Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/b439ef-2cc5-4a74-b1ea-55c65c415b36/1/JQou0RQnyhZIM4Ur1JydtT1j5js.mft
File: JQou0RQnyhZIM4Ur1JydtT1j5js.mft (raw, json)
Hash identifier: P87GSbt/J3DPxmClJK5UXC5pngqoOj0g0m2uXJKSY38=
Subject key identifier: 3F:9B:A5:41:0D:51:56:CD:C0:76:18:0A:01:54:00:A5:50:23:B3:7A
Authority key identifier: 25:0A:2E:D1:14:27:CA:16:48:33:85:2B:D4:9C:9D:B5:3D:63:E6:3B
Certificate issuer: /CN=250a2ed11427ca164833852bd49c9db53d63e63b
Certificate serial: 019922C33F8E1757FAB587B6AA6602E350CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JQou0RQnyhZIM4Ur1JydtT1j5js.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/b439ef-2cc5-4a74-b1ea-55c65c415b36/1/JQou0RQnyhZIM4Ur1JydtT1j5js.mft
Manifest number: 020E
Signing time: Sun 07 Sep 2025 06:00:45 +0000
Manifest this update: Sun 07 Sep 2025 06:00:45 +0000
Manifest next update: Mon 08 Sep 2025 06:00:45 +0000
Files and hashes: 1: JQou0RQnyhZIM4Ur1JydtT1j5js.crl (hash: WfIKFFvblht+M8o096JFug0oN13Lw0EjWUuleT+LnNc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/b439ef-2cc5-4a74-b1ea-55c65c415b36/1/JQou0RQnyhZIM4Ur1JydtT1j5js.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/b439ef-2cc5-4a74-b1ea-55c65c415b36/1/JQou0RQnyhZIM4Ur1JydtT1j5js.mft
rsync://rpki.ripe.net/repository/DEFAULT/JQou0RQnyhZIM4Ur1JydtT1j5js.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 06:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:3f:8e:17:57:fa:b5:87:b6:aa:66:02:e3:50:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=250a2ed11427ca164833852bd49c9db53d63e63b
Validity
Not Before: Sep 7 06:00:45 2025 GMT
Not After : Sep 8 06:00:45 2025 GMT
Subject: CN=3f9ba5410d5156cdc076180a015400a55023b37a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:97:2d:2c:5a:47:90:5c:07:d5:ff:76:bc:90:
b1:ad:d0:65:0e:e0:63:8d:79:81:d6:f2:f2:ba:fb:
0d:cc:37:4d:88:72:92:5c:6f:b3:e0:17:c3:4a:f5:
64:08:91:03:34:90:8c:ff:8f:ca:87:5b:46:10:e5:
a1:34:cd:3f:31:9a:23:de:08:ba:ea:c4:09:89:20:
01:74:0c:0d:e5:65:f0:5a:25:56:a3:af:da:5c:20:
34:e7:21:32:3b:a1:80:a2:a5:a6:10:af:e2:c1:30:
a1:63:2b:1b:b8:da:53:b5:d4:9d:7a:be:fa:5c:13:
7f:fd:7b:50:67:e9:3b:cd:db:70:55:2d:6f:3c:a3:
af:bb:5a:d8:93:7e:93:fa:8a:10:20:b1:59:c1:d8:
4f:36:cf:24:68:ec:2b:7f:da:c1:ee:fc:5e:9f:f6:
02:8a:b2:e5:18:9d:f7:ee:c9:e2:de:36:9c:13:e2:
8f:90:84:1f:5d:de:55:7a:6f:54:e6:e5:7b:de:8a:
6a:24:90:13:eb:09:b9:90:a6:c5:04:2a:aa:c9:b0:
76:e9:ba:c2:f2:0d:72:68:02:28:12:19:7d:db:5f:
aa:d7:bc:68:78:34:28:cd:bd:95:01:9a:0e:81:98:
2b:b0:ec:3f:a1:79:01:e6:17:35:ec:d2:88:4b:42:
43:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:9B:A5:41:0D:51:56:CD:C0:76:18:0A:01:54:00:A5:50:23:B3:7A
X509v3 Authority Key Identifier:
keyid:25:0A:2E:D1:14:27:CA:16:48:33:85:2B:D4:9C:9D:B5:3D:63:E6:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JQou0RQnyhZIM4Ur1JydtT1j5js.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/b439ef-2cc5-4a74-b1ea-55c65c415b36/1/JQou0RQnyhZIM4Ur1JydtT1j5js.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/b439ef-2cc5-4a74-b1ea-55c65c415b36/1/JQou0RQnyhZIM4Ur1JydtT1j5js.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:e0:db:7f:56:e6:42:63:87:91:5e:b9:bc:df:07:32:ca:d5:
b1:db:1e:ec:03:dd:10:80:39:e3:64:12:12:38:d6:42:ce:c6:
09:2f:0f:f3:0a:1c:7c:c7:0f:bd:9e:79:d5:cd:bc:55:57:b9:
2f:a9:4b:f5:c4:06:67:89:ba:87:d3:aa:e0:b4:e2:59:9c:07:
22:ac:fe:71:da:05:1f:a6:13:7e:b7:4c:bb:d1:89:f6:4d:dd:
a0:fc:ca:cb:18:1b:80:c5:6e:5c:9b:96:e3:4a:a6:5d:62:75:
94:1c:09:25:fb:0c:46:aa:d9:eb:8b:ca:2b:28:8f:26:50:a3:
c7:50:ff:be:1b:05:ae:71:82:cd:7a:cc:6b:6b:47:00:8e:01:
f9:e6:3c:e5:fe:b8:f8:06:e6:99:4d:d5:b2:d8:3d:d6:a9:de:
90:34:60:c0:82:d5:47:94:1f:ae:2a:32:92:cd:4a:15:e3:43:
c5:3a:5b:f7:4c:c8:2a:35:19:f2:3b:bd:5d:f9:62:32:4a:e1:
7a:57:fb:b8:04:ec:1e:38:46:33:58:fb:4c:42:0d:9a:7f:d4:
03:4b:4b:a8:7a:b0:a4:8b:f3:b4:9a:49:15:f9:a0:fc:64:99:
e8:f3:11:70:c1:a4:a6:7d:ac:8f:2c:30:73:76:8c:e5:59:66:
a3:39:25:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 15:20:17 2025 by rpki-client