Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9337ec-b4de-449a-b607-ea9cb527ae71/1/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.mft
File: jdCYF9_qTGbJQY-fOQbx0OB8ydQ.mft (raw, json)
Hash identifier: WrAMQVEv607kCMqRUjUkqRAOzbQscWu/dx3cHPBIfqo=
Subject key identifier: FD:60:D2:B7:79:33:47:4E:D7:5B:E0:3F:CB:EE:A1:83:02:7A:93:9D
Authority key identifier: 8D:D0:98:17:DF:EA:4C:66:C9:41:8F:9F:39:06:F1:D0:E0:7C:C9:D4
Certificate issuer: /CN=8dd09817dfea4c66c9418f9f3906f1d0e07cc9d4
Certificate serial: 0197530FEBBB86D016737CAFC4D9344A6645
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9337ec-b4de-449a-b607-ea9cb527ae71/1/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.mft
Manifest number: 12A2
Signing time: Mon 09 Jun 2025 05:00:41 +0000
Manifest this update: Mon 09 Jun 2025 05:00:41 +0000
Manifest next update: Tue 10 Jun 2025 05:00:41 +0000
Files and hashes: 1: 4OlXHZjPNi_ZrlyOHLrnACz2H5w.roa (hash: WcKTWMqR73pqlk4NefweGCzhLoO2KaXXmg8w4iimJxY=)
2: jdCYF9_qTGbJQY-fOQbx0OB8ydQ.crl (hash: qX+Xbt2g8gOTVa6dHDUN3VXHRmldCWJ3H3vJ+nIVaXQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/9337ec-b4de-449a-b607-ea9cb527ae71/1/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/9337ec-b4de-449a-b607-ea9cb527ae71/1/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 21:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:53:0f:eb:bb:86:d0:16:73:7c:af:c4:d9:34:4a:66:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8dd09817dfea4c66c9418f9f3906f1d0e07cc9d4
Validity
Not Before: Jun 9 05:00:41 2025 GMT
Not After : Jun 10 05:00:41 2025 GMT
Subject: CN=fd60d2b77933474ed75be03fcbeea183027a939d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:dc:ac:2b:33:80:e9:2d:f2:31:5e:51:e6:d5:
a1:c4:b3:06:27:56:ac:a0:67:61:77:5d:db:46:0d:
31:26:e9:3f:9b:38:85:20:f6:99:fb:2c:66:28:bb:
8b:bd:d1:a3:98:7b:91:e4:8e:bb:bc:ed:93:6d:e0:
b3:ff:52:e9:1e:3e:ea:bf:1c:85:c8:13:c8:00:a6:
ef:5d:0d:93:ae:16:5d:0f:f5:9a:d9:25:1a:51:e2:
18:ef:74:1f:d5:25:13:1a:8d:69:a6:24:c2:25:80:
cc:04:10:8a:bc:26:21:c4:19:b8:d2:a4:dc:6e:26:
89:de:27:09:12:d0:4e:9b:60:b7:1d:a7:4e:02:81:
d0:5d:29:c6:39:fa:d2:cd:a9:7d:b2:28:1a:2a:4d:
dc:dd:c2:98:e4:dc:c1:1d:a6:99:1b:9e:a4:1a:ba:
ce:a0:cd:18:35:38:e9:8f:71:9f:a6:01:41:3d:22:
c3:22:7a:08:dc:1e:81:24:d3:53:8a:0d:92:4f:fd:
a0:e3:ff:2a:45:5e:32:9d:ba:a5:a5:7f:23:47:4f:
e8:81:89:c6:3f:0e:b9:52:27:c1:6c:dd:96:b7:0f:
4f:1e:97:58:04:16:c4:fd:3d:a9:67:2d:95:a5:2f:
b8:8d:2c:0a:11:97:d9:c8:04:48:99:1b:24:d0:57:
90:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:60:D2:B7:79:33:47:4E:D7:5B:E0:3F:CB:EE:A1:83:02:7A:93:9D
X509v3 Authority Key Identifier:
keyid:8D:D0:98:17:DF:EA:4C:66:C9:41:8F:9F:39:06:F1:D0:E0:7C:C9:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9337ec-b4de-449a-b607-ea9cb527ae71/1/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9337ec-b4de-449a-b607-ea9cb527ae71/1/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:f3:df:ca:e4:48:ba:78:f9:4c:5e:30:2c:05:4c:ae:19:c9:
45:c2:f7:c7:4f:19:d2:fe:2d:c2:df:17:2d:c9:0b:96:fb:f8:
da:f7:45:5c:5d:74:0c:0b:ef:c7:d4:a7:7e:89:3e:bc:1e:7f:
c5:c7:19:bc:2e:48:47:37:a5:cd:38:56:5d:4a:ad:0d:9d:57:
76:4b:ab:24:97:a0:72:91:71:74:53:7f:68:16:7a:c4:50:4b:
2d:23:c6:2d:ae:0f:9d:32:d8:03:98:98:8c:8e:b4:d9:ae:fc:
ae:a8:88:06:1c:2e:fb:00:05:84:6e:3c:dd:f7:3d:9d:72:ff:
a6:9b:82:06:ea:3f:08:f0:4f:81:d1:7f:a1:a7:63:ee:7b:f4:
7d:87:8e:da:29:9c:28:60:ec:2d:3b:b2:44:47:55:c3:2f:86:
30:20:3c:12:08:1d:cf:1d:d3:fd:61:ce:d2:93:ad:7f:20:08:
51:e7:e5:3d:b8:e0:3d:ca:54:04:d1:2e:c5:46:2f:e2:bd:8b:
d3:8e:e1:e7:1e:14:94:ca:35:90:64:35:12:75:86:30:06:f1:
f6:2d:72:47:7f:13:3c:11:7c:b4:ef:2e:89:71:c5:8c:b2:a9:
68:d4:28:48:5d:95:bc:37:9f:d8:c8:d5:aa:6e:93:cc:18:64:
0a:d3:b0:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 08:31:32 2025 by rpki-client