Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/ae020b-e0d7-451d-bb05-d908faf34ef8/1/JCH_to6rl-JKkGJtkEmL5-1wZvA.mft
File: JCH_to6rl-JKkGJtkEmL5-1wZvA.mft (raw, json)
Hash identifier: BH8SVTplOx9jK95MTev1oMWjBcxxDt6LyVnzBYogC3o=
Subject key identifier: B2:DE:66:E8:3D:FB:0C:37:E7:CC:88:27:F7:B8:58:F0:ED:F2:B1:89
Authority key identifier: 24:21:FF:B6:8E:AB:97:E2:4A:90:62:6D:90:49:8B:E7:ED:70:66:F0
Certificate issuer: /CN=2421ffb68eab97e24a90626d90498be7ed7066f0
Certificate serial: 01958BF244456473BC189AE838D6D439C7AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JCH_to6rl-JKkGJtkEmL5-1wZvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/ae020b-e0d7-451d-bb05-d908faf34ef8/1/JCH_to6rl-JKkGJtkEmL5-1wZvA.mft
Manifest number: 1494
Signing time: Wed 12 Mar 2025 20:01:04 +0000
Manifest this update: Wed 12 Mar 2025 20:01:04 +0000
Manifest next update: Thu 13 Mar 2025 20:01:04 +0000
Files and hashes: 1: JCH_to6rl-JKkGJtkEmL5-1wZvA.crl (hash: LcAp9K/KeXFIbLXxq//KiA3y6sXma2sT6cGLsQ3yR8A=)
2: N0X6xiVzqXxKq1FAQhtD_X-LptY.roa (hash: /exbdfoldwGhZ8sHg6pfpGAkHOc1ALsLXny1F95l6KY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/ae020b-e0d7-451d-bb05-d908faf34ef8/1/JCH_to6rl-JKkGJtkEmL5-1wZvA.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/ae020b-e0d7-451d-bb05-d908faf34ef8/1/JCH_to6rl-JKkGJtkEmL5-1wZvA.mft
rsync://rpki.ripe.net/repository/DEFAULT/JCH_to6rl-JKkGJtkEmL5-1wZvA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:f2:44:45:64:73:bc:18:9a:e8:38:d6:d4:39:c7:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2421ffb68eab97e24a90626d90498be7ed7066f0
Validity
Not Before: Mar 12 20:01:04 2025 GMT
Not After : Mar 13 20:01:04 2025 GMT
Subject: CN=b2de66e83dfb0c37e7cc8827f7b858f0edf2b189
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:22:45:f1:2c:bf:af:4f:f0:aa:6a:83:be:7a:
d9:7b:30:76:2a:cc:df:06:ae:4f:cc:8a:65:2b:03:
10:c5:8e:9d:67:a7:2d:e7:e8:63:9f:21:1e:4f:22:
e2:72:d8:9d:21:53:e9:fc:2d:ba:00:fa:89:68:f3:
f8:a0:9e:11:c0:30:cd:c4:e5:b0:dd:64:cc:86:62:
ae:bd:41:b2:18:df:93:0e:af:94:b8:c3:27:69:62:
56:a2:09:d4:32:32:bd:d4:7d:dc:09:41:18:f5:ec:
66:2b:de:5f:0e:b8:1c:92:b9:f5:16:60:3e:d7:b2:
c5:31:e5:03:91:40:82:ce:4e:36:0f:40:af:07:0d:
0f:a3:c6:64:4e:68:fa:52:e5:85:74:0b:38:8f:46:
b8:6e:ab:4d:39:0d:db:5b:c2:df:d5:36:84:7d:3e:
a8:55:bc:bd:e8:78:c0:91:ea:e0:49:79:f4:19:4b:
78:a2:0d:7e:a6:a3:d5:c7:44:63:b5:ee:a8:ba:67:
cf:9c:58:d1:3a:91:9d:01:33:dd:98:bd:38:ba:d3:
ee:c8:68:b5:25:1c:ac:c3:1e:b1:68:a5:02:63:36:
aa:67:48:20:64:c0:4a:c7:a9:e4:4c:f0:0b:c0:2a:
c2:3e:59:74:31:c0:5b:14:94:2b:4f:27:64:bf:d5:
50:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:DE:66:E8:3D:FB:0C:37:E7:CC:88:27:F7:B8:58:F0:ED:F2:B1:89
X509v3 Authority Key Identifier:
keyid:24:21:FF:B6:8E:AB:97:E2:4A:90:62:6D:90:49:8B:E7:ED:70:66:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JCH_to6rl-JKkGJtkEmL5-1wZvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/ae020b-e0d7-451d-bb05-d908faf34ef8/1/JCH_to6rl-JKkGJtkEmL5-1wZvA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/ae020b-e0d7-451d-bb05-d908faf34ef8/1/JCH_to6rl-JKkGJtkEmL5-1wZvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:d6:17:18:73:af:3b:79:cc:b4:7f:40:64:80:f5:22:76:6a:
ec:42:06:93:84:25:e4:51:85:96:e6:e3:5d:82:cf:f3:61:e0:
79:a4:41:20:69:50:f6:fc:b7:c7:6e:c9:99:35:17:40:27:e5:
02:9f:ce:47:7b:a6:05:63:1a:be:9d:76:55:9a:84:d7:aa:cd:
51:88:f4:f9:61:e6:48:82:96:4f:3f:ad:d0:b0:64:6d:37:97:
a1:a6:4b:90:43:10:bf:c2:a7:fc:a3:9d:19:97:11:9d:7b:97:
52:4b:df:78:d3:e5:b7:96:4f:06:86:7c:5f:46:52:19:10:1a:
1e:99:6f:7a:69:5e:d5:63:80:b9:23:40:65:5f:09:df:be:0d:
9f:ab:76:df:08:3b:5a:ae:a9:7f:74:e0:63:97:69:57:b0:ea:
33:4f:4a:8a:ab:d1:db:3a:2b:fd:b0:07:53:d5:8b:4d:8e:9f:
25:68:d5:20:b7:64:76:06:72:87:82:c9:45:f2:40:88:02:a4:
9e:0d:73:e4:d8:51:c4:8c:96:e5:40:2e:f7:e9:02:12:e1:07:
cc:e2:ce:f7:e5:27:f9:d0:31:76:8e:3f:0b:d2:18:11:54:05:
90:19:5f:e0:2e:42:1c:d6:64:1d:d1:b5:00:d7:19:a5:e1:06:
e5:ac:2a:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:35:58 2025 by rpki-client