Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
File: JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft (raw, json)
Hash identifier: XcC4SaUgbWOpTaH8sUS2sda8ev+NjNXRYwhmlUDx7hU=
Subject key identifier: B9:4D:25:0B:16:93:AE:21:18:B1:AA:63:75:52:95:5C:A4:7B:19:92
Authority key identifier: 24:A9:D8:4C:6D:16:C0:83:09:3C:33:71:B4:57:5D:36:EF:44:8F:E4
Certificate issuer: /CN=24a9d84c6d16c083093c3371b4575d36ef448fe4
Certificate serial: 01992255F9A41BB6D44497BC22A175975CED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
Manifest number: 0A23
Signing time: Sun 07 Sep 2025 04:01:23 +0000
Manifest this update: Sun 07 Sep 2025 04:01:23 +0000
Manifest next update: Mon 08 Sep 2025 04:01:23 +0000
Files and hashes: 1: JKnYTG0WwIMJPDNxtFddNu9Ej-Q.crl (hash: JdsMLVlxUFsiDhbgfo1eZL20kiYpEyb0T3jHnCOVwxA=)
2: sEY4t-bPe6btAR7wv3UJWwU-X2E.roa (hash: aU4yEzDR1E1BJAYcSFYYldSWQZ2ELBxfjYhJldcUrMM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:f9:a4:1b:b6:d4:44:97:bc:22:a1:75:97:5c:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24a9d84c6d16c083093c3371b4575d36ef448fe4
Validity
Not Before: Sep 7 04:01:23 2025 GMT
Not After : Sep 8 04:01:23 2025 GMT
Subject: CN=b94d250b1693ae2118b1aa637552955ca47b1992
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:97:b6:7a:a5:f0:99:cb:19:9a:3c:70:9c:f5:
5a:b9:1c:8a:44:1e:16:c9:d5:8e:21:8d:38:a7:7a:
8a:08:c0:48:d3:cd:34:dd:0b:f8:6d:eb:49:c1:25:
ec:f5:41:2d:cf:40:d4:c6:09:9a:7d:87:04:21:4f:
a1:37:24:8f:9c:ca:a9:ff:1e:05:1b:70:e2:5c:7d:
19:02:27:8d:47:23:71:bf:1f:0f:18:da:18:72:c3:
44:90:a6:4d:f4:55:03:a4:c1:3a:69:e1:a1:3b:c8:
df:4e:72:48:e6:3c:2f:f6:2b:e8:52:53:ba:03:07:
0b:b6:82:26:12:4a:51:90:64:58:34:31:14:ea:36:
a8:23:26:40:73:52:53:97:98:96:33:a7:f8:65:3a:
d5:ca:cd:45:f8:ed:0f:85:4b:a2:3e:d1:7d:d7:4f:
3a:28:e3:f0:85:51:37:43:4b:0f:7b:63:b6:a8:57:
92:af:6b:07:a9:89:22:bf:3f:2d:fa:68:91:4f:53:
b1:4b:34:53:e0:e1:a7:88:f3:ae:7f:5a:be:06:1c:
b8:d2:64:ec:25:f7:c2:fa:9e:94:7c:07:6f:9a:84:
ab:26:50:aa:08:4e:9d:70:88:cd:03:1e:70:29:6e:
ac:91:68:75:2f:fe:9b:60:0f:c3:92:be:8b:04:49:
78:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:4D:25:0B:16:93:AE:21:18:B1:AA:63:75:52:95:5C:A4:7B:19:92
X509v3 Authority Key Identifier:
keyid:24:A9:D8:4C:6D:16:C0:83:09:3C:33:71:B4:57:5D:36:EF:44:8F:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:e6:00:71:9a:6e:64:3c:72:2c:ca:1b:61:61:6b:18:91:78:
3c:f2:52:85:ae:4a:cd:0a:f7:0e:b4:a0:fb:af:e3:1a:d6:2e:
5b:62:a0:0e:29:56:10:a5:26:c9:80:b0:94:12:7c:47:a9:6d:
8a:ea:aa:57:b6:37:8a:5c:e3:5b:56:8c:9e:74:fc:f6:e9:90:
31:8e:75:2a:48:ff:dc:22:71:46:c4:5d:34:3d:f3:cc:39:57:
b4:af:f1:e4:8c:6b:af:db:a1:d0:4f:ce:e5:e9:d4:e3:e4:74:
f7:44:83:15:a9:dd:b0:44:45:e5:31:d8:91:a5:27:96:56:69:
20:b8:a9:58:59:bc:6d:5e:d6:cb:27:b3:0b:50:e0:3d:17:64:
22:b8:5f:1e:bc:cf:94:8e:57:99:87:38:a0:69:c7:7a:a9:0c:
3e:20:48:42:eb:35:b7:0e:63:a4:2e:69:d7:29:f1:b5:7e:76:
e5:a3:76:7d:cf:10:2d:07:0b:5f:84:85:11:a7:1b:35:fb:07:
43:06:6c:0a:85:e3:04:19:51:6f:a5:d2:5d:42:57:fc:6d:28:
8d:3e:19:fd:61:5b:6d:d0:da:f5:1f:b6:db:7a:05:15:cc:6a:
cb:fb:05:7f:f2:ab:e5:cc:c4:42:0b:c3:be:c6:15:11:76:84:
b4:2b:52:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:18:37 2025 by rpki-client