
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
File: JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft (raw, json)
Hash identifier: zIqkb9WFcIdmXJ1Ua1icvHgtLypNFlNAR9xpRjep1Yk=
Subject key identifier: A0:E1:FC:DA:AF:CC:5E:83:D3:C6:B4:5B:A4:1E:29:F4:26:8D:9F:74
Authority key identifier: 24:E1:C5:11:0E:0E:90:30:2E:47:01:2F:F5:C8:23:03:A4:66:1A:DE
Certificate issuer: /CN=24e1c5110e0e90302e47012ff5c82303a4661ade
Certificate serial: 01975CEECA61ECCFD7736B7E736174D5C6ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
Manifest number: 0385
Signing time: Wed 11 Jun 2025 03:00:42 +0000
Manifest this update: Wed 11 Jun 2025 03:00:42 +0000
Manifest next update: Thu 12 Jun 2025 03:00:42 +0000
Files and hashes: 1: JOHFEQ4OkDAuRwEv9cgjA6RmGt4.crl (hash: ZjAc6gbHfVgyfJbdqiX2Lv3bU2xYxeZIePvtbCx6l9g=)
2: Q9WbsU5WLEBh2f38P2PGkPWP_HU.roa (hash: WTO6N136wAT9bdE+8AHFBftVkmxQHl/oBzZ0du4NvZs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
rsync://rpki.ripe.net/repository/DEFAULT/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 23:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5c:ee:ca:61:ec:cf:d7:73:6b:7e:73:61:74:d5:c6:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24e1c5110e0e90302e47012ff5c82303a4661ade
Validity
Not Before: Jun 11 03:00:42 2025 GMT
Not After : Jun 12 03:00:42 2025 GMT
Subject: CN=a0e1fcdaafcc5e83d3c6b45ba41e29f4268d9f74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:71:97:a9:7d:5d:2e:d6:1d:62:b4:83:ca:94:
06:c2:15:db:47:fa:87:a3:18:9a:75:6d:92:27:5a:
61:7d:a4:ed:5f:2c:25:11:25:45:ba:6b:df:56:d0:
c9:0c:b4:e9:c9:be:fe:98:44:b5:f8:bc:81:e5:83:
cd:4e:ac:9b:ea:7a:14:75:c9:36:88:a5:dc:07:83:
92:5e:00:11:aa:eb:e1:05:41:e8:b9:80:ff:c9:e5:
39:3a:57:ab:e1:7b:b5:8c:fa:07:45:6e:2e:58:9c:
90:d1:02:2d:39:2f:7b:a8:9c:be:60:b7:74:eb:62:
01:96:28:8d:63:f8:8b:98:cd:1b:cd:e9:39:6b:ee:
30:50:c9:c2:4b:6e:66:b5:8a:ed:98:10:53:0c:5f:
27:a6:94:3a:f9:82:5c:eb:ab:ca:91:a4:ed:04:2e:
5d:b1:2f:48:d4:39:22:a1:7a:9c:86:19:84:2e:91:
96:20:9d:1e:4b:b7:13:a4:fb:9d:59:df:ac:55:f8:
1d:0b:53:ad:15:ac:03:fa:50:5d:7c:b5:18:e4:85:
ca:86:84:a4:44:cf:b1:3b:c4:a7:bc:a7:ef:5f:da:
9e:a8:a8:2f:05:3e:67:35:90:77:9a:5c:26:1b:54:
cd:30:5e:cd:62:ab:86:d4:93:b1:84:fe:f3:d0:c2:
ca:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:E1:FC:DA:AF:CC:5E:83:D3:C6:B4:5B:A4:1E:29:F4:26:8D:9F:74
X509v3 Authority Key Identifier:
keyid:24:E1:C5:11:0E:0E:90:30:2E:47:01:2F:F5:C8:23:03:A4:66:1A:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:5e:62:e2:6a:e9:d4:1a:e7:a1:bd:c8:fc:00:e6:44:dc:cd:
d0:66:4f:29:99:1e:5c:27:96:74:fa:1b:da:0d:00:7b:7a:36:
97:6d:79:2a:40:5d:40:e3:ce:6a:9c:f5:2d:aa:10:d8:0f:f5:
97:06:fd:90:ae:26:95:05:55:fd:73:a3:77:2b:ea:2e:6a:17:
87:a5:d4:31:a8:3f:62:e9:5f:9c:72:19:ff:20:95:6d:81:d8:
7b:d7:82:b2:26:46:55:d2:4b:bf:9d:78:59:4f:af:6c:73:e1:
e5:e0:2c:37:39:b0:32:c4:ec:f6:6b:8b:83:5a:0e:09:bd:8d:
1a:96:45:07:9f:a6:e5:30:20:d4:7c:9b:fd:68:41:81:88:88:
7b:2a:6f:6d:7b:b9:df:b6:b6:eb:2e:5a:09:2b:6f:6e:a0:9d:
f4:2e:17:c4:a1:bf:01:3d:8e:a1:fb:fa:ec:a4:e3:57:87:6a:
7e:90:c8:06:28:db:13:d6:4a:bf:94:07:67:ed:02:c0:bd:68:
dc:91:d9:9f:61:91:b4:38:78:78:b9:15:cd:07:27:db:1c:5e:
b5:f0:8a:f1:90:40:e0:39:6e:fd:69:28:e9:86:7f:d9:ea:51:
d2:6c:3d:a9:c9:21:60:54:83:5a:63:f6:bd:0c:19:7f:20:ba:
17:21:e5:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 07:02:05 2025 by rpki-client