
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
File: JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft (raw, json)
Hash identifier: 2Ae0cHlm4dS7UB8AMCn4RV63Hf/G2+GhL+oF+PokdHk=
Subject key identifier: 00:CC:2B:2D:66:8B:1B:9A:92:D6:4B:93:BF:CC:2B:F3:4F:CB:66:7D
Authority key identifier: 24:E1:C5:11:0E:0E:90:30:2E:47:01:2F:F5:C8:23:03:A4:66:1A:DE
Certificate issuer: /CN=24e1c5110e0e90302e47012ff5c82303a4661ade
Certificate serial: 019759123880C5CEFCFEDE3A780F3A2F7777
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
Manifest number: 0383
Signing time: Tue 10 Jun 2025 09:00:55 +0000
Manifest this update: Tue 10 Jun 2025 09:00:55 +0000
Manifest next update: Wed 11 Jun 2025 09:00:55 +0000
Files and hashes: 1: JOHFEQ4OkDAuRwEv9cgjA6RmGt4.crl (hash: HbaZzGvavBacYR3/THPFk3D8CtxLKPWNUG1LzizagZQ=)
2: Q9WbsU5WLEBh2f38P2PGkPWP_HU.roa (hash: WTO6N136wAT9bdE+8AHFBftVkmxQHl/oBzZ0du4NvZs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
rsync://rpki.ripe.net/repository/DEFAULT/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 09:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:59:12:38:80:c5:ce:fc:fe:de:3a:78:0f:3a:2f:77:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24e1c5110e0e90302e47012ff5c82303a4661ade
Validity
Not Before: Jun 10 09:00:55 2025 GMT
Not After : Jun 11 09:00:55 2025 GMT
Subject: CN=00cc2b2d668b1b9a92d64b93bfcc2bf34fcb667d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:cd:83:12:65:d5:c1:15:f7:12:67:75:2b:ae:
2b:b6:43:0f:ed:14:02:07:9c:7a:43:7f:38:96:59:
86:d0:26:bd:52:cd:a4:9b:16:cd:5d:9f:42:ca:89:
90:df:6f:51:a3:c4:0c:63:e4:8d:c8:a2:11:2c:09:
a4:a8:71:76:67:20:9f:09:42:90:7c:f0:7a:b6:d3:
b9:a3:1e:91:a7:43:c8:77:b9:a0:83:a3:c9:84:36:
c4:ea:a9:dc:ee:c8:53:b3:0c:f5:e5:06:e2:19:f3:
5d:b2:7b:d7:84:6d:cb:98:b8:a6:3e:db:88:89:70:
d7:87:28:fc:55:8d:e9:70:82:0c:a5:11:f7:31:80:
b6:44:9d:c3:d1:e1:60:ab:00:ae:4d:b0:a4:5f:3a:
be:2a:bf:b8:ec:3a:74:1f:7c:c8:90:3e:97:0c:cb:
95:9d:b4:cf:a7:cc:33:27:a4:bc:f7:b8:cb:92:17:
6a:ea:ab:03:63:ac:34:ea:5e:0b:02:a2:44:a3:66:
30:bb:0b:e2:3f:26:19:45:26:38:51:5c:9a:c1:34:
2c:95:23:4c:92:df:e9:18:71:b8:28:b1:b0:6e:c4:
27:d1:d1:20:39:e5:90:1c:a3:9e:0f:f7:cb:a4:1e:
36:d9:a2:2b:fb:72:c9:da:f1:d3:bc:e2:d8:8e:45:
91:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:CC:2B:2D:66:8B:1B:9A:92:D6:4B:93:BF:CC:2B:F3:4F:CB:66:7D
X509v3 Authority Key Identifier:
keyid:24:E1:C5:11:0E:0E:90:30:2E:47:01:2F:F5:C8:23:03:A4:66:1A:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:86:19:b3:6f:a0:57:e1:36:bb:67:a9:2e:94:8d:f8:6f:1b:
20:b7:8b:22:c4:76:91:a0:92:2d:f9:42:78:16:69:8f:4b:7d:
0e:8f:a6:05:b3:c8:78:44:b3:0e:69:e7:b8:e7:de:4a:44:e7:
23:db:2c:10:2b:0b:12:bf:88:eb:82:31:6d:c3:4a:c3:68:b6:
31:92:46:9d:44:e0:f1:50:74:56:11:09:52:b8:31:cc:d2:95:
9d:01:eb:77:33:d5:fe:a6:5f:76:e5:ea:14:d6:1f:66:b2:ec:
15:40:a5:92:d4:a2:9b:3b:c0:05:5e:91:74:79:72:71:3f:81:
97:b7:37:ec:45:cd:89:b2:80:56:2d:86:2e:6a:5b:4d:74:0a:
14:26:39:93:ba:1f:dd:f1:ad:34:55:a5:50:d8:2a:9d:2c:a4:
50:3a:7e:03:58:2c:39:2a:86:e0:9a:3c:63:94:86:f5:4a:ad:
09:eb:0e:81:61:2d:dc:b8:e4:8f:e9:4a:b6:ca:ca:0b:84:f1:
3e:c7:21:9f:24:54:89:89:83:c7:cf:43:21:75:df:ac:a5:64:
1c:0a:66:e1:15:c4:72:34:a4:1e:1a:20:af:e5:a8:ec:e5:9c:
1b:47:c3:06:fe:11:8b:3e:77:f7:d0:89:8f:ee:3c:97:0a:c0:
94:d7:23:f2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdZEjiAxc78/t46eA86L3d3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI0ZTFjNTExMGUwZTkwMzAyZTQ3MDEyZmY1YzgyMzAzYTQ2
NjFhZGUwHhcNMjUwNjEwMDkwMDU1WhcNMjUwNjExMDkwMDU1WjAzMTEwLwYDVQQD
EygwMGNjMmIyZDY2OGIxYjlhOTJkNjRiOTNiZmNjMmJmMzRmY2I2NjdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAus2DEmXVwRX3Emd1K64rtkMP7RQC
B5x6Q384llmG0Ca9Us2kmxbNXZ9CyomQ329Ro8QMY+SNyKIRLAmkqHF2ZyCfCUKQ
fPB6ttO5ox6Rp0PId7mgg6PJhDbE6qnc7shTswz15QbiGfNdsnvXhG3LmLimPtuI
iXDXhyj8VY3pcIIMpRH3MYC2RJ3D0eFgqwCuTbCkXzq+Kr+47Dp0H3zIkD6XDMuV
nbTPp8wzJ6S897jLkhdq6qsDY6w06l4LAqJEo2YwuwviPyYZRSY4UVyawTQslSNM
kt/pGHG4KLGwbsQn0dEgOeWQHKOeD/fLpB422aIr+3LJ2vHTvOLYjkWRCwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFADMKy1mixuaktZLk7/MK/NPy2Z9MB8GA1UdIwQY
MBaAFCThxREODpAwLkcBL/XIIwOkZhreMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSk9IRkVRNE9rREF1UndFdjljZ2pBNlJtR3Q0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC9iM2JjNzAtNWRiMC00N2I5LWI2OTYt
NjdkYTU0MDkxMTZmLzEvSk9IRkVRNE9rREF1UndFdjljZ2pBNlJtR3Q0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC9iM2JjNzAtNWRiMC00N2I5LWI2OTYtNjdkYTU0MDkxMTZm
LzEvSk9IRkVRNE9rREF1UndFdjljZ2pBNlJtR3Q0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsYYZs2+g
V+E2u2epLpSN+G8bILeLIsR2kaCSLflCeBZpj0t9Do+mBbPIeESzDmnnuOfeSkTn
I9ssECsLEr+I64IxbcNKw2i2MZJGnUTg8VB0VhEJUrgxzNKVnQHrdzPV/qZfduXq
FNYfZrLsFUClktSimzvABV6RdHlycT+Bl7c37EXNibKAVi2GLmpbTXQKFCY5k7of
3fGtNFWlUNgqnSykUDp+A1gsOSqG4Jo8Y5SG9UqtCesOgWEt3Ljkj+lKtsrKC4Tx
PschnyRUiYmDx89DIXXfrKVkHApm4RXEcjSkHhogr+Wo7OWcG0fDBv4Riz5399CJ
j+48lwrAlNcj8g==
-----END CERTIFICATE-----
Generated at Tue Jun 10 17:15:33 2025 by rpki-client