:30:62:18:54:e1:e6:f4:13:f8:1d:26:
36:64:55:fb:aa:1d:28:6a:d2:79:89:7a:3a:af:6d:25:37:fc:
7b:b6:16:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:52:47 2025 by rpki-client