Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/488f90-224e-4634-967f-8f181d3a3e8f/1/jPCwtGoI0ecPy92Hetk5oBMuEmk.mft
File: jPCwtGoI0ecPy92Hetk5oBMuEmk.mft (raw, json)
Hash identifier: l2aYQVDrfvR1pbAKzbFMiaBjN/jwaTagzBQA5b92GU0=
Subject key identifier: 68:81:1A:BB:8C:B8:F3:68:FD:46:3C:12:15:26:AB:07:E0:68:75:71
Authority key identifier: 8C:F0:B0:B4:6A:08:D1:E7:0F:CB:DD:87:7A:D9:39:A0:13:2E:12:69
Certificate issuer: /CN=8cf0b0b46a08d1e70fcbdd877ad939a0132e1269
Certificate serial: 01974743226346B98C54BA1ACEDAC287E466
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jPCwtGoI0ecPy92Hetk5oBMuEmk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/488f90-224e-4634-967f-8f181d3a3e8f/1/jPCwtGoI0ecPy92Hetk5oBMuEmk.mft
Manifest number: 111E
Signing time: Fri 06 Jun 2025 22:01:11 +0000
Manifest this update: Fri 06 Jun 2025 22:01:11 +0000
Manifest next update: Sat 07 Jun 2025 22:01:11 +0000
Files and hashes: 1: Gh9PpfuY5LxhoKf93mfL5cK3chM.roa (hash: h2BIVV97ReDZkfRDJTGtHCoQkarTn+cxIbkViPsb5Nw=)
2: jPCwtGoI0ecPy92Hetk5oBMuEmk.crl (hash: p95Vb1gzoXL6HXZxhOePdCzjL31VA+9fGVL5x4mjt3Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/488f90-224e-4634-967f-8f181d3a3e8f/1/jPCwtGoI0ecPy92Hetk5oBMuEmk.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/488f90-224e-4634-967f-8f181d3a3e8f/1/jPCwtGoI0ecPy92Hetk5oBMuEmk.mft
rsync://rpki.ripe.net/repository/DEFAULT/jPCwtGoI0ecPy92Hetk5oBMuEmk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:43:22:63:46:b9:8c:54:ba:1a:ce:da:c2:87:e4:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8cf0b0b46a08d1e70fcbdd877ad939a0132e1269
Validity
Not Before: Jun 6 22:01:11 2025 GMT
Not After : Jun 7 22:01:11 2025 GMT
Subject: CN=68811abb8cb8f368fd463c121526ab07e0687571
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:5b:f4:01:14:c3:dc:2c:c6:d6:6c:73:be:de:
e1:54:b6:69:a6:51:f1:c2:1a:7e:f7:bb:d6:48:fc:
7c:20:1d:12:fb:f7:f5:b7:ed:48:91:ae:c4:1a:f6:
0d:aa:c7:3d:15:2f:6f:be:ba:a4:3a:37:58:8f:76:
f1:9c:1d:1f:fe:0a:9b:d6:3e:19:2d:99:e7:e8:6a:
0b:b2:08:7f:49:56:4a:2f:7a:29:b7:be:ab:36:c0:
6a:c9:2b:31:cf:4b:f7:ec:15:bb:d1:18:11:56:55:
ed:ae:98:5a:a4:fe:fa:3e:3c:3b:42:e9:9c:e9:0d:
5c:7c:96:8d:06:11:c5:71:82:42:02:db:f2:e0:81:
1e:5b:c7:ff:72:11:a8:fd:56:eb:2c:e7:2b:51:98:
5c:f3:09:d8:69:5c:c8:83:ac:c7:af:fd:7a:4f:3c:
1b:b2:45:5a:9b:1a:c5:95:ce:a0:a1:69:bd:32:a2:
8c:0a:6b:41:7d:bf:57:f0:3f:63:84:08:50:67:8e:
06:41:44:60:10:61:d5:d8:ad:f1:bd:5a:11:67:83:
e2:0e:5a:e3:59:b6:88:3c:16:bd:f7:92:1b:aa:9e:
3c:f2:18:08:22:bf:aa:53:82:55:7b:8b:11:de:ff:
cd:81:7f:78:46:df:c1:ee:ac:65:e5:f3:8d:ec:ba:
2a:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:81:1A:BB:8C:B8:F3:68:FD:46:3C:12:15:26:AB:07:E0:68:75:71
X509v3 Authority Key Identifier:
keyid:8C:F0:B0:B4:6A:08:D1:E7:0F:CB:DD:87:7A:D9:39:A0:13:2E:12:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jPCwtGoI0ecPy92Hetk5oBMuEmk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/488f90-224e-4634-967f-8f181d3a3e8f/1/jPCwtGoI0ecPy92Hetk5oBMuEmk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/488f90-224e-4634-967f-8f181d3a3e8f/1/jPCwtGoI0ecPy92Hetk5oBMuEmk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:27:fc:48:ef:dd:9c:cd:31:f9:25:43:ff:29:6c:59:65:89:
7e:6c:25:e5:ce:06:d0:29:dc:f7:84:40:b2:74:c9:eb:c6:8a:
72:d8:27:ce:e2:bf:d4:75:d1:7f:af:23:4a:71:fc:0d:8c:b6:
a7:6a:7c:79:a3:e8:8b:7b:28:3d:44:1f:58:3f:31:df:c4:8e:
e2:d3:03:8d:2f:5a:40:6d:3e:f1:f5:be:7a:77:ba:84:0a:5a:
d7:aa:2a:db:11:0a:07:5b:78:0e:e8:c9:a3:9c:ba:ad:33:b8:
9c:ea:e5:8e:b1:98:9b:b6:29:ab:c4:8e:4c:4a:96:3a:dc:ae:
8c:e7:57:7d:d6:78:38:eb:32:a1:df:14:ca:24:19:d2:f5:22:
03:f5:89:20:18:95:79:74:0c:c8:f4:02:81:dc:d7:8c:58:5b:
11:49:b1:4e:92:5c:c8:b0:29:0e:cc:62:67:3d:bf:10:7f:1b:
b5:fd:0b:77:08:9c:5f:a8:d9:0c:f9:5b:1e:57:04:26:dc:48:
78:36:99:90:92:3f:4e:80:c9:ce:fe:f9:f7:2d:39:52:e0:ac:
6e:52:ea:fa:14:c1:78:09:a3:0e:e6:f8:a5:34:85:63:59:03:
8c:59:ac:c8:ac:a1:10:b1:ea:2b:a0:73:e4:97:e8:bb:cd:05:
2e:dc:de:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 00:55:48 2025 by rpki-client