Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/bc53d2-9137-4799-9e41-e69a017485fb/1/jolfHicMY17GHfmpf8D2aMCo9Ug.mft
File: jolfHicMY17GHfmpf8D2aMCo9Ug.mft (raw, json)
Hash identifier: vQpoN3dky5O1tH095dKZPULRLV2C1jJ+/Uht/Xiet5s=
Subject key identifier: E6:1A:C1:06:05:DA:49:FA:62:66:FD:B5:42:CE:EA:36:0E:8C:AE:22
Authority key identifier: 8E:89:5F:1E:27:0C:63:5E:C6:1D:F9:A9:7F:C0:F6:68:C0:A8:F5:48
Certificate issuer: /CN=8e895f1e270c635ec61df9a97fc0f668c0a8f548
Certificate serial: 019873E4095CE0CAA296BC14A849B1C97B21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jolfHicMY17GHfmpf8D2aMCo9Ug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/bc53d2-9137-4799-9e41-e69a017485fb/1/jolfHicMY17GHfmpf8D2aMCo9Ug.mft
Manifest number: 110B
Signing time: Mon 04 Aug 2025 07:03:01 +0000
Manifest this update: Mon 04 Aug 2025 07:03:01 +0000
Manifest next update: Tue 05 Aug 2025 07:03:01 +0000
Files and hashes: 1: ExwmpmCoQJo2OxTGvS9tBUVoCTI.roa (hash: 5uKveASNNkoz3m6Z/IoI5wPaRI1/s/iR92XdJr3b/vs=)
2: jolfHicMY17GHfmpf8D2aMCo9Ug.crl (hash: Q80kFRagj/iGmiVqP2NSiaSXc6D8kimvmOptF1UTAXg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/bc53d2-9137-4799-9e41-e69a017485fb/1/jolfHicMY17GHfmpf8D2aMCo9Ug.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/bc53d2-9137-4799-9e41-e69a017485fb/1/jolfHicMY17GHfmpf8D2aMCo9Ug.mft
rsync://rpki.ripe.net/repository/DEFAULT/jolfHicMY17GHfmpf8D2aMCo9Ug.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e4:09:5c:e0:ca:a2:96:bc:14:a8:49:b1:c9:7b:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e895f1e270c635ec61df9a97fc0f668c0a8f548
Validity
Not Before: Aug 4 07:03:01 2025 GMT
Not After : Aug 5 07:03:01 2025 GMT
Subject: CN=e61ac10605da49fa6266fdb542ceea360e8cae22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:77:56:83:3a:a0:5e:1f:00:c1:0f:ed:02:4b:
d3:b6:d8:90:7c:f3:8a:48:e7:04:fc:d0:5a:92:31:
08:90:ae:78:53:a8:60:0f:01:cc:3b:a3:35:5a:38:
13:f9:a2:1a:c3:d8:6c:5d:8e:ac:01:f2:91:3f:25:
a9:97:f6:ae:5d:e3:76:43:34:c7:5f:ea:e9:84:6b:
01:cc:91:95:d3:5d:cb:cc:d7:e9:94:bd:16:2c:16:
79:8f:b0:b4:50:53:7f:7b:31:e6:5a:b1:a2:d8:0e:
21:ce:d1:6f:fe:56:fd:89:9f:d5:21:d9:b0:d8:08:
6a:8a:26:c9:01:f3:d2:01:17:ad:57:77:d3:cf:05:
2b:45:15:0a:ff:67:90:b7:e9:78:34:1e:81:b7:3c:
70:da:d3:2f:06:52:76:1b:c0:07:25:a0:07:4d:7f:
da:c4:75:65:ab:b6:c2:44:0c:9b:f3:af:77:9b:f7:
f4:07:b9:1a:40:7c:64:08:9e:41:94:07:15:a7:13:
ae:a2:31:cd:53:3d:28:06:df:e9:22:66:30:7e:4f:
b6:1a:a4:8f:27:57:05:7a:23:aa:d6:63:2b:47:0f:
88:34:1f:0e:90:36:46:87:5c:f5:8e:66:54:4a:98:
21:02:71:db:9f:2e:06:bf:0f:f8:ca:6d:c1:ce:a3:
08:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:1A:C1:06:05:DA:49:FA:62:66:FD:B5:42:CE:EA:36:0E:8C:AE:22
X509v3 Authority Key Identifier:
keyid:8E:89:5F:1E:27:0C:63:5E:C6:1D:F9:A9:7F:C0:F6:68:C0:A8:F5:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jolfHicMY17GHfmpf8D2aMCo9Ug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/bc53d2-9137-4799-9e41-e69a017485fb/1/jolfHicMY17GHfmpf8D2aMCo9Ug.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/bc53d2-9137-4799-9e41-e69a017485fb/1/jolfHicMY17GHfmpf8D2aMCo9Ug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:36:47:5a:e6:11:2a:45:78:e8:06:4b:f3:f0:20:b1:e1:fa:
37:e6:13:45:70:d0:c3:fe:43:ec:d8:a6:17:66:69:b9:68:51:
f3:d2:73:57:6e:51:f7:23:85:0a:d7:ad:00:cf:3a:52:80:a7:
fa:e5:d4:d5:f5:38:2d:77:a4:d3:5c:8e:16:9b:ea:45:44:e3:
0b:ec:48:82:32:a1:56:0b:f7:85:a9:bc:c4:fb:da:2f:4b:70:
65:a4:28:db:fa:33:b3:45:c9:f8:87:ce:be:3a:26:cf:f0:75:
f0:c8:63:1d:bf:30:90:a5:9a:1c:44:53:e3:b2:b4:b2:1c:db:
2a:76:56:6c:fb:a7:11:40:eb:ea:a8:2c:eb:05:a0:72:bb:33:
95:e9:2e:4e:38:9c:e6:34:4c:7f:0f:37:0f:d6:99:69:cf:2e:
24:ee:93:f5:ac:30:67:4f:0f:f7:65:b5:b3:20:5f:8e:12:09:
36:6c:41:f1:67:84:8a:50:37:6c:c4:8b:9b:6e:d4:50:42:b5:
83:7a:c2:a6:54:0b:d1:6a:ff:3e:30:de:b3:c3:37:a1:7d:e9:
c7:a1:7c:81:7b:90:9f:a2:53:f0:57:33:05:bc:b8:a1:2b:78:
12:d9:fb:16:7b:ff:2e:fb:04:d2:f3:b0:80:b9:af:51:f5:fa:
b6:09:ed:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:16:23 2025 by rpki-client