Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
File: jha95kqam7o_-hQ4oZesP5SYn68.mft (raw, json)
Hash identifier: SNjEiy/MY+pgdmFsQNu8Lnb/HL4cDudAAjCdG78g2YE=
Subject key identifier: AD:D9:49:0F:8B:F3:0C:29:74:35:BC:92:B2:96:AB:47:2D:9E:56:53
Authority key identifier: 8E:16:BD:E6:4A:9A:9B:BA:3F:FA:14:38:A1:97:AC:3F:94:98:9F:AF
Certificate issuer: /CN=8e16bde64a9a9bba3ffa1438a197ac3f94989faf
Certificate serial: 01974EFC2DB6FA459A5B8F1AFC1CC4D96855
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
Manifest number: 0913
Signing time: Sun 08 Jun 2025 10:00:38 +0000
Manifest this update: Sun 08 Jun 2025 10:00:38 +0000
Manifest next update: Mon 09 Jun 2025 10:00:38 +0000
Files and hashes: 1: jha95kqam7o_-hQ4oZesP5SYn68.crl (hash: sZGDcuystn7IRuFYF3iQK+zIsGp5Fm0Alvm1aneyCIs=)
2: lgcKgcRNJg401G2YURIZe_B5NuU.roa (hash: uy67hQlFG6+Rikv9aAochHvjUmoKf+eqiNInXnUkhzk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 10:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:fc:2d:b6:fa:45:9a:5b:8f:1a:fc:1c:c4:d9:68:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e16bde64a9a9bba3ffa1438a197ac3f94989faf
Validity
Not Before: Jun 8 10:00:38 2025 GMT
Not After : Jun 9 10:00:38 2025 GMT
Subject: CN=add9490f8bf30c297435bc92b296ab472d9e5653
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:79:b3:0c:e4:dc:23:02:dc:1a:33:5c:3a:3d:
a4:e2:b2:b2:1a:2d:4a:c9:5f:c6:ce:50:d7:8b:c5:
e2:9a:46:5f:ed:48:4c:45:ae:6e:45:47:c3:00:6d:
18:c6:7a:dd:20:03:a2:5b:72:aa:e7:58:55:9c:ac:
6a:9a:dc:c2:a8:4d:69:1f:7e:a4:4b:a0:b6:58:f9:
e3:16:19:4d:8d:c1:51:d6:38:6a:55:0b:08:44:e4:
2a:1a:4a:40:ce:4c:cb:b6:15:30:af:a8:38:48:cb:
8d:29:8f:02:eb:dc:d9:2b:e8:a0:f5:bd:f7:93:8d:
b5:47:57:62:86:24:5b:c6:e0:7a:31:2d:7b:de:2c:
c3:33:6f:07:c0:cd:85:c0:ad:e0:d5:f9:6c:61:d0:
eb:88:68:be:53:a4:2e:23:c7:10:0a:07:2a:91:8e:
e6:81:47:80:05:0b:60:e1:c8:a4:1a:5e:ef:59:aa:
d8:da:c6:14:c5:9f:cd:66:ac:d6:87:f2:78:12:f2:
b1:31:f2:31:3d:97:fd:37:90:34:23:a6:6d:07:86:
63:c5:ee:a8:72:43:2a:83:6a:25:39:9e:0f:bd:5a:
51:0d:a1:9e:a0:56:9e:8c:84:1c:30:a0:ee:7d:cf:
f0:93:fd:95:fd:d8:d4:e2:fd:96:62:64:69:36:4b:
9b:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:D9:49:0F:8B:F3:0C:29:74:35:BC:92:B2:96:AB:47:2D:9E:56:53
X509v3 Authority Key Identifier:
keyid:8E:16:BD:E6:4A:9A:9B:BA:3F:FA:14:38:A1:97:AC:3F:94:98:9F:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:02:fe:83:f0:f9:f5:14:60:3f:58:9a:d3:d7:4d:e0:7f:83:
d8:36:85:66:34:47:b8:b8:9c:cb:80:8d:02:e8:c6:5c:47:61:
f7:07:51:97:7b:30:5f:6c:77:d6:d0:b6:4d:bc:bb:73:52:dd:
c2:b2:c9:01:6c:2a:6e:a2:57:b7:6c:7b:57:8d:94:9a:fe:2a:
d1:54:4f:26:e5:56:ca:04:64:d3:16:56:d7:41:a4:5f:88:0d:
db:e4:1a:13:e0:21:9b:12:4b:ca:06:21:66:e9:eb:10:f9:d6:
7f:19:c5:3c:59:44:b0:bd:44:d2:8a:05:71:be:cc:6a:f7:ec:
6b:66:d9:83:d6:88:ae:d1:50:24:7b:4e:1e:06:7e:7a:b9:48:
ba:c9:3c:78:f7:b7:bf:b4:b5:c6:2c:18:e4:93:e8:d3:cd:c4:
2e:82:cf:08:8c:5c:65:0b:c0:b6:68:70:f5:de:c2:70:6f:42:
80:2c:07:ee:76:d7:7a:df:45:f1:cc:77:fb:c7:c1:7b:0b:71:
81:5c:cd:8a:d2:02:a4:5b:12:78:29:ae:82:fe:8d:dc:d8:0d:
13:39:7c:76:f3:92:15:d6:b9:74:cf:a0:fe:41:e8:56:67:e8:
df:05:82:09:13:70:d1:15:45:62:cf:b1:af:6f:eb:f2:9a:1e:
08:41:f8:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 20:34:39 2025 by rpki-client