Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
File: JY8HU8Azwa8JGGbQlCZFEmlspos.mft (raw, json)
Hash identifier: NmeeKusEPIFDWcS5iTHbjYAb1RgdOXkdTlWPug26y4E=
Subject key identifier: 85:1A:15:92:FB:56:B7:4B:F2:09:DF:04:7B:70:BD:D9:18:22:C7:FE
Authority key identifier: 25:8F:07:53:C0:33:C1:AF:09:18:66:D0:94:26:45:12:69:6C:A6:8B
Certificate issuer: /CN=258f0753c033c1af091866d094264512696ca68b
Certificate serial: 01974630281DA542E0C46A76D1A4358447EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
Manifest number: 08C6
Signing time: Fri 06 Jun 2025 17:00:50 +0000
Manifest this update: Fri 06 Jun 2025 17:00:50 +0000
Manifest next update: Sat 07 Jun 2025 17:00:50 +0000
Files and hashes: 1: BQh7QT9BX7cTqXjHHhGh4E0jau4.roa (hash: ji+6a8qXV045VZtKjEfl6cGy7fTl7ME8scmY2gpWI2s=)
2: JY8HU8Azwa8JGGbQlCZFEmlspos.crl (hash: t1u+BY348AM9G8XeE2mRxjp+6Bmr+ty9TzHm0ibwbrs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:30:28:1d:a5:42:e0:c4:6a:76:d1:a4:35:84:47:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=258f0753c033c1af091866d094264512696ca68b
Validity
Not Before: Jun 6 17:00:50 2025 GMT
Not After : Jun 7 17:00:50 2025 GMT
Subject: CN=851a1592fb56b74bf209df047b70bdd91822c7fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:23:f2:ab:30:6f:57:49:59:b7:e6:1f:2f:5d:
3e:75:e4:74:b9:e8:86:df:61:71:01:96:35:24:59:
b2:4f:9b:74:27:e6:0d:fc:b6:89:0e:4b:b3:19:1c:
33:1c:bb:a9:7f:ea:88:a0:e2:b8:b9:65:09:d4:85:
d5:f4:56:15:a9:66:d5:41:e1:ef:ea:0d:ca:91:7a:
e3:ae:ce:51:1a:88:f0:17:e5:97:8d:a6:6b:1d:83:
fc:12:eb:12:9a:b8:23:2d:db:c7:3d:c0:7c:65:5f:
64:29:4f:95:68:ad:e7:aa:7b:40:8b:13:11:ca:71:
16:71:e3:4d:ba:f7:d9:55:72:ca:b0:23:13:e8:b5:
94:f6:2e:d9:22:fd:a7:07:8b:9c:f3:3d:6f:e9:47:
4a:6e:47:b0:55:6e:e3:7a:3a:15:dd:9e:2e:8f:fc:
af:75:d0:35:f4:de:7e:99:bf:90:d0:63:31:3c:03:
1b:af:4e:ed:a6:08:ea:60:d0:cc:1f:38:b5:cf:f0:
e5:11:ff:6b:bd:2a:ba:4a:d4:9c:c3:d5:af:eb:08:
5b:65:0d:9b:b2:e2:18:d4:7a:16:04:0c:54:b7:6b:
1d:ac:58:c1:d5:65:e7:07:93:cf:57:1d:9c:75:7c:
0c:1d:ef:91:c5:0f:63:39:50:01:75:41:72:3e:89:
23:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:1A:15:92:FB:56:B7:4B:F2:09:DF:04:7B:70:BD:D9:18:22:C7:FE
X509v3 Authority Key Identifier:
keyid:25:8F:07:53:C0:33:C1:AF:09:18:66:D0:94:26:45:12:69:6C:A6:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:fd:76:ae:de:41:e9:2d:d5:e7:a5:a7:96:66:7a:79:62:28:
78:17:53:c2:6d:e0:87:f1:c4:49:56:d0:95:d8:27:5b:dd:0f:
fd:68:59:4a:71:14:d4:68:1c:9c:26:e6:69:2e:16:e3:53:07:
5b:08:1b:15:46:f8:09:18:c7:5c:33:ef:5b:9e:96:35:9f:e8:
51:99:bf:1b:3d:7b:bd:5a:30:11:7c:cc:c2:33:30:5f:9e:02:
ef:31:3e:fe:eb:06:4a:a1:20:1d:65:fd:b1:fe:10:c1:fa:68:
e0:b1:53:6e:57:fe:96:80:df:69:ab:2d:de:67:6b:b2:89:3a:
34:45:b4:42:08:e2:b7:20:86:aa:e2:2f:c7:90:cb:0e:f4:92:
d3:f0:e9:42:91:5c:a8:08:15:dc:42:c8:1f:82:aa:63:7f:30:
77:dc:35:6d:cb:cf:d0:9f:3c:89:80:49:6e:8b:23:33:5e:df:
84:9d:7b:57:af:da:19:7e:34:d8:02:01:71:fb:2c:c1:03:6b:
2d:09:50:1c:49:5f:de:ef:4b:f6:a4:35:f9:20:5f:af:05:6b:
21:43:ab:73:08:9a:ac:f1:4a:06:b2:35:78:d8:03:c1:1d:fd:
25:4a:61:7a:0d:59:4c:0e:c1:94:d2:49:16:c5:ae:ca:b3:ee:
ba:d0:cf:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 00:55:54 2025 by rpki-client