Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/68d143-1237-4912-a892-cef01d877ebe/1/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.mft
File: jVCzqaBQOQVZbHf1gCvvn8c9ZH0.mft (raw, json)
Hash identifier: tWpsu3Ue73A7oRAqxSP/6UUC2OEC+C7khZYdpwntJyw=
Subject key identifier: D1:17:4E:AF:48:D5:17:D1:ED:C0:55:EF:8A:30:95:D4:3E:7A:05:9C
Authority key identifier: 8D:50:B3:A9:A0:50:39:05:59:6C:77:F5:80:2B:EF:9F:C7:3D:64:7D
Certificate issuer: /CN=8d50b3a9a0503905596c77f5802bef9fc73d647d
Certificate serial: 01974AB1922F0CE63172F284BBC80CE12142
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/68d143-1237-4912-a892-cef01d877ebe/1/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.mft
Manifest number: 01F7
Signing time: Sat 07 Jun 2025 14:00:40 +0000
Manifest this update: Sat 07 Jun 2025 14:00:40 +0000
Manifest next update: Sun 08 Jun 2025 14:00:40 +0000
Files and hashes: 1: a8IXKpHV3NWa7LICJ758JvcRIvY.roa (hash: X2zHQ2bSxMYP23moGooOgAvqdrG84QharuHsT6bVARw=)
2: jVCzqaBQOQVZbHf1gCvvn8c9ZH0.crl (hash: HYccPSJixsSKt50rE/ITUUkHK8XxBNBo57aCeEnIKiE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/68d143-1237-4912-a892-cef01d877ebe/1/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/68d143-1237-4912-a892-cef01d877ebe/1/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.mft
rsync://rpki.ripe.net/repository/DEFAULT/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:b1:92:2f:0c:e6:31:72:f2:84:bb:c8:0c:e1:21:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d50b3a9a0503905596c77f5802bef9fc73d647d
Validity
Not Before: Jun 7 14:00:40 2025 GMT
Not After : Jun 8 14:00:40 2025 GMT
Subject: CN=d1174eaf48d517d1edc055ef8a3095d43e7a059c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:20:25:be:c0:8b:bd:5c:0d:a4:b9:fe:d3:a7:
95:95:65:bb:ef:dc:39:50:9b:2b:f7:c4:9c:c4:6d:
3e:17:e4:79:6d:49:04:81:56:0b:b5:fc:b8:8c:dd:
b4:73:99:45:01:41:f1:ef:8c:37:51:b0:55:9f:7f:
1d:ee:fe:10:c8:57:a8:73:3a:c5:ee:46:00:db:4d:
70:dd:5b:5e:31:37:ef:fe:6e:67:53:1d:37:35:23:
5b:0d:85:d6:cf:59:a2:56:7d:87:57:ad:27:90:8e:
58:7b:ca:58:59:d9:98:a1:40:0f:59:84:c3:3e:b9:
92:8d:2b:92:31:71:35:11:f2:fe:80:a9:1c:5d:7d:
ce:54:4b:f2:9e:b2:08:c2:e9:99:74:0a:76:e4:94:
46:0a:40:c6:c4:5f:9d:26:04:68:dd:5d:fa:0d:2f:
89:6f:82:d3:55:55:ef:5b:d3:6b:bf:a5:05:3e:ae:
a8:7b:f4:35:d4:77:07:e3:7a:8b:a2:5f:09:f2:c3:
6f:4c:26:62:9a:a5:3b:d9:e3:14:ac:6b:aa:28:b0:
c3:0c:b6:23:86:58:ec:fd:ff:9f:a3:05:3d:e9:92:
00:9b:0e:79:99:27:4e:fb:ce:d7:70:0e:26:9e:18:
ba:49:91:51:fb:43:c9:41:5d:d9:44:7e:cf:ce:40:
7e:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:17:4E:AF:48:D5:17:D1:ED:C0:55:EF:8A:30:95:D4:3E:7A:05:9C
X509v3 Authority Key Identifier:
keyid:8D:50:B3:A9:A0:50:39:05:59:6C:77:F5:80:2B:EF:9F:C7:3D:64:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/68d143-1237-4912-a892-cef01d877ebe/1/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/68d143-1237-4912-a892-cef01d877ebe/1/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:c7:e8:e2:5f:2c:8d:18:bf:9e:de:d8:0b:d9:9d:bd:a3:99:
13:bb:39:c8:12:40:8f:3e:48:7c:94:3c:f5:5b:a0:21:d7:84:
e7:b3:0b:cd:9d:2d:aa:d8:6b:be:c7:36:77:e2:c5:54:52:19:
7a:e6:02:ea:f6:43:4c:e1:99:47:80:d7:ca:f3:75:c0:d5:31:
99:f6:c6:cd:89:85:b1:3d:61:cd:a2:0b:e4:19:b8:eb:28:43:
a5:53:ff:92:82:33:08:bc:25:be:9c:96:ef:ed:37:86:5d:8b:
30:25:c4:8c:51:57:3c:3f:3d:b2:51:e5:e0:5f:d6:15:82:d7:
62:6f:de:82:d1:f5:7c:e5:e4:b1:48:01:c0:d2:27:cb:f8:1a:
4d:ed:f2:08:df:9b:00:ed:9e:3c:1d:06:6b:21:6b:0d:bb:3e:
b8:79:a5:46:ba:c4:86:79:13:9d:fb:57:30:d8:e6:e3:e9:5b:
b2:38:f2:e0:80:da:f0:4a:dc:25:83:31:d0:42:c2:72:5b:76:
60:38:8b:1b:8e:b9:ce:95:36:67:4a:8c:8b:b0:ba:3b:8b:d0:
b7:9d:72:f3:05:06:c6:cd:08:c0:d8:cd:8d:af:24:a9:73:d0:
03:62:a0:de:6e:19:79:0c:10:5b:84:82:d4:a1:d3:cf:d8:e9:
35:d6:f9:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 16:54:27 2025 by rpki-client