Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/20cfa4-e08b-4b70-9362-97dc7b535b1d/1/JfgKOI5PDiZBTOq-q036hBkdgUA.mft
File: JfgKOI5PDiZBTOq-q036hBkdgUA.mft (raw, json)
Hash identifier: pXb3iTUPNx40XJOAIe9XgzzAq2if+bVflTH21lmsY4A=
Subject key identifier: 9F:F3:42:47:18:03:7B:38:A9:61:DF:38:B7:0D:5B:E9:F5:FD:4E:CC
Authority key identifier: 25:F8:0A:38:8E:4F:0E:26:41:4C:EA:BE:AB:4D:FA:84:19:1D:81:40
Certificate issuer: /CN=25f80a388e4f0e26414ceabeab4dfa84191d8140
Certificate serial: 019748FA0A91E1B4F82BD9A5F54702B12E31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JfgKOI5PDiZBTOq-q036hBkdgUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/20cfa4-e08b-4b70-9362-97dc7b535b1d/1/JfgKOI5PDiZBTOq-q036hBkdgUA.mft
Manifest number: 1484
Signing time: Sat 07 Jun 2025 06:00:35 +0000
Manifest this update: Sat 07 Jun 2025 06:00:35 +0000
Manifest next update: Sun 08 Jun 2025 06:00:35 +0000
Files and hashes: 1: JfgKOI5PDiZBTOq-q036hBkdgUA.crl (hash: f+NnE4Mlz0ZlL7qzC1c92X+FdALJaMVBeWtXSkX7lV8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/20cfa4-e08b-4b70-9362-97dc7b535b1d/1/JfgKOI5PDiZBTOq-q036hBkdgUA.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/20cfa4-e08b-4b70-9362-97dc7b535b1d/1/JfgKOI5PDiZBTOq-q036hBkdgUA.mft
rsync://rpki.ripe.net/repository/DEFAULT/JfgKOI5PDiZBTOq-q036hBkdgUA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 06:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:0a:91:e1:b4:f8:2b:d9:a5:f5:47:02:b1:2e:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25f80a388e4f0e26414ceabeab4dfa84191d8140
Validity
Not Before: Jun 7 06:00:35 2025 GMT
Not After : Jun 8 06:00:35 2025 GMT
Subject: CN=9ff3424718037b38a961df38b70d5be9f5fd4ecc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:18:33:e3:4f:7b:6c:e4:00:c9:bb:96:13:5c:
02:c7:c8:b1:f4:80:45:4c:dd:e0:cb:24:f8:5d:4c:
80:1c:89:bf:4c:35:a7:5a:07:9a:08:57:1a:5a:3e:
85:ff:da:65:69:e3:8e:15:74:aa:f1:a7:71:46:61:
a6:b8:d2:32:43:0a:01:73:9b:a6:80:43:fd:55:2b:
0e:87:e2:04:59:b4:bd:03:2b:19:d9:af:18:ed:d7:
3a:78:e1:12:42:11:4a:e9:ab:90:ec:7f:5a:26:51:
e3:37:8a:11:ba:75:7d:5e:a6:b4:68:f7:24:5f:36:
81:d8:1d:46:03:cd:f5:ad:7f:cf:9b:e1:a2:ee:c8:
70:f1:b1:a6:b9:79:b0:1f:df:17:7f:6e:34:c8:9a:
84:71:48:21:ae:1a:61:3b:1f:76:f9:9e:e6:6b:24:
5d:97:5a:ce:d6:03:2b:56:59:b6:2d:03:c6:a4:ff:
c6:9b:df:40:3a:33:c2:ed:2a:6c:aa:04:48:83:18:
43:b3:fc:ac:57:c7:fc:88:77:f2:4b:e6:7c:fe:3d:
7f:51:4f:31:b8:68:e0:af:43:bc:9d:be:32:43:0c:
7d:83:42:d8:c8:69:00:de:64:1a:b6:b5:95:c2:22:
53:44:8b:d4:a4:c5:36:02:0c:2a:4a:a4:3b:89:69:
30:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:F3:42:47:18:03:7B:38:A9:61:DF:38:B7:0D:5B:E9:F5:FD:4E:CC
X509v3 Authority Key Identifier:
keyid:25:F8:0A:38:8E:4F:0E:26:41:4C:EA:BE:AB:4D:FA:84:19:1D:81:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JfgKOI5PDiZBTOq-q036hBkdgUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/20cfa4-e08b-4b70-9362-97dc7b535b1d/1/JfgKOI5PDiZBTOq-q036hBkdgUA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/20cfa4-e08b-4b70-9362-97dc7b535b1d/1/JfgKOI5PDiZBTOq-q036hBkdgUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:b6:3d:76:c3:16:fb:71:33:7d:fe:bc:29:32:86:0c:95:b1:
47:3b:fa:2e:39:6d:bb:09:8d:f1:51:95:c3:dc:e1:45:39:e8:
d8:84:8c:61:ec:78:f4:48:16:0b:85:e7:4f:e5:f5:a0:ab:44:
07:e3:17:30:26:d1:7e:02:6d:4c:9c:eb:9d:a9:da:37:db:a4:
46:b2:72:e0:47:e8:9f:8d:23:ae:66:b5:78:1e:85:5b:c7:c6:
1c:17:02:e6:2c:e7:2a:09:bc:99:15:2f:2d:3c:81:7b:94:7b:
c2:4b:98:53:a7:6e:1e:88:60:44:d8:0b:5d:64:e1:6b:b1:58:
da:3c:dd:ad:27:12:ab:4a:eb:38:81:2f:e7:e4:67:cd:87:d8:
1b:5f:80:c6:60:a0:2f:a2:0b:20:4b:bf:19:ff:04:a9:53:b6:
cc:2b:4b:95:1e:71:40:a8:fd:31:32:02:e4:d4:c1:fb:d7:83:
64:8b:14:8d:1a:38:4a:99:55:fa:7f:7c:eb:6f:ff:f5:aa:3b:
48:4e:c0:f4:29:d6:71:2f:a2:8a:ff:4f:16:3c:f1:eb:55:f6:
ea:a2:61:fd:34:bf:48:25:b5:cd:34:22:23:15:a9:2c:45:90:
56:05:e7:bc:0b:d4:01:09:5c:0f:c2:64:a0:28:7b:e3:14:ed:
14:56:17:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 10:46:03 2025 by rpki-client