Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/4b1a35-4a84-414b-b073-66d35e525039/1/JVcuj5OxikAc_s32JYZ4OFjMXxQ.mft
File: JVcuj5OxikAc_s32JYZ4OFjMXxQ.mft (raw, json)
Hash identifier: +I3ttlZGgAFY41tLBxt1xgpohzqyTMudd1BRYFITcnM=
Subject key identifier: 8C:D6:B1:91:CD:12:EF:71:AA:8C:15:11:EC:55:5A:FB:CB:19:C5:6F
Authority key identifier: 25:57:2E:8F:93:B1:8A:40:1C:FE:CD:F6:25:86:78:38:58:CC:5F:14
Certificate issuer: /CN=25572e8f93b18a401cfecdf62586783858cc5f14
Certificate serial: 019747B0AA6FACDE5A47757D2F7F15E56B05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JVcuj5OxikAc_s32JYZ4OFjMXxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/4b1a35-4a84-414b-b073-66d35e525039/1/JVcuj5OxikAc_s32JYZ4OFjMXxQ.mft
Manifest number: 157C
Signing time: Sat 07 Jun 2025 00:00:49 +0000
Manifest this update: Sat 07 Jun 2025 00:00:49 +0000
Manifest next update: Sun 08 Jun 2025 00:00:49 +0000
Files and hashes: 1: DTLOnLZIHhlPP7pvWpWEUTLWHQg.roa (hash: QLz4ZYz1buP6/UJvo5YrZ+4VolEyE3vVmr+8wwogqDA=)
2: JVcuj5OxikAc_s32JYZ4OFjMXxQ.crl (hash: cs0wmG2Kt1L8pDkMCDowj7b2z9oLK7YUS5iVLjYPTU0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/4b1a35-4a84-414b-b073-66d35e525039/1/JVcuj5OxikAc_s32JYZ4OFjMXxQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/4b1a35-4a84-414b-b073-66d35e525039/1/JVcuj5OxikAc_s32JYZ4OFjMXxQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/JVcuj5OxikAc_s32JYZ4OFjMXxQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:b0:aa:6f:ac:de:5a:47:75:7d:2f:7f:15:e5:6b:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25572e8f93b18a401cfecdf62586783858cc5f14
Validity
Not Before: Jun 7 00:00:49 2025 GMT
Not After : Jun 8 00:00:49 2025 GMT
Subject: CN=8cd6b191cd12ef71aa8c1511ec555afbcb19c56f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:11:a3:ee:e0:c8:e1:9f:1c:80:42:1e:5e:19:
8b:72:bc:af:46:0c:e7:e7:f7:31:9e:0c:29:76:00:
d5:73:28:7f:55:b5:ef:8e:0a:45:a4:58:d6:e5:07:
b8:cd:08:98:b4:55:02:df:68:54:d9:db:ce:6a:7d:
b4:19:53:a6:cf:3d:02:c1:db:9e:aa:7c:25:9b:8c:
b7:8f:34:2a:45:52:07:52:8f:f0:9e:a4:94:99:05:
b8:8d:57:3e:0b:ee:6e:5b:87:39:45:b9:d4:49:5b:
e8:bb:b6:82:7a:23:21:ae:57:a9:b0:2f:12:3a:5e:
9a:48:44:86:2a:cd:65:07:cc:8b:89:05:e6:6a:9d:
ff:d0:9d:6a:36:de:eb:55:04:91:c9:21:66:c4:4d:
d6:cd:84:35:8f:d4:55:67:72:3f:96:e9:20:1f:94:
f6:f0:ae:bd:de:4e:7c:e6:4c:50:cd:61:45:e4:2c:
c7:a3:1c:b1:5b:0f:8a:f3:ff:bc:ae:a6:85:a2:04:
39:33:7e:4e:d2:ff:aa:5c:d9:52:7e:c3:b2:74:32:
81:2c:0a:df:19:a1:f7:44:19:8d:0e:7f:68:b3:47:
3c:3e:4a:27:16:ac:0a:cf:d5:d4:64:90:08:31:b9:
b8:40:c0:4f:12:29:fe:1d:4f:da:e0:71:32:87:79:
0e:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:D6:B1:91:CD:12:EF:71:AA:8C:15:11:EC:55:5A:FB:CB:19:C5:6F
X509v3 Authority Key Identifier:
keyid:25:57:2E:8F:93:B1:8A:40:1C:FE:CD:F6:25:86:78:38:58:CC:5F:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JVcuj5OxikAc_s32JYZ4OFjMXxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/4b1a35-4a84-414b-b073-66d35e525039/1/JVcuj5OxikAc_s32JYZ4OFjMXxQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/4b1a35-4a84-414b-b073-66d35e525039/1/JVcuj5OxikAc_s32JYZ4OFjMXxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:a5:d5:c7:82:ac:fb:c2:0a:95:36:34:d4:a2:61:bb:eb:49:
a8:7f:a6:87:06:9a:5b:ca:3e:a8:d2:80:84:14:f0:68:bf:dc:
46:51:61:8a:5e:d1:cd:a6:17:55:fe:5e:ff:35:d2:7e:16:89:
24:91:ce:35:f5:f8:46:c4:85:a6:e2:b8:9e:5c:22:9c:1e:5d:
41:a8:fd:c8:a8:78:1e:86:0d:89:54:08:2e:26:cc:ac:33:f2:
0d:77:5b:0a:2b:cf:d5:9a:31:e4:35:a8:ec:47:15:a6:d0:70:
f1:2d:83:41:3a:15:7b:0d:e7:7a:07:cf:76:c7:5c:0b:25:ad:
83:c9:f2:a7:cb:16:a8:9a:d7:a2:3e:f2:55:84:d6:0c:8e:cc:
f6:a6:1a:b5:5b:81:e6:1d:fb:58:cb:7b:2f:d3:b2:9a:a0:53:
8b:f8:aa:13:5a:b1:d3:8b:ac:88:76:43:3a:be:d4:18:17:8b:
52:4d:21:af:7c:a6:47:0d:da:88:e6:d7:74:a3:9d:47:87:1b:
a3:b8:6d:50:32:ef:c1:54:27:d1:57:6d:91:4b:a4:f9:0c:ef:
d2:59:bd:7d:4c:bd:2f:a5:b2:c0:cf:0e:37:1f:d3:4e:4c:13:
5c:df:12:3e:d7:f4:f9:51:d6:f8:8f:c7:bc:0c:1a:b9:7d:db:
d8:e3:03:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 08:06:27 2025 by rpki-client