Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/JHQF6c7jnXGUTV4xSesBth-a2x4.mft
File: JHQF6c7jnXGUTV4xSesBth-a2x4.mft (raw, json)
Hash identifier: BvbP5bcTuQCyl/6v4SM5AxheEgpDW/67UUumdbTgIgI=
Subject key identifier: FA:7F:3A:91:85:5E:2A:E5:80:68:73:8F:12:F0:94:6D:74:E8:64:75
Authority key identifier: 24:74:05:E9:CE:E3:9D:71:94:4D:5E:31:49:EB:01:B6:1F:9A:DB:1E
Certificate issuer: /CN=247405e9cee39d71944d5e3149eb01b61f9adb1e
Certificate serial: 01974EC5A9F4B9D07CF984DBD24FCACD0127
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JHQF6c7jnXGUTV4xSesBth-a2x4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/JHQF6c7jnXGUTV4xSesBth-a2x4.mft
Manifest number: 108C
Signing time: Sun 08 Jun 2025 09:01:06 +0000
Manifest this update: Sun 08 Jun 2025 09:01:06 +0000
Manifest next update: Mon 09 Jun 2025 09:01:06 +0000
Files and hashes: 1: Ab1tskS4Q67Z2YctzJLxqj53W9g.roa (hash: AZCXpUJa1dgUBTX+Q3S9ZNI6U7aZKWGmwFCH40STagc=)
2: JHQF6c7jnXGUTV4xSesBth-a2x4.crl (hash: UZQVTZ7lSkH8RovggjxncMFfi2MBfC9fLjghxyOPlEA=)
3: ZwMecEU89iNwlEPNMqqdNK21CRk.roa (hash: FTqQ+R8RJ6dWUyPAN/1xgiMPp5vc51aB62sTFqdJ7bA=)
4: f_0cBwbRlTos3u7H8bwrPKcXUN8.roa (hash: xaHHsjfR8A17jN6pVVS9xdai2iZp05T7G1TibqlcLQs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/JHQF6c7jnXGUTV4xSesBth-a2x4.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/JHQF6c7jnXGUTV4xSesBth-a2x4.mft
rsync://rpki.ripe.net/repository/DEFAULT/JHQF6c7jnXGUTV4xSesBth-a2x4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 09:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:c5:a9:f4:b9:d0:7c:f9:84:db:d2:4f:ca:cd:01:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=247405e9cee39d71944d5e3149eb01b61f9adb1e
Validity
Not Before: Jun 8 09:01:06 2025 GMT
Not After : Jun 9 09:01:06 2025 GMT
Subject: CN=fa7f3a91855e2ae58068738f12f0946d74e86475
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:f5:b8:ca:fa:e3:6f:37:2d:a1:fa:44:9d:85:
c0:f1:3e:17:3d:f3:a6:f5:05:0e:94:0a:11:03:ed:
6d:d4:56:1d:62:95:35:ca:df:58:14:d0:3a:23:3c:
bb:76:03:b9:cf:b7:5c:0c:3b:aa:bc:4d:38:7a:64:
60:19:f8:d1:5a:e5:2c:76:4f:1e:16:4c:d4:05:06:
cf:df:40:ca:fc:45:f6:08:a9:ed:43:c2:c6:c7:be:
3a:85:d6:12:80:40:89:f5:e2:09:7d:92:0c:8a:86:
e9:e6:04:5b:ed:a3:06:a3:31:44:f8:f9:6e:86:0b:
25:02:0d:54:ee:76:1b:37:15:8a:10:ac:b1:78:1a:
54:7e:02:1a:5f:b1:71:d0:3b:4f:29:64:59:f7:3c:
6b:79:c4:64:7e:63:8a:2a:f1:09:e9:a2:df:c0:02:
2d:6d:bd:d5:99:48:cc:54:f0:be:48:97:5f:7b:56:
f2:4b:1a:33:d3:a9:29:cb:84:2e:7f:8c:a3:7a:fb:
78:7b:cf:f3:ad:24:8f:5f:8b:58:c4:b5:3f:7b:d6:
65:26:92:9a:cd:6e:c6:4c:8f:ac:d9:c1:df:4f:5a:
67:63:5d:10:f0:cd:54:9a:a4:83:8e:9e:62:54:cd:
5b:6f:aa:8b:bd:b7:f9:71:4f:a6:80:36:80:06:7f:
23:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:7F:3A:91:85:5E:2A:E5:80:68:73:8F:12:F0:94:6D:74:E8:64:75
X509v3 Authority Key Identifier:
keyid:24:74:05:E9:CE:E3:9D:71:94:4D:5E:31:49:EB:01:B6:1F:9A:DB:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JHQF6c7jnXGUTV4xSesBth-a2x4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/JHQF6c7jnXGUTV4xSesBth-a2x4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/JHQF6c7jnXGUTV4xSesBth-a2x4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d4:3e:16:13:2c:32:69:e3:be:cc:3c:fe:38:84:37:3d:0b:8a:
bc:71:21:ab:2b:ab:6d:03:e0:73:b7:cf:f5:7f:18:1b:4b:f6:
88:5b:8c:44:4d:d5:03:c3:5a:57:cc:54:dc:9a:e1:cc:b1:26:
40:8c:21:92:d9:79:43:71:e8:cf:7e:f8:b0:2b:38:bf:f5:fe:
8e:cd:c9:ff:50:94:fb:a4:27:d4:86:ce:8f:25:db:87:2f:a3:
9b:38:d7:d4:71:d6:a9:fa:cc:ef:32:2f:62:73:ce:07:3d:04:
ee:79:ae:00:31:2f:0d:2a:86:7f:7c:d0:ee:d4:bf:3b:92:5e:
4c:bf:65:f0:f7:b2:3c:48:aa:ea:83:a9:99:ec:f4:9c:f9:9a:
81:88:20:97:5f:36:66:e5:ad:d8:da:0b:ff:cf:2b:cf:a3:25:
59:d3:86:7c:4a:0d:88:48:34:16:6c:c2:8c:15:cf:18:c0:91:
64:87:be:91:f0:71:85:37:2e:6c:df:b4:32:4a:28:4d:c0:6a:
ca:7a:ac:34:22:37:ec:53:c5:d7:61:32:79:c1:94:4d:6d:8c:
ce:24:a3:cb:d9:8e:10:c1:18:a8:64:56:97:b7:b5:34:5e:93:
ce:91:9c:d1:70:f7:29:61:b8:f7:19:b1:ec:f4:e9:de:96:a5:
48:97:c9:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 18:49:40 2025 by rpki-client