Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/ae020b-e0d7-451d-bb05-d908faf34ef8/1/JCH_to6rl-JKkGJtkEmL5-1wZvA.mft
File: JCH_to6rl-JKkGJtkEmL5-1wZvA.mft (raw, json)
Hash identifier: O44KEgiHSBxAbONVCHBCmiXbDWb9vrdr7J3OVD7N5AI=
Subject key identifier: F1:10:D0:4D:DD:DA:A7:15:C2:50:1B:74:5A:B9:00:34:FF:D0:31:66
Authority key identifier: 24:21:FF:B6:8E:AB:97:E2:4A:90:62:6D:90:49:8B:E7:ED:70:66:F0
Certificate issuer: /CN=2421ffb68eab97e24a90626d90498be7ed7066f0
Certificate serial: 01974630209E5E694C0C9B1F5D6DDE2BD787
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JCH_to6rl-JKkGJtkEmL5-1wZvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/ae020b-e0d7-451d-bb05-d908faf34ef8/1/JCH_to6rl-JKkGJtkEmL5-1wZvA.mft
Manifest number: 1579
Signing time: Fri 06 Jun 2025 17:00:48 +0000
Manifest this update: Fri 06 Jun 2025 17:00:48 +0000
Manifest next update: Sat 07 Jun 2025 17:00:48 +0000
Files and hashes: 1: JCH_to6rl-JKkGJtkEmL5-1wZvA.crl (hash: e/3KyD7Wr1+USnC461Qh9/itx/YOwJbYA0IMKz74aP4=)
2: N0X6xiVzqXxKq1FAQhtD_X-LptY.roa (hash: /exbdfoldwGhZ8sHg6pfpGAkHOc1ALsLXny1F95l6KY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/ae020b-e0d7-451d-bb05-d908faf34ef8/1/JCH_to6rl-JKkGJtkEmL5-1wZvA.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/ae020b-e0d7-451d-bb05-d908faf34ef8/1/JCH_to6rl-JKkGJtkEmL5-1wZvA.mft
rsync://rpki.ripe.net/repository/DEFAULT/JCH_to6rl-JKkGJtkEmL5-1wZvA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:30:20:9e:5e:69:4c:0c:9b:1f:5d:6d:de:2b:d7:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2421ffb68eab97e24a90626d90498be7ed7066f0
Validity
Not Before: Jun 6 17:00:48 2025 GMT
Not After : Jun 7 17:00:48 2025 GMT
Subject: CN=f110d04ddddaa715c2501b745ab90034ffd03166
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:6a:c0:03:e5:41:04:29:13:14:03:2d:95:0d:
de:9a:a4:aa:3e:5d:f0:8a:50:af:7c:31:04:a8:90:
54:36:8d:38:2d:00:1e:57:ca:68:60:d3:89:b7:1a:
fb:17:20:e6:31:3c:67:ff:aa:0b:da:32:87:11:ee:
fe:ec:30:57:21:29:52:16:19:e5:eb:81:ef:2e:c1:
70:3d:55:e6:f2:87:3d:81:ef:e8:6e:48:bb:d6:5e:
aa:33:91:6c:61:84:2f:23:aa:41:d8:d6:4d:ec:c2:
ca:2a:94:cd:5a:3d:23:63:d0:20:6d:65:be:68:32:
62:6c:45:42:a3:85:b2:3b:ae:e5:ca:b2:b7:00:27:
00:b8:fe:f6:94:28:8d:a8:4e:b3:76:6b:05:63:15:
b1:29:1b:02:80:40:42:12:93:12:96:68:c9:54:94:
29:ef:1c:4e:ad:c8:b0:1d:d8:69:83:d9:aa:d0:2c:
83:74:16:7f:51:21:9b:53:20:10:76:5b:a0:c4:3c:
3f:17:b1:3f:42:bc:b5:79:cd:23:b7:c0:b8:c1:57:
a6:97:94:4e:85:e2:ab:6d:cc:56:f0:bc:13:a7:96:
0f:4d:ae:da:38:25:e2:2b:64:07:6e:52:a6:82:d7:
e0:33:ad:c7:27:5d:20:a4:c1:e1:8a:47:ab:17:69:
7b:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:10:D0:4D:DD:DA:A7:15:C2:50:1B:74:5A:B9:00:34:FF:D0:31:66
X509v3 Authority Key Identifier:
keyid:24:21:FF:B6:8E:AB:97:E2:4A:90:62:6D:90:49:8B:E7:ED:70:66:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JCH_to6rl-JKkGJtkEmL5-1wZvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/ae020b-e0d7-451d-bb05-d908faf34ef8/1/JCH_to6rl-JKkGJtkEmL5-1wZvA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/ae020b-e0d7-451d-bb05-d908faf34ef8/1/JCH_to6rl-JKkGJtkEmL5-1wZvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:47:6b:d4:13:90:08:5e:1c:f0:09:a1:18:dc:ba:b8:81:66:
6d:ca:2d:ee:ff:8a:21:95:8e:40:74:c0:e1:27:7a:7b:38:01:
71:df:80:ca:85:57:27:aa:d4:aa:c6:6f:09:73:40:f0:76:34:
21:eb:3d:24:ba:67:4d:b4:4f:a1:48:a4:f6:dd:40:42:02:7d:
8c:34:32:b8:ab:4b:5a:5e:63:77:3e:41:1a:f1:a8:4a:73:60:
a7:1e:ac:d7:cc:8b:36:b5:8a:8e:64:62:2b:e6:75:2e:90:2e:
1f:11:24:d2:d3:eb:32:d7:18:fa:8b:94:61:cc:59:6b:6c:ea:
3d:b4:b9:89:ad:45:11:ae:65:02:8a:27:8c:68:e0:1a:6f:12:
dc:a0:9e:3f:ea:03:56:9b:73:f2:f1:46:6f:7f:f7:e2:6e:a5:
0d:44:a6:db:8e:42:5a:78:1d:7f:13:31:e1:b9:ee:36:3b:56:
5f:9c:9a:c7:97:f0:59:6b:e4:4d:d5:60:31:6a:6f:36:1a:6b:
cb:f9:c0:91:35:f3:9a:80:ab:9d:21:d4:20:12:07:50:32:01:
da:38:cc:89:0c:a4:53:7d:3a:16:f5:ee:73:53:50:0c:d6:a0:
2f:61:ae:7e:b4:22:1c:f4:e5:fc:a8:e6:42:68:b7:93:57:6c:
97:69:7e:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:08:38 2025 by rpki-client