Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/2fbc67-d6f8-4ea4-bde3-53b31044ed5b/1/J0PbfuNKwtTtV49JXgCWy5iv9xw.mft
File: J0PbfuNKwtTtV49JXgCWy5iv9xw.mft (raw, json)
Hash identifier: x2L05NWkRqDTbmETH9JyQ4c5yGrzKEw/FtEFcPzBhAE=
Subject key identifier: 9F:5A:63:B5:FF:C2:9C:E7:95:55:0C:34:66:36:84:86:2C:BB:6E:42
Authority key identifier: 27:43:DB:7E:E3:4A:C2:D4:ED:57:8F:49:5E:00:96:CB:98:AF:F7:1C
Certificate issuer: /CN=2743db7ee34ac2d4ed578f495e0096cb98aff71c
Certificate serial: 019A22F77CF84A3F06B01682DA5B10506641
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J0PbfuNKwtTtV49JXgCWy5iv9xw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/2fbc67-d6f8-4ea4-bde3-53b31044ed5b/1/J0PbfuNKwtTtV49JXgCWy5iv9xw.mft
Manifest number: 0241
Signing time: Mon 27 Oct 2025 00:00:35 +0000
Manifest this update: Mon 27 Oct 2025 00:00:35 +0000
Manifest next update: Tue 28 Oct 2025 00:00:35 +0000
Files and hashes: 1: J0PbfuNKwtTtV49JXgCWy5iv9xw.crl (hash: B0PR6Zs7X6blPPf2ptnq9mNoTfakWUdoQlFpWXmlUvc=)
2: dDAgjd5fwQ3cte1EAxZ7pLJLl0U.roa (hash: 2txr4+GD0XgpxhSLLq5aM5yNR187eckG+kO4tKZmm3U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/2fbc67-d6f8-4ea4-bde3-53b31044ed5b/1/J0PbfuNKwtTtV49JXgCWy5iv9xw.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/2fbc67-d6f8-4ea4-bde3-53b31044ed5b/1/J0PbfuNKwtTtV49JXgCWy5iv9xw.mft
rsync://rpki.ripe.net/repository/DEFAULT/J0PbfuNKwtTtV49JXgCWy5iv9xw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 19:48:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:22:f7:7c:f8:4a:3f:06:b0:16:82:da:5b:10:50:66:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2743db7ee34ac2d4ed578f495e0096cb98aff71c
Validity
Not Before: Oct 27 00:00:35 2025 GMT
Not After : Oct 28 00:00:35 2025 GMT
Subject: CN=9f5a63b5ffc29ce795550c34663684862cbb6e42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:98:dc:1e:5f:50:97:6b:4d:4f:ac:41:ef:ce:
f3:80:9b:61:66:99:68:74:f2:49:04:25:5e:36:52:
44:66:38:d4:45:7a:9d:c7:9b:a3:dd:61:2b:c7:e4:
8d:94:35:35:0e:ce:20:3b:47:2c:8a:db:a3:4d:f9:
35:bc:71:b2:d4:dc:c2:a6:53:84:16:35:3a:a3:a7:
16:45:89:ac:12:b4:4a:67:fe:e8:f9:53:7f:4c:0d:
00:f9:4b:15:24:bb:48:48:8a:fa:4a:ed:85:f7:cf:
95:1f:db:48:d3:91:1c:ea:75:e1:3b:f9:35:84:44:
84:07:5a:78:b4:9a:88:7e:cd:6f:1a:96:36:a8:1f:
36:7d:b9:37:ac:4c:c2:8f:86:27:bc:01:dc:40:ea:
95:66:87:d5:4b:d1:87:7c:54:86:5f:c0:c2:17:94:
dc:34:0b:1f:46:7f:7e:8e:01:79:68:7a:b6:47:86:
4c:c8:58:7f:b8:c6:c6:94:c8:09:85:1d:68:0d:ea:
43:27:03:ac:eb:a0:81:82:65:c5:20:39:45:de:8f:
e0:55:7f:fd:6f:a7:23:95:5f:56:b8:26:04:ff:37:
23:e3:6a:13:0d:c8:16:49:9a:67:93:db:bb:f4:6e:
1a:f2:90:0f:a6:a5:27:9f:be:1d:56:13:e5:4e:c3:
78:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:5A:63:B5:FF:C2:9C:E7:95:55:0C:34:66:36:84:86:2C:BB:6E:42
X509v3 Authority Key Identifier:
keyid:27:43:DB:7E:E3:4A:C2:D4:ED:57:8F:49:5E:00:96:CB:98:AF:F7:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J0PbfuNKwtTtV49JXgCWy5iv9xw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/2fbc67-d6f8-4ea4-bde3-53b31044ed5b/1/J0PbfuNKwtTtV49JXgCWy5iv9xw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/2fbc67-d6f8-4ea4-bde3-53b31044ed5b/1/J0PbfuNKwtTtV49JXgCWy5iv9xw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:af:4f:7e:f0:54:81:d8:b7:bd:1d:80:83:cd:7e:b8:a1:f7:
de:fc:30:7a:96:39:c2:cc:6d:b6:d4:c1:13:ca:92:73:33:ad:
18:0a:66:db:86:a4:1a:99:a1:db:0a:23:d8:d3:4c:76:01:f3:
2a:67:4e:85:da:81:d8:8c:43:95:00:eb:ed:ab:de:cd:c8:e4:
73:0b:f8:a3:ba:bd:de:c3:51:a6:a7:dc:74:5e:62:f2:75:ea:
fe:cc:64:1e:6c:63:37:64:36:4d:c2:1c:80:f6:fb:19:17:41:
b7:ef:31:44:a1:cb:1e:98:7b:60:74:3f:00:cf:fe:0e:cb:f3:
ae:ce:16:08:a6:c3:d6:74:41:83:4a:34:ea:b3:83:81:4c:d1:
25:8e:5e:5f:05:7e:bb:bf:af:80:8d:b7:83:fb:9e:39:1f:4b:
31:67:68:2a:7d:83:83:a9:55:22:0e:70:8b:33:30:8e:5b:9a:
3b:d9:b7:99:14:38:d6:32:c3:6c:0c:ce:9c:59:10:0f:8c:39:
f1:bf:3c:34:ce:9a:1f:e2:6c:e7:3a:97:b8:e7:80:11:65:9c:
d0:6f:3e:c6:df:17:32:e9:50:64:52:f6:f3:83:63:7f:ab:d1:
bd:f9:fb:f4:56:9b:d3:60:65:67:b9:f1:57:b8:ec:ca:68:da:
84:0d:d1:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 04:27:54 2025 by rpki-client