Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/488f90-224e-4634-967f-8f181d3a3e8f/1/jPCwtGoI0ecPy92Hetk5oBMuEmk.mft
File: jPCwtGoI0ecPy92Hetk5oBMuEmk.mft (raw, json)
Hash identifier: MNmFwNyMqXAqZECwmuxnmWC3yv3GvhtxsbmZib6q1sc=
Subject key identifier: B1:43:07:55:2C:B4:38:CB:85:D2:30:7A:93:25:1C:02:AC:BB:35:DE
Authority key identifier: 8C:F0:B0:B4:6A:08:D1:E7:0F:CB:DD:87:7A:D9:39:A0:13:2E:12:69
Certificate issuer: /CN=8cf0b0b46a08d1e70fcbdd877ad939a0132e1269
Certificate serial: 019922558F94AE336E45E38CBADC8C23797E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jPCwtGoI0ecPy92Hetk5oBMuEmk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/488f90-224e-4634-967f-8f181d3a3e8f/1/jPCwtGoI0ecPy92Hetk5oBMuEmk.mft
Manifest number: 1214
Signing time: Sun 07 Sep 2025 04:00:56 +0000
Manifest this update: Sun 07 Sep 2025 04:00:56 +0000
Manifest next update: Mon 08 Sep 2025 04:00:56 +0000
Files and hashes: 1: Gh9PpfuY5LxhoKf93mfL5cK3chM.roa (hash: h2BIVV97ReDZkfRDJTGtHCoQkarTn+cxIbkViPsb5Nw=)
2: jPCwtGoI0ecPy92Hetk5oBMuEmk.crl (hash: 82puldJlLvfKNyNUqcfGribFl4oWP9mMcPeehUc9oGg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/488f90-224e-4634-967f-8f181d3a3e8f/1/jPCwtGoI0ecPy92Hetk5oBMuEmk.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/488f90-224e-4634-967f-8f181d3a3e8f/1/jPCwtGoI0ecPy92Hetk5oBMuEmk.mft
rsync://rpki.ripe.net/repository/DEFAULT/jPCwtGoI0ecPy92Hetk5oBMuEmk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:8f:94:ae:33:6e:45:e3:8c:ba:dc:8c:23:79:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8cf0b0b46a08d1e70fcbdd877ad939a0132e1269
Validity
Not Before: Sep 7 04:00:56 2025 GMT
Not After : Sep 8 04:00:56 2025 GMT
Subject: CN=b14307552cb438cb85d2307a93251c02acbb35de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:a4:68:66:3d:8b:ec:7c:d1:64:c6:d9:2c:7c:
c6:33:20:87:a8:c4:5e:00:23:68:ef:6e:87:ae:65:
9f:81:56:d8:d7:01:52:24:66:8e:0a:e5:ff:82:74:
58:66:96:5e:2a:c4:69:f4:09:1b:ee:5f:99:99:63:
24:ae:a9:a5:03:3f:1d:14:c2:ad:03:ff:53:4c:c0:
66:bb:ba:e7:a1:37:56:6e:c9:04:67:e8:b7:1b:55:
65:26:16:57:8d:8e:5f:da:2f:87:4c:71:f2:d0:6c:
06:70:8c:d8:f7:46:30:b7:a3:14:8d:22:1e:e9:2f:
a7:d0:8e:f2:ae:6b:fb:51:37:f2:4d:c8:17:e2:85:
41:93:00:a5:05:14:10:56:79:de:85:ec:4c:71:29:
44:b8:ab:48:ca:63:45:00:db:16:ce:99:ba:f3:ed:
b1:7b:10:ac:a2:cd:be:5a:fc:d2:42:5c:6f:7a:21:
f0:9f:04:b6:23:5e:07:e0:c7:33:64:fb:6a:57:1d:
a9:75:b8:87:90:07:26:dd:27:a6:38:74:b8:ac:7b:
9a:a4:19:9e:37:09:99:37:6f:ff:87:78:0f:91:8d:
15:d6:80:37:2e:e9:d5:6d:f4:87:b3:2c:d0:a9:65:
c2:53:23:83:6c:d0:48:57:4b:66:46:56:0f:b6:7e:
13:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:43:07:55:2C:B4:38:CB:85:D2:30:7A:93:25:1C:02:AC:BB:35:DE
X509v3 Authority Key Identifier:
keyid:8C:F0:B0:B4:6A:08:D1:E7:0F:CB:DD:87:7A:D9:39:A0:13:2E:12:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jPCwtGoI0ecPy92Hetk5oBMuEmk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/488f90-224e-4634-967f-8f181d3a3e8f/1/jPCwtGoI0ecPy92Hetk5oBMuEmk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/488f90-224e-4634-967f-8f181d3a3e8f/1/jPCwtGoI0ecPy92Hetk5oBMuEmk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:0a:16:c8:a5:c5:ad:ae:62:66:76:46:43:cb:ff:2a:65:5f:
8c:8e:65:b5:73:50:51:73:33:5b:6d:30:01:1a:04:a1:e3:50:
a2:68:a2:1c:8d:f9:00:c4:88:c8:73:84:ab:de:54:d8:25:02:
41:c8:d7:c5:69:d8:af:be:f6:1d:ec:04:2c:a2:49:bf:1b:c8:
e2:a9:1a:8b:a6:38:70:a6:01:b4:64:84:74:c3:b8:58:a4:42:
ff:12:19:e3:b4:ef:2e:a0:d9:c6:23:76:43:c4:53:c6:28:69:
d8:55:bd:77:15:91:95:0d:9c:72:02:47:6b:9c:a9:96:c8:da:
23:ac:38:cc:ca:1a:72:dc:bc:ab:f5:05:1e:0d:48:3a:f7:39:
3c:46:ca:4a:f1:ec:c6:c4:06:6e:0d:67:a2:dd:b8:4e:eb:d7:
7e:47:3b:7b:86:64:75:52:74:ca:03:56:0c:5e:44:f2:84:e1:
da:f8:fd:da:1e:e2:fe:24:e5:7a:05:a8:5e:0e:38:4e:92:f2:
b6:8e:51:11:ac:98:8e:ff:38:78:a2:8e:d0:ed:ab:c0:bd:9d:
6e:25:c9:6f:0b:16:ed:c5:97:62:fd:87:be:02:36:9f:0c:d4:
7d:5c:eb:21:cc:40:6a:d8:df:4f:f9:23:62:87:92:0a:9a:d7:
ca:a5:a9:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:32:21 2025 by rpki-client