Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.mft
File: jHFLbLK61OdjmoqicQKPWqG8asI.mft (raw, json)
Hash identifier: CKlEUmj5Aax4EXNJlGIWVkGPNGpwI0QxHAE+GaNAc9k=
Subject key identifier: 86:A8:A1:32:AE:2D:13:14:ED:88:68:7A:69:21:58:2C:28:BE:77:80
Authority key identifier: 8C:71:4B:6C:B2:BA:D4:E7:63:9A:8A:A2:71:02:8F:5A:A1:BC:6A:C2
Certificate issuer: /CN=8c714b6cb2bad4e7639a8aa271028f5aa1bc6ac2
Certificate serial: 01992255BD3133BD22FB30AF8ED93397364C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jHFLbLK61OdjmoqicQKPWqG8asI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.mft
Manifest number: 0623
Signing time: Sun 07 Sep 2025 04:01:08 +0000
Manifest this update: Sun 07 Sep 2025 04:01:08 +0000
Manifest next update: Mon 08 Sep 2025 04:01:08 +0000
Files and hashes: 1: 4SJUH7W4ejICjEKktk38NQNcB4Q.roa (hash: 2qwbbCMLxypAlAiGN2fpQYPHWTBbWd8fpkq/6FE+imI=)
2: jHFLbLK61OdjmoqicQKPWqG8asI.crl (hash: dZZQwy3T7BOxHT7Eoh7EhyC/z+Ki9TTKVqy4QvmC+BM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.mft
rsync://rpki.ripe.net/repository/DEFAULT/jHFLbLK61OdjmoqicQKPWqG8asI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:bd:31:33:bd:22:fb:30:af:8e:d9:33:97:36:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c714b6cb2bad4e7639a8aa271028f5aa1bc6ac2
Validity
Not Before: Sep 7 04:01:08 2025 GMT
Not After : Sep 8 04:01:08 2025 GMT
Subject: CN=86a8a132ae2d1314ed88687a6921582c28be7780
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:be:0c:c7:21:ba:d6:1b:c8:36:95:bb:16:5d:
95:3e:53:2b:0f:1b:7d:55:f6:60:ac:20:82:ad:87:
e2:7e:c0:7c:a6:e5:89:f9:57:49:69:78:0a:c4:0c:
48:67:21:3f:5b:1a:2f:f9:a6:c6:24:36:e2:3f:47:
05:f6:b2:56:f9:1f:b0:7a:4d:59:18:91:40:10:66:
b7:34:8a:0e:4e:97:69:55:a8:71:6b:d8:33:13:31:
b1:77:93:f7:1a:07:0a:b0:99:cc:86:69:11:26:75:
5f:20:52:f8:bc:a3:f6:20:cf:00:8b:c8:a6:ec:91:
58:9a:1b:e0:76:10:83:aa:3d:55:dd:91:8a:05:9a:
66:73:58:93:84:97:08:49:0c:6c:67:fe:05:b8:06:
ee:01:e3:e4:82:a6:c7:6f:b0:29:f2:28:f6:26:6d:
0a:3a:5b:ea:fb:9e:32:cf:21:41:17:48:66:35:3c:
0d:cb:a9:48:fe:df:20:cd:c0:aa:e9:98:d1:49:24:
51:24:82:32:5f:11:b3:01:dd:02:55:1b:06:be:02:
37:c0:65:bc:8b:7e:0b:09:44:8e:69:30:f0:90:41:
23:fd:4a:2b:ef:b4:02:1c:2d:a9:a3:16:4a:d5:69:
8f:c7:b3:1d:06:93:ab:c6:88:8e:ac:fe:81:4d:12:
79:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:A8:A1:32:AE:2D:13:14:ED:88:68:7A:69:21:58:2C:28:BE:77:80
X509v3 Authority Key Identifier:
keyid:8C:71:4B:6C:B2:BA:D4:E7:63:9A:8A:A2:71:02:8F:5A:A1:BC:6A:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jHFLbLK61OdjmoqicQKPWqG8asI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:fc:c9:80:39:55:f6:b0:ad:7e:f4:7e:f7:0f:0a:89:23:68:
73:7a:8e:dc:2f:03:9e:69:c3:87:31:02:a8:20:a2:5d:c9:bb:
be:73:4f:a3:12:02:ee:4c:13:b2:bd:b4:39:b1:41:e7:79:47:
ed:87:28:1f:51:4d:ec:ec:5a:fb:81:22:66:5b:a0:a0:d0:47:
f4:ec:c0:19:90:24:ad:c6:d6:ef:7a:82:43:c0:a0:d8:b0:c9:
ed:83:3b:56:dd:82:39:28:6e:f1:00:2d:3c:ba:cf:64:d9:d4:
f0:2b:ff:20:c4:f3:fb:69:fe:d6:ca:dc:54:38:1d:ae:ae:7f:
a8:30:5a:db:d4:68:2c:ab:ed:2e:f6:67:b7:ca:a0:6c:f7:24:
00:e6:8a:ed:64:10:87:05:a7:de:6b:0d:68:1f:6e:4d:fd:f0:
1f:cb:c4:11:a2:f1:4f:21:a9:d3:9b:b6:af:b9:1f:64:45:94:
df:62:88:85:b9:25:5a:71:43:4b:90:0c:3a:5a:b5:e9:94:2d:
f2:1b:b0:51:71:24:11:75:0d:ba:d9:9e:f2:f1:e9:97:24:ff:
72:c4:de:66:83:0d:2a:03:ed:b5:ac:91:43:0c:21:bd:fa:2e:
f8:bd:6c:16:9a:93:02:40:69:fb:57:5d:e5:4f:15:aa:ae:7f:
d9:a7:55:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:20:58 2025 by rpki-client