Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/b439ef-2cc5-4a74-b1ea-55c65c415b36/1/JQou0RQnyhZIM4Ur1JydtT1j5js.mft
File: JQou0RQnyhZIM4Ur1JydtT1j5js.mft (raw, json)
Hash identifier: oTyHJAliTUWLKo/Zc7ZpUJI/41gf8dq/AADmUovP9g4=
Subject key identifier: B9:CA:E5:75:41:E7:CE:A1:27:95:EF:81:42:60:40:1D:9A:33:97:17
Authority key identifier: 25:0A:2E:D1:14:27:CA:16:48:33:85:2B:D4:9C:9D:B5:3D:63:E6:3B
Certificate issuer: /CN=250a2ed11427ca164833852bd49c9db53d63e63b
Certificate serial: 01974B8D501B1DE0E9FA207AC87360C48E0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JQou0RQnyhZIM4Ur1JydtT1j5js.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/b439ef-2cc5-4a74-b1ea-55c65c415b36/1/JQou0RQnyhZIM4Ur1JydtT1j5js.mft
Manifest number: 011A
Signing time: Sat 07 Jun 2025 18:00:41 +0000
Manifest this update: Sat 07 Jun 2025 18:00:41 +0000
Manifest next update: Sun 08 Jun 2025 18:00:41 +0000
Files and hashes: 1: JQou0RQnyhZIM4Ur1JydtT1j5js.crl (hash: ica35GMvra2IagEnPAthxxJQs4eUQE+EFerJMRUFeuw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/b439ef-2cc5-4a74-b1ea-55c65c415b36/1/JQou0RQnyhZIM4Ur1JydtT1j5js.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/b439ef-2cc5-4a74-b1ea-55c65c415b36/1/JQou0RQnyhZIM4Ur1JydtT1j5js.mft
rsync://rpki.ripe.net/repository/DEFAULT/JQou0RQnyhZIM4Ur1JydtT1j5js.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:8d:50:1b:1d:e0:e9:fa:20:7a:c8:73:60:c4:8e:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=250a2ed11427ca164833852bd49c9db53d63e63b
Validity
Not Before: Jun 7 18:00:41 2025 GMT
Not After : Jun 8 18:00:41 2025 GMT
Subject: CN=b9cae57541e7cea12795ef814260401d9a339717
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c3:6b:d6:41:f5:2f:23:db:9f:79:f5:21:e4:
b9:a5:06:71:f4:1d:ef:03:c1:11:ca:0a:a4:ed:70:
ae:63:5f:d9:bd:d7:1a:3c:14:c7:54:9f:3c:9f:35:
9a:59:4b:31:a8:55:59:b2:ce:bf:95:b1:a6:4e:89:
80:13:62:4f:63:c0:d5:53:8c:67:60:c9:e3:70:64:
15:2d:f6:3f:16:cf:37:77:e4:57:5f:ec:24:bf:a9:
81:d4:b9:de:7e:ad:08:e8:38:59:3e:35:98:00:d1:
ba:cf:7e:5d:14:9a:2e:57:23:19:37:f1:d2:7e:d0:
7d:d1:9d:e6:32:56:81:c5:c9:26:3b:95:b3:ed:18:
69:26:a0:cd:35:79:8f:2d:95:68:21:49:a6:fe:15:
ea:1e:3d:68:0c:e5:40:37:80:f9:6f:93:ca:c4:8e:
4c:59:aa:7d:eb:2a:a9:a6:e9:9e:69:bd:3e:aa:7e:
97:d6:f9:04:22:62:66:03:10:81:02:4a:50:85:00:
77:e8:26:ab:23:85:15:1d:11:7f:5a:9b:96:e8:56:
4f:92:26:26:53:6d:20:64:50:3e:49:db:04:ec:96:
28:cb:02:f4:3f:50:fe:f8:13:83:4d:b1:ae:6a:51:
9a:a5:5b:95:fb:6a:63:41:7d:e8:15:43:35:66:33:
c0:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:CA:E5:75:41:E7:CE:A1:27:95:EF:81:42:60:40:1D:9A:33:97:17
X509v3 Authority Key Identifier:
keyid:25:0A:2E:D1:14:27:CA:16:48:33:85:2B:D4:9C:9D:B5:3D:63:E6:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JQou0RQnyhZIM4Ur1JydtT1j5js.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/b439ef-2cc5-4a74-b1ea-55c65c415b36/1/JQou0RQnyhZIM4Ur1JydtT1j5js.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/b439ef-2cc5-4a74-b1ea-55c65c415b36/1/JQou0RQnyhZIM4Ur1JydtT1j5js.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:8e:8f:e7:44:bc:09:af:3b:57:16:f1:14:0f:e5:b0:59:2b:
b5:71:3a:76:dd:17:8e:fd:0a:9d:d5:c7:1b:f5:b2:89:b2:0d:
44:c7:aa:d7:be:93:2e:c5:83:fe:03:11:6b:30:b1:23:00:d7:
6c:41:03:b8:44:6e:68:81:75:2f:02:ad:bf:fe:ff:73:ef:bb:
fb:06:27:3e:e5:a6:3f:05:73:41:05:03:20:b0:71:1a:45:74:
0b:cd:1c:15:84:ef:9e:55:50:57:63:a3:10:0c:41:ad:1f:36:
d1:9d:43:c2:1e:7e:42:89:fa:69:0b:9e:04:f4:9d:08:10:66:
2a:85:84:7f:91:8e:ba:74:ac:90:74:29:78:27:51:dc:3b:ee:
58:79:17:16:1e:c4:9f:91:cb:ad:bf:7e:e4:b8:69:92:56:7a:
74:9a:b5:b6:35:ed:d2:35:c2:1e:75:a2:35:1e:55:a0:08:60:
f3:45:1c:52:1d:a9:da:0d:17:39:61:76:08:d7:9f:d1:22:92:
f1:28:d3:97:11:f8:c1:60:67:8e:8a:83:c8:34:10:af:81:88:
36:b1:3d:92:ab:ef:52:0d:df:a8:25:b5:ae:3a:78:2d:8c:56:
c3:b3:49:6a:88:91:61:9c:56:f5:3c:60:36:9c:f5:60:41:46:
6f:01:e1:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 01:11:54 2025 by rpki-client