Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/ae020b-e0d7-451d-bb05-d908faf34ef8/1/JCH_to6rl-JKkGJtkEmL5-1wZvA.mft
File: JCH_to6rl-JKkGJtkEmL5-1wZvA.mft (raw, json)
Hash identifier: VJz9coL0jHyeWxDwVcB+jeNSBAfvJMKcf9bXxY0iERQ=
Subject key identifier: 45:8D:51:B1:DA:48:C9:77:3A:19:32:DA:FC:8E:33:70:19:0B:F8:C1
Authority key identifier: 24:21:FF:B6:8E:AB:97:E2:4A:90:62:6D:90:49:8B:E7:ED:70:66:F0
Certificate issuer: /CN=2421ffb68eab97e24a90626d90498be7ed7066f0
Certificate serial: 019A71499ED31D471C64680A96FA658A7C82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JCH_to6rl-JKkGJtkEmL5-1wZvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/ae020b-e0d7-451d-bb05-d908faf34ef8/1/JCH_to6rl-JKkGJtkEmL5-1wZvA.mft
Manifest number: 171D
Signing time: Tue 11 Nov 2025 05:00:41 +0000
Manifest this update: Tue 11 Nov 2025 05:00:41 +0000
Manifest next update: Wed 12 Nov 2025 05:00:41 +0000
Files and hashes: 1: JCH_to6rl-JKkGJtkEmL5-1wZvA.crl (hash: TRElgK7kDt/Kwoagrs4/Ys5BcDpZrIs9z/FZZsB8vQY=)
2: N0X6xiVzqXxKq1FAQhtD_X-LptY.roa (hash: /exbdfoldwGhZ8sHg6pfpGAkHOc1ALsLXny1F95l6KY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/ae020b-e0d7-451d-bb05-d908faf34ef8/1/JCH_to6rl-JKkGJtkEmL5-1wZvA.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/ae020b-e0d7-451d-bb05-d908faf34ef8/1/JCH_to6rl-JKkGJtkEmL5-1wZvA.mft
rsync://rpki.ripe.net/repository/DEFAULT/JCH_to6rl-JKkGJtkEmL5-1wZvA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:49:9e:d3:1d:47:1c:64:68:0a:96:fa:65:8a:7c:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2421ffb68eab97e24a90626d90498be7ed7066f0
Validity
Not Before: Nov 11 05:00:41 2025 GMT
Not After : Nov 12 05:00:41 2025 GMT
Subject: CN=458d51b1da48c9773a1932dafc8e3370190bf8c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:e2:14:b6:4e:26:69:d1:92:b8:28:4f:c8:d7:
98:3d:85:28:60:8b:11:ef:6e:69:06:0f:9b:78:93:
fb:90:81:3f:54:02:2e:99:87:87:03:b2:0a:76:1f:
ed:01:9a:fa:44:ea:65:41:13:6c:2c:f7:1d:8a:21:
7f:20:fb:f0:84:3f:05:b0:60:53:2a:24:19:b3:d3:
4f:e7:99:b6:b9:8f:9c:d4:c5:f4:f0:a7:70:04:7c:
6c:ed:cf:98:9e:e1:e3:a6:dc:17:0b:68:39:4b:43:
81:f4:85:13:43:1b:c2:02:17:c8:f2:76:df:64:81:
d5:a0:6a:5c:68:e1:04:86:4b:72:48:ca:30:49:29:
33:a2:59:d8:b3:c8:3b:0d:c2:f6:1b:be:99:78:2a:
19:43:ca:e0:77:86:70:ab:be:9d:de:1b:49:64:74:
6e:63:c6:77:5d:2f:a6:74:69:b6:49:a0:98:81:85:
38:d9:a5:d0:bc:5b:02:71:50:34:98:07:11:df:c9:
05:2a:17:89:56:10:d3:07:08:ed:39:7f:87:3d:ee:
df:8a:f7:02:84:bd:9b:3d:ab:7e:d1:c4:f5:ba:ba:
fb:2d:45:e8:c4:c5:c1:97:fa:a8:40:0a:8e:5a:b6:
60:1e:e6:08:59:37:60:f4:9f:b0:00:fd:6c:b0:1e:
1c:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:8D:51:B1:DA:48:C9:77:3A:19:32:DA:FC:8E:33:70:19:0B:F8:C1
X509v3 Authority Key Identifier:
keyid:24:21:FF:B6:8E:AB:97:E2:4A:90:62:6D:90:49:8B:E7:ED:70:66:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JCH_to6rl-JKkGJtkEmL5-1wZvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/ae020b-e0d7-451d-bb05-d908faf34ef8/1/JCH_to6rl-JKkGJtkEmL5-1wZvA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/ae020b-e0d7-451d-bb05-d908faf34ef8/1/JCH_to6rl-JKkGJtkEmL5-1wZvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:43:f4:18:f3:24:30:5a:3d:bc:40:1d:53:3c:9d:af:f6:3e:
db:65:43:0b:b7:89:64:0e:c3:68:f0:52:33:72:94:ab:76:0f:
ef:b9:74:e6:ad:12:56:6a:e6:25:84:35:9c:55:fb:14:05:61:
13:cd:2d:a2:6b:dc:0b:d9:3d:54:17:45:4b:1f:1f:23:1d:f4:
ad:a6:6e:2f:b3:26:71:16:d6:30:5b:44:bc:8d:f7:81:18:0d:
89:ae:03:06:8d:d8:66:91:11:3a:02:c4:4b:51:45:f5:c8:06:
7b:33:b8:31:29:a8:3b:2f:4f:dd:c3:36:0f:69:16:7e:a1:79:
37:32:96:25:99:82:80:15:64:aa:fa:31:74:58:c5:16:c7:db:
17:f0:8f:d2:6b:d7:fe:5c:5e:58:49:53:5b:66:7b:c4:37:d2:
d8:bf:4f:4b:ca:d1:27:b9:e4:eb:85:7c:18:55:5d:96:2a:4c:
86:65:eb:62:d9:00:f1:cb:72:f7:12:f1:97:2d:24:6c:59:08:
f1:82:78:c6:3a:d2:13:40:3e:68:1e:c1:e2:70:ce:d2:4d:fa:
39:c9:46:a5:dd:7b:fa:7d:f4:31:db:b0:ad:ab:f5:95:84:a5:
8d:8f:52:1b:34:42:61:1a:0e:9d:8d:48:c4:47:07:fe:7c:2e:
d9:a5:7e:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:23:47 2025 by rpki-client