Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/91bcd8-a1f7-4fb1-b288-011b451b45b4/1/Jnzx804vAQuQLcFCRVtrtzJs8I0.mft
File: Jnzx804vAQuQLcFCRVtrtzJs8I0.mft (raw, json)
Hash identifier: StHoZVIyg5ftC/eekFVrYUR3VHYjBfAuIO+ZGLH8014=
Subject key identifier: 9E:33:E9:31:7C:4B:3C:8D:D4:4D:21:9A:44:9A:FC:B8:6B:F1:1F:50
Authority key identifier: 26:7C:F1:F3:4E:2F:01:0B:90:2D:C1:42:45:5B:6B:B7:32:6C:F0:8D
Certificate issuer: /CN=267cf1f34e2f010b902dc142455b6bb7326cf08d
Certificate serial: 019749D6101B5CF1530D8214BFE98A316861
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Jnzx804vAQuQLcFCRVtrtzJs8I0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/91bcd8-a1f7-4fb1-b288-011b451b45b4/1/Jnzx804vAQuQLcFCRVtrtzJs8I0.mft
Manifest number: 157D
Signing time: Sat 07 Jun 2025 10:00:55 +0000
Manifest this update: Sat 07 Jun 2025 10:00:55 +0000
Manifest next update: Sun 08 Jun 2025 10:00:55 +0000
Files and hashes: 1: Jnzx804vAQuQLcFCRVtrtzJs8I0.crl (hash: tDFJ5MkN/Q/7TvJk2QmH0i+pwT8GBYsetHkk3BJKtuk=)
2: aHRmXP7rOhW5b0_ChkibljQ32q4.roa (hash: T5y3LNiPd6ixiV1aW5ySaidO4jWDcaXEXf35DBj0+Xo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/91bcd8-a1f7-4fb1-b288-011b451b45b4/1/Jnzx804vAQuQLcFCRVtrtzJs8I0.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/91bcd8-a1f7-4fb1-b288-011b451b45b4/1/Jnzx804vAQuQLcFCRVtrtzJs8I0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Jnzx804vAQuQLcFCRVtrtzJs8I0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:d6:10:1b:5c:f1:53:0d:82:14:bf:e9:8a:31:68:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=267cf1f34e2f010b902dc142455b6bb7326cf08d
Validity
Not Before: Jun 7 10:00:55 2025 GMT
Not After : Jun 8 10:00:55 2025 GMT
Subject: CN=9e33e9317c4b3c8dd44d219a449afcb86bf11f50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:f5:78:f2:00:a8:86:8e:41:83:b3:59:38:19:
1b:e5:f5:12:d9:82:56:21:92:7c:6e:4a:41:27:6f:
a2:08:eb:22:e0:e7:5d:a0:13:b3:b0:c4:6d:fe:9d:
0b:16:f8:05:a2:ed:25:95:16:d2:7b:0f:ac:72:03:
db:1f:e6:3e:a1:e2:4e:9a:20:c6:e8:8e:08:2a:3f:
be:e4:da:11:ca:74:bf:c5:f6:b1:0d:2c:1b:16:4f:
2e:4d:23:fd:1d:de:2c:56:91:8f:18:8e:50:98:dc:
c6:45:48:5a:2b:fa:6d:7b:52:f0:d7:f1:22:72:ca:
76:64:bd:15:ee:42:6e:1f:bc:87:5e:b4:76:f8:74:
c4:f5:aa:b5:c3:70:3b:e8:3e:19:3a:0c:f1:f3:f5:
5c:d4:04:e1:9f:00:d0:2e:de:ee:a4:c5:e1:b5:86:
3d:aa:d2:96:73:54:e0:b9:0f:53:47:a7:57:92:85:
92:7b:31:3f:2a:6c:2a:88:38:58:18:94:9b:bb:d1:
a8:49:10:f0:08:a6:61:fe:c3:e3:c4:c7:2b:7a:b2:
37:80:89:86:d0:db:23:ad:0f:fc:79:70:3a:aa:2e:
37:d7:a8:f1:fb:64:e0:06:7e:a8:9f:ba:1b:64:dc:
28:cc:d6:70:1f:90:0e:e6:d7:e7:91:81:69:a4:73:
22:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:33:E9:31:7C:4B:3C:8D:D4:4D:21:9A:44:9A:FC:B8:6B:F1:1F:50
X509v3 Authority Key Identifier:
keyid:26:7C:F1:F3:4E:2F:01:0B:90:2D:C1:42:45:5B:6B:B7:32:6C:F0:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Jnzx804vAQuQLcFCRVtrtzJs8I0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/91bcd8-a1f7-4fb1-b288-011b451b45b4/1/Jnzx804vAQuQLcFCRVtrtzJs8I0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/91bcd8-a1f7-4fb1-b288-011b451b45b4/1/Jnzx804vAQuQLcFCRVtrtzJs8I0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:89:87:5c:11:2b:d0:0d:e5:22:a0:08:41:1b:b8:12:12:33:
e0:a2:06:6c:d0:f4:4f:7f:22:08:59:2e:ed:bf:60:11:ad:71:
ba:a4:7c:f6:f9:76:db:56:49:4a:db:b6:b9:7c:a3:57:03:ed:
e7:02:a1:66:d5:53:15:af:ca:2a:13:dd:b0:23:3f:2b:ca:b8:
74:54:22:94:87:49:0e:64:f5:18:c7:e5:8e:21:37:2b:8b:2d:
97:8a:c1:d9:9f:e1:0e:4a:fe:b9:22:8c:e4:19:9e:2b:89:ac:
3a:db:94:23:28:71:f3:13:40:52:30:c7:64:3e:1e:2a:4e:46:
b2:57:78:c9:27:1a:cf:e1:b6:cd:4b:4e:14:0e:c9:ac:fd:de:
7b:ea:36:71:a5:65:1d:25:e4:43:04:ba:69:c3:21:af:1c:c0:
93:80:24:22:f6:dd:b3:79:71:16:ca:ba:0a:f2:13:fb:6d:2d:
b0:49:8b:af:41:fb:f4:62:d8:b7:98:aa:2c:15:15:30:96:83:
dc:66:8c:fe:9f:2d:eb:ec:36:ec:4c:3d:ca:e3:1c:5a:b9:bd:
77:28:05:15:5c:05:68:4c:49:8e:c7:14:05:49:d2:55:ca:1a:
4d:14:25:03:b8:b4:fe:71:56:ba:15:fe:28:11:62:da:2b:ec:
c4:81:ba:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:27:00 2025 by rpki-client