Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/JHQF6c7jnXGUTV4xSesBth-a2x4.mft
File: JHQF6c7jnXGUTV4xSesBth-a2x4.mft (raw, json)
Hash identifier: bAna0A306ZWPrz/9KYXcKqeRpqq2EvaFPAsaZfQ7CJo=
Subject key identifier: 38:C1:62:5B:B3:8A:DE:A4:CC:74:40:36:F5:8C:2F:61:3A:D3:0A:23
Authority key identifier: 24:74:05:E9:CE:E3:9D:71:94:4D:5E:31:49:EB:01:B6:1F:9A:DB:1E
Certificate issuer: /CN=247405e9cee39d71944d5e3149eb01b61f9adb1e
Certificate serial: 01990CE0F07A3E92E6F2B812F9C3A68D13ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JHQF6c7jnXGUTV4xSesBth-a2x4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/JHQF6c7jnXGUTV4xSesBth-a2x4.mft
Manifest number: 1173
Signing time: Wed 03 Sep 2025 00:01:32 +0000
Manifest this update: Wed 03 Sep 2025 00:01:32 +0000
Manifest next update: Thu 04 Sep 2025 00:01:32 +0000
Files and hashes: 1: Ab1tskS4Q67Z2YctzJLxqj53W9g.roa (hash: AZCXpUJa1dgUBTX+Q3S9ZNI6U7aZKWGmwFCH40STagc=)
2: JHQF6c7jnXGUTV4xSesBth-a2x4.crl (hash: i9y8VVWZKwoPNe9HynQO7+CktSWf+AJ/7RNzq8wfTo4=)
3: ZwMecEU89iNwlEPNMqqdNK21CRk.roa (hash: FTqQ+R8RJ6dWUyPAN/1xgiMPp5vc51aB62sTFqdJ7bA=)
4: f_0cBwbRlTos3u7H8bwrPKcXUN8.roa (hash: xaHHsjfR8A17jN6pVVS9xdai2iZp05T7G1TibqlcLQs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/JHQF6c7jnXGUTV4xSesBth-a2x4.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/JHQF6c7jnXGUTV4xSesBth-a2x4.mft
rsync://rpki.ripe.net/repository/DEFAULT/JHQF6c7jnXGUTV4xSesBth-a2x4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 03 Sep 2025 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:0c:e0:f0:7a:3e:92:e6:f2:b8:12:f9:c3:a6:8d:13:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=247405e9cee39d71944d5e3149eb01b61f9adb1e
Validity
Not Before: Sep 3 00:01:32 2025 GMT
Not After : Sep 4 00:01:32 2025 GMT
Subject: CN=38c1625bb38adea4cc744036f58c2f613ad30a23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:1e:96:d2:3d:70:db:65:db:f5:50:8c:79:7a:
a1:b8:af:5e:7b:49:74:fc:9c:e5:42:19:b0:4e:3c:
1d:c9:92:59:9b:24:6d:53:62:38:6a:74:58:2b:04:
6a:c6:bf:29:54:bd:a9:dd:9a:f0:c2:d3:9e:aa:9e:
81:fa:e0:98:ac:b8:d7:5a:61:4a:20:81:7b:c5:70:
55:a0:1a:22:9a:32:1e:7a:2a:d0:37:3f:ab:19:34:
df:55:27:9a:7d:df:f5:f7:51:04:04:d9:4f:aa:68:
c8:9e:bc:b0:29:b3:09:2d:91:ae:66:79:fd:48:99:
c3:2b:17:d6:18:86:50:d0:27:49:d9:2b:20:fe:a4:
9a:6e:99:e4:d5:c6:4b:6e:47:05:7a:f5:8e:44:c4:
28:d1:57:f7:1f:24:77:28:f0:89:b4:a7:36:62:61:
f6:59:21:be:18:c1:bf:07:5d:be:76:b7:4f:cc:9d:
9f:d4:d4:87:43:a4:fd:7e:a1:12:c1:54:1e:93:10:
c2:10:6e:c2:4d:b3:8d:52:e5:37:af:92:41:64:ad:
40:e2:d8:b0:47:55:8a:46:79:12:47:a4:f3:0a:6d:
3c:b6:38:13:d4:21:b6:ae:e2:b1:c9:b7:11:1e:40:
f8:e0:34:1e:bf:2e:ff:28:a5:d8:16:46:71:62:c3:
c6:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:C1:62:5B:B3:8A:DE:A4:CC:74:40:36:F5:8C:2F:61:3A:D3:0A:23
X509v3 Authority Key Identifier:
keyid:24:74:05:E9:CE:E3:9D:71:94:4D:5E:31:49:EB:01:B6:1F:9A:DB:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JHQF6c7jnXGUTV4xSesBth-a2x4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/JHQF6c7jnXGUTV4xSesBth-a2x4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/JHQF6c7jnXGUTV4xSesBth-a2x4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:7a:42:47:10:09:b9:1f:cb:70:5e:0d:2d:26:d7:fd:5c:e4:
b6:76:66:17:45:85:5a:f6:23:c4:1c:a5:15:b8:5c:b6:91:75:
08:0c:8e:96:bc:c0:63:79:51:c9:b6:a3:9f:35:08:b8:6c:55:
bb:37:65:74:bf:e6:dd:0b:f2:02:b6:49:78:8a:5d:f0:08:ba:
27:97:84:7f:ca:07:3d:d7:44:8c:71:be:17:08:8d:f4:46:fd:
35:18:f8:7e:28:ca:34:f7:23:30:8a:01:1b:c0:2c:a5:a0:2c:
75:2d:04:89:8f:9a:ec:93:85:33:a5:dc:7e:f1:11:65:c2:b1:
68:d3:73:22:42:93:84:73:de:96:df:4d:0f:6c:46:75:07:74:
65:8c:df:89:33:f4:0f:a3:0c:a3:f1:7c:5a:19:f4:9b:99:82:
8d:5c:cd:b4:b8:3d:5c:18:a7:01:c3:27:10:4c:c7:b5:db:09:
a1:2a:bb:2e:1a:a7:9b:11:c8:93:18:2b:82:9b:b4:fb:a3:48:
40:5b:53:d5:2e:59:4e:78:68:c2:16:d5:ba:8a:65:e8:33:46:
2d:32:71:af:a0:3f:4e:cb:cb:be:3e:1d:5c:24:89:ee:db:af:
1d:84:51:61:ab:86:50:cf:a5:3a:6a:ba:37:f8:98:bf:96:aa:
49:f5:7c:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 3 07:01:31 2025 by rpki-client