Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/68d143-1237-4912-a892-cef01d877ebe/1/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.mft
File: jVCzqaBQOQVZbHf1gCvvn8c9ZH0.mft (raw, json)
Hash identifier: RjtiUe2fZ4M6zBVGpK0S/9Xll9yzQnBz8E5q15oMp4g=
Subject key identifier: AD:87:8E:01:20:98:2B:02:98:CF:BF:05:51:F3:BD:EC:2F:7D:14:8E
Authority key identifier: 8D:50:B3:A9:A0:50:39:05:59:6C:77:F5:80:2B:EF:9F:C7:3D:64:7D
Certificate issuer: /CN=8d50b3a9a0503905596c77f5802bef9fc73d647d
Certificate serial: 019A288BA3B770B4E116353B2C956F3F6E33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/68d143-1237-4912-a892-cef01d877ebe/1/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.mft
Manifest number: 0373
Signing time: Tue 28 Oct 2025 02:00:31 +0000
Manifest this update: Tue 28 Oct 2025 02:00:31 +0000
Manifest next update: Wed 29 Oct 2025 02:00:31 +0000
Files and hashes: 1: a8IXKpHV3NWa7LICJ758JvcRIvY.roa (hash: X2zHQ2bSxMYP23moGooOgAvqdrG84QharuHsT6bVARw=)
2: jVCzqaBQOQVZbHf1gCvvn8c9ZH0.crl (hash: 9f7wdWXLgeOGztygsTugfpU6/QPW1GAhyaIz7iR/YJw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/68d143-1237-4912-a892-cef01d877ebe/1/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/68d143-1237-4912-a892-cef01d877ebe/1/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.mft
rsync://rpki.ripe.net/repository/DEFAULT/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 00:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:28:8b:a3:b7:70:b4:e1:16:35:3b:2c:95:6f:3f:6e:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d50b3a9a0503905596c77f5802bef9fc73d647d
Validity
Not Before: Oct 28 02:00:31 2025 GMT
Not After : Oct 29 02:00:31 2025 GMT
Subject: CN=ad878e0120982b0298cfbf0551f3bdec2f7d148e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:a3:4f:d6:69:f5:8f:0b:22:e2:42:0a:d6:7c:
5e:84:e8:f6:6e:99:36:eb:4b:ec:70:13:16:83:0d:
e4:e7:20:91:de:3d:fb:33:0d:a3:16:52:c0:c2:f2:
ee:9f:3e:9d:e4:3d:53:b6:1c:67:48:9d:21:50:f4:
1b:f9:60:37:1c:eb:7f:55:7c:78:c6:b6:2e:04:61:
ef:94:86:a6:a0:ac:b1:57:bc:b3:1d:9e:72:49:20:
1b:f6:ce:c8:df:b0:5e:75:88:2f:db:a6:32:92:c8:
86:d2:18:0c:24:e3:e1:0a:74:fe:01:5b:04:a9:5c:
9d:50:96:74:7e:87:3e:1e:34:37:58:be:ff:1c:14:
c8:a9:93:d2:e2:9f:28:ed:1c:51:96:5a:a8:44:fd:
f8:ff:55:dc:88:e6:94:cc:b8:cc:36:2d:85:71:5f:
19:67:95:72:d5:28:99:a2:c4:18:34:0e:06:f0:f4:
eb:06:e5:b9:07:31:b0:16:db:14:c4:da:3e:18:53:
00:b8:70:1b:31:69:7a:9c:db:45:61:4e:e7:0f:d7:
00:3b:d6:63:24:ef:0b:9a:57:4d:d1:39:da:99:50:
2a:24:32:9c:41:68:c1:40:2b:b5:7e:bf:41:04:66:
b2:fc:a6:99:0f:f3:99:02:c0:12:8d:40:04:a0:0a:
64:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:87:8E:01:20:98:2B:02:98:CF:BF:05:51:F3:BD:EC:2F:7D:14:8E
X509v3 Authority Key Identifier:
keyid:8D:50:B3:A9:A0:50:39:05:59:6C:77:F5:80:2B:EF:9F:C7:3D:64:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/68d143-1237-4912-a892-cef01d877ebe/1/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/68d143-1237-4912-a892-cef01d877ebe/1/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:3b:25:75:30:e0:95:75:74:27:69:e6:82:ea:04:76:4c:d7:
60:66:d6:ec:4e:b5:f3:d4:92:58:bc:4a:8b:67:d7:c2:3f:09:
b9:24:af:6f:dd:3b:99:96:72:54:ef:ef:cf:7a:ef:83:20:11:
79:d2:b9:61:c2:e4:c4:ed:71:51:43:49:9f:eb:03:02:cd:be:
0a:33:27:19:29:cf:59:08:c3:5b:df:70:ad:40:fd:1a:4e:57:
32:9c:d4:35:d4:30:c8:55:f9:64:0c:67:84:8a:ba:c4:47:a8:
79:00:f3:57:ec:16:eb:be:c9:96:fc:35:82:0e:ce:df:32:3a:
e2:05:12:3d:d9:0b:12:0b:5a:89:fd:9d:7d:b8:ee:3c:50:70:
cf:db:4d:48:8f:8b:e1:d4:7b:c9:c6:19:f7:20:7e:fa:90:93:
3b:f1:b0:56:83:59:f9:e1:fd:9f:4b:c8:04:4b:07:d5:85:52:
f3:53:5c:fe:b2:c4:2b:22:e7:de:54:ec:71:51:df:5f:e0:ea:
cd:19:02:20:0d:eb:41:77:41:c5:ff:07:96:9c:e3:95:86:7d:
04:fe:30:f8:a9:c9:e0:5a:e0:8c:7f:dd:13:bd:05:ee:eb:2f:
c4:52:4a:57:69:a1:0a:9b:48:a0:70:aa:70:3c:72:f8:04:e7:
ca:b1:e0:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 06:09:07 2025 by rpki-client