Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/ea5b40-2886-4baf-8ea0-113eefa51aa6/1/jKD-wY7yn5qt_pYrz3QIkNsPc5A.mft
File: jKD-wY7yn5qt_pYrz3QIkNsPc5A.mft (raw, json)
Hash identifier: UAExtaO/fyzwWT2oIe4aWpS4HSKgpD5vU/x0Pz84kaM=
Subject key identifier: D2:81:58:1C:C6:A8:99:8C:B1:B3:3C:72:0B:6E:CD:32:95:8E:6F:EE
Authority key identifier: 8C:A0:FE:C1:8E:F2:9F:9A:AD:FE:96:2B:CF:74:08:90:DB:0F:73:90
Certificate issuer: /CN=8ca0fec18ef29f9aadfe962bcf740890db0f7390
Certificate serial: 019922FAB9C6E56EC9A5A74B7453099147C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jKD-wY7yn5qt_pYrz3QIkNsPc5A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/ea5b40-2886-4baf-8ea0-113eefa51aa6/1/jKD-wY7yn5qt_pYrz3QIkNsPc5A.mft
Manifest number: 0E5B
Signing time: Sun 07 Sep 2025 07:01:20 +0000
Manifest this update: Sun 07 Sep 2025 07:01:20 +0000
Manifest next update: Mon 08 Sep 2025 07:01:20 +0000
Files and hashes: 1: jKD-wY7yn5qt_pYrz3QIkNsPc5A.crl (hash: UEMJyEwmV3rvOmalNl8tL1YUTSNqKhIIbcXpydL3u34=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/ea5b40-2886-4baf-8ea0-113eefa51aa6/1/jKD-wY7yn5qt_pYrz3QIkNsPc5A.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/ea5b40-2886-4baf-8ea0-113eefa51aa6/1/jKD-wY7yn5qt_pYrz3QIkNsPc5A.mft
rsync://rpki.ripe.net/repository/DEFAULT/jKD-wY7yn5qt_pYrz3QIkNsPc5A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:b9:c6:e5:6e:c9:a5:a7:4b:74:53:09:91:47:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ca0fec18ef29f9aadfe962bcf740890db0f7390
Validity
Not Before: Sep 7 07:01:20 2025 GMT
Not After : Sep 8 07:01:20 2025 GMT
Subject: CN=d281581cc6a8998cb1b33c720b6ecd32958e6fee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:d8:ee:1c:70:4e:82:d6:ba:62:74:46:2d:f1:
4d:87:9e:77:b6:fa:52:2f:6a:fd:52:b2:81:ce:1c:
97:4c:3b:2e:b1:5c:6c:ae:99:f8:64:38:bb:cc:44:
c8:f2:63:89:f6:e0:cb:5a:26:85:22:0e:0a:b3:6a:
f7:f4:80:a1:40:29:d4:83:2f:e7:ff:fb:cb:40:50:
69:4b:fd:1e:48:41:aa:1d:a5:43:a1:21:13:d3:48:
c9:12:44:f1:75:40:cb:09:93:cf:c3:53:f8:32:f2:
0e:12:b8:e3:4b:af:d7:32:da:57:17:6c:5f:9b:52:
e8:4c:10:a7:e5:6f:0e:50:31:c0:c2:ae:b1:c8:a2:
23:1f:74:63:ce:a3:31:40:b0:f6:42:2a:32:84:a1:
e9:37:3f:44:7c:5b:29:73:7b:0e:52:b6:c7:6d:84:
e0:b8:61:23:a4:b2:be:99:ec:ea:08:a0:c7:23:4a:
23:de:dc:d4:8f:80:dd:36:56:6c:08:2f:e4:6c:ad:
35:b7:9f:39:59:f9:25:44:1a:87:76:c1:c0:26:f0:
23:60:f7:de:20:d2:4f:13:3d:f2:d3:a5:af:5a:6a:
b9:53:76:2f:ad:2b:0d:59:20:b7:62:04:db:30:1d:
56:84:9f:9b:b0:0e:f8:37:d1:1d:b2:4f:55:c0:d4:
65:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:81:58:1C:C6:A8:99:8C:B1:B3:3C:72:0B:6E:CD:32:95:8E:6F:EE
X509v3 Authority Key Identifier:
keyid:8C:A0:FE:C1:8E:F2:9F:9A:AD:FE:96:2B:CF:74:08:90:DB:0F:73:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jKD-wY7yn5qt_pYrz3QIkNsPc5A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/ea5b40-2886-4baf-8ea0-113eefa51aa6/1/jKD-wY7yn5qt_pYrz3QIkNsPc5A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/ea5b40-2886-4baf-8ea0-113eefa51aa6/1/jKD-wY7yn5qt_pYrz3QIkNsPc5A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:69:02:28:18:34:c3:8e:4e:ef:39:2a:06:e9:89:22:40:ae:
0b:5d:8e:94:26:bf:f7:f9:83:4a:0f:ec:51:cc:24:f0:42:f4:
19:3e:6d:76:bb:5f:e4:4c:e9:31:7b:71:3c:af:8c:d2:5a:fa:
df:82:4c:a6:4a:38:27:12:7e:6f:a2:b9:ac:bb:bf:bb:2d:c3:
bb:45:09:3a:25:aa:ff:fc:d5:cc:5e:96:c2:8a:83:e7:08:ea:
e4:23:b3:be:7c:4b:3d:27:25:2c:dc:7c:d1:b5:62:b1:7d:4d:
d3:78:32:73:27:58:6d:1c:2a:1c:5a:13:d7:73:bb:15:82:da:
60:1f:d5:b9:17:22:74:43:44:1c:94:7f:e1:47:34:3b:9f:23:
17:a6:d8:9d:10:c1:4d:6c:56:67:69:7c:99:5d:be:7e:96:e4:
c8:4b:26:57:64:23:6c:22:fb:72:43:09:6a:b0:80:90:11:d4:
db:0c:bd:61:c0:07:de:1c:23:4d:92:f1:3b:f9:6a:2c:12:65:
71:9c:5c:5b:2a:68:8d:dd:19:52:a1:39:5d:bc:a0:a7:ba:b8:
67:f1:37:23:2a:77:d9:4a:9f:43:d1:2f:f8:33:5b:f7:96:c4:
6c:b5:ff:cd:eb:4e:eb:fb:c4:93:7a:66:87:04:03:de:0b:2c:
30:d3:b5:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:26:53 2025 by rpki-client