Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/95df81-fc9e-4c5f-bb43-ffb028f0a02f/1/JAy7mUeWHigo2EdLysoem5FVZWA.mft
File: JAy7mUeWHigo2EdLysoem5FVZWA.mft (raw, json)
Hash identifier: mpjcCbJ4BT2EZ5YfGl09bmdRE3YMmxsPFopfAgw6Thg=
Subject key identifier: D9:AE:67:4B:A7:F6:FC:76:5E:8F:06:C2:A9:F6:07:66:00:02:72:12
Authority key identifier: 24:0C:BB:99:47:96:1E:28:28:D8:47:4B:CA:CA:1E:9B:91:55:65:60
Certificate issuer: /CN=240cbb9947961e2828d8474bcaca1e9b91556560
Certificate serial: 019922C305693B9416E14A26CDCE93667ADA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JAy7mUeWHigo2EdLysoem5FVZWA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/95df81-fc9e-4c5f-bb43-ffb028f0a02f/1/JAy7mUeWHigo2EdLysoem5FVZWA.mft
Manifest number: 13AD
Signing time: Sun 07 Sep 2025 06:00:29 +0000
Manifest this update: Sun 07 Sep 2025 06:00:29 +0000
Manifest next update: Mon 08 Sep 2025 06:00:29 +0000
Files and hashes: 1: JAy7mUeWHigo2EdLysoem5FVZWA.crl (hash: 2ahU/6Or9XW5yQ9pgg9g5xMAH1JdzCWXOPJbc6Z46bs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/95df81-fc9e-4c5f-bb43-ffb028f0a02f/1/JAy7mUeWHigo2EdLysoem5FVZWA.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/95df81-fc9e-4c5f-bb43-ffb028f0a02f/1/JAy7mUeWHigo2EdLysoem5FVZWA.mft
rsync://rpki.ripe.net/repository/DEFAULT/JAy7mUeWHigo2EdLysoem5FVZWA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 06:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:05:69:3b:94:16:e1:4a:26:cd:ce:93:66:7a:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=240cbb9947961e2828d8474bcaca1e9b91556560
Validity
Not Before: Sep 7 06:00:29 2025 GMT
Not After : Sep 8 06:00:29 2025 GMT
Subject: CN=d9ae674ba7f6fc765e8f06c2a9f6076600027212
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:1a:95:9e:c2:ce:30:ac:cd:7e:31:28:9d:09:
91:bc:9b:10:a4:f2:0c:27:c6:b6:55:bf:bf:8c:80:
d8:42:5e:6b:aa:b2:c0:db:12:d1:01:33:91:cf:e0:
62:7f:23:99:61:84:2e:2e:fe:f3:14:23:a3:05:ef:
02:ad:e1:2d:7c:e3:a2:62:d6:50:b0:6b:f5:59:ef:
ae:1a:2c:e9:25:1a:d7:a1:42:b5:4e:09:6a:b1:8d:
9f:f8:32:02:28:d2:05:7c:f4:b7:65:14:c7:95:58:
df:4d:6b:42:a8:40:6e:25:d4:6b:cd:86:ba:78:dc:
71:15:31:ef:59:cd:12:ea:37:cb:bd:3c:0a:aa:48:
5e:5b:bc:b8:6a:45:e0:d0:e9:cf:58:1f:9f:15:d6:
fb:f3:17:8a:21:b3:7d:f8:a8:ab:d4:d4:54:0a:5f:
a3:bb:a9:aa:2e:85:8c:be:b8:a5:ce:20:13:16:45:
55:a1:c2:f2:ab:7e:26:24:ed:c7:07:79:50:2f:6b:
29:60:13:6a:2d:cd:08:00:2b:4d:32:68:0d:45:31:
63:8a:46:92:5a:e4:37:ab:66:3b:3a:25:2a:90:45:
16:46:c9:35:96:ea:e6:63:88:ef:7f:ac:78:7b:8e:
f4:e7:3e:ed:08:85:21:a9:1d:c7:5d:04:13:1d:6e:
53:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:AE:67:4B:A7:F6:FC:76:5E:8F:06:C2:A9:F6:07:66:00:02:72:12
X509v3 Authority Key Identifier:
keyid:24:0C:BB:99:47:96:1E:28:28:D8:47:4B:CA:CA:1E:9B:91:55:65:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JAy7mUeWHigo2EdLysoem5FVZWA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/95df81-fc9e-4c5f-bb43-ffb028f0a02f/1/JAy7mUeWHigo2EdLysoem5FVZWA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/95df81-fc9e-4c5f-bb43-ffb028f0a02f/1/JAy7mUeWHigo2EdLysoem5FVZWA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:1b:ee:52:b1:16:5e:33:64:8c:7f:83:d6:86:4b:d8:7d:31:
de:44:fe:5a:76:de:73:43:e4:a8:78:cc:40:a5:29:13:96:98:
23:0d:90:09:27:e3:42:51:49:c7:9e:dd:38:1c:ea:22:7b:e8:
9d:fc:d1:06:9d:22:51:e6:30:80:37:55:34:04:58:a0:a3:70:
ad:8c:9a:f0:2b:28:ca:6c:bf:5d:fe:61:d6:8f:dd:24:2c:cd:
c0:8d:50:58:de:25:86:98:2d:29:63:57:9b:33:ac:e3:8d:52:
6d:ce:53:5f:59:29:2f:61:55:05:37:f5:18:4d:a5:8f:b8:46:
15:c9:ef:e4:4c:5d:20:e6:ad:ae:b2:45:9b:c0:5e:7d:18:0b:
a6:7e:b6:89:8e:ff:ca:31:0e:ad:32:ea:9c:fe:bf:ed:6f:96:
29:bc:9a:4d:32:8f:d2:8d:e2:fb:37:85:e7:29:38:6d:81:96:
33:18:81:11:ad:19:8c:a4:f4:3e:9a:7c:f9:43:84:b5:27:4e:
56:c7:a6:65:54:dc:77:53:84:92:b6:06:33:1e:24:dd:4b:80:
aa:1c:47:90:62:72:da:e3:5e:0c:bc:29:91:3c:b3:d0:52:8c:
25:c2:b9:50:d0:a9:cc:40:69:12:11:5d:aa:d7:e2:7c:61:cc:
fb:67:16:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:49:35 2025 by rpki-client