Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
File: JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft (raw, json)
Hash identifier: UgHcWr7P5TkvktaWnUZPDSBZLKgjYCV6fmiTWOhfHIU=
Subject key identifier: BD:6C:50:54:84:A9:23:10:58:2D:B3:0A:77:86:F4:33:23:63:16:B2
Authority key identifier: 24:E1:C5:11:0E:0E:90:30:2E:47:01:2F:F5:C8:23:03:A4:66:1A:DE
Certificate issuer: /CN=24e1c5110e0e90302e47012ff5c82303a4661ade
Certificate serial: 019755356ED6666F9A5E99899626CABA27D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
Manifest number: 0381
Signing time: Mon 09 Jun 2025 15:00:54 +0000
Manifest this update: Mon 09 Jun 2025 15:00:54 +0000
Manifest next update: Tue 10 Jun 2025 15:00:54 +0000
Files and hashes: 1: JOHFEQ4OkDAuRwEv9cgjA6RmGt4.crl (hash: EwIvqRxFe6YXhRVq1tCfRgjCiNk+wzokCYLmTWCfCmA=)
2: Q9WbsU5WLEBh2f38P2PGkPWP_HU.roa (hash: WTO6N136wAT9bdE+8AHFBftVkmxQHl/oBzZ0du4NvZs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
rsync://rpki.ripe.net/repository/DEFAULT/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:55:35:6e:d6:66:6f:9a:5e:99:89:96:26:ca:ba:27:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24e1c5110e0e90302e47012ff5c82303a4661ade
Validity
Not Before: Jun 9 15:00:54 2025 GMT
Not After : Jun 10 15:00:54 2025 GMT
Subject: CN=bd6c505484a92310582db30a7786f433236316b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:93:54:ad:fd:01:86:4d:e3:86:00:d0:bd:d0:
fc:c3:72:04:ab:d9:9b:76:53:7d:23:b5:be:e1:58:
9f:b6:b8:45:80:3d:f6:f2:b6:3c:fd:d4:f3:a6:c7:
98:dd:31:0f:a1:16:10:63:e4:e6:61:8e:db:2b:3f:
15:54:70:d8:3b:1c:b5:92:09:99:81:28:8b:3a:41:
54:09:4b:25:0a:86:49:c2:59:a5:15:5e:12:f7:69:
c6:9e:38:3a:4c:60:80:dd:ec:62:69:ff:5d:1e:b5:
a4:26:d9:9c:98:26:b1:7e:78:c6:34:af:1a:1c:61:
86:1f:6c:a3:a0:b3:8a:85:7f:c1:e9:d2:13:95:64:
eb:71:6f:23:8f:80:fc:7e:cb:c0:3c:74:d2:73:33:
a9:3e:78:8e:05:1c:d4:e5:9d:de:3d:34:1a:48:8e:
58:40:be:64:ee:a2:3c:c3:51:2f:bc:83:dd:3d:bd:
23:29:cd:d6:69:3c:ca:c8:e3:9a:11:37:93:75:c4:
08:8d:60:6f:f9:c6:ce:32:58:a5:72:cb:bf:73:a3:
b8:ed:9c:83:21:d2:e9:4e:f2:9e:57:e2:2e:51:63:
ea:2b:2c:52:52:0f:c2:3f:15:e2:ca:fb:e1:58:dd:
6a:ef:87:cd:5f:f6:29:d6:a7:37:4d:8c:5b:13:7c:
9f:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:6C:50:54:84:A9:23:10:58:2D:B3:0A:77:86:F4:33:23:63:16:B2
X509v3 Authority Key Identifier:
keyid:24:E1:C5:11:0E:0E:90:30:2E:47:01:2F:F5:C8:23:03:A4:66:1A:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:0b:4a:fd:72:e0:61:24:e2:c0:80:45:e8:e1:c0:1c:78:e9:
18:1f:25:4c:49:e7:64:19:e0:eb:8d:9f:b6:7c:70:fc:e1:93:
e9:6a:cf:d1:75:6d:04:91:14:d7:77:01:92:8f:6c:24:95:9e:
70:33:4b:e5:07:06:1b:61:11:4c:4e:95:f1:eb:4a:a6:20:bb:
73:e5:c0:b5:9c:46:cc:84:40:80:bc:af:b8:b6:ac:06:1f:37:
4d:ea:29:01:c6:a8:e7:c7:9a:4b:12:00:ca:27:94:06:ba:f6:
b0:70:88:0a:26:80:08:b5:9e:68:00:48:d6:7b:23:cb:a7:95:
b6:45:69:7b:df:5e:b8:c3:d7:cc:86:0d:18:f7:10:fe:c9:ec:
ab:1d:44:a0:b0:b1:3b:7b:4e:ec:12:b1:f9:15:51:69:bc:82:
2d:88:6a:32:4f:d5:33:e8:12:94:80:77:7f:b5:d0:e6:a6:a1:
1e:4a:fb:b1:a4:7e:70:f1:27:ab:bb:75:24:9c:b1:9a:df:9e:
0c:a2:db:e8:63:9c:e7:6b:5e:6d:66:13:b5:88:c0:ac:d8:28:
1d:cd:59:f4:f9:b3:8c:06:e8:c0:b3:06:36:41:e8:fd:06:d1:
76:b9:95:20:10:86:14:8c:60:62:1b:d2:75:b1:70:1a:ac:11:
35:b1:15:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 23:45:07 2025 by rpki-client