Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/bc53d2-9137-4799-9e41-e69a017485fb/1/jolfHicMY17GHfmpf8D2aMCo9Ug.mft
File: jolfHicMY17GHfmpf8D2aMCo9Ug.mft (raw, json)
Hash identifier: 3T/Tk/Z5sueJ5C3OQZVBUBZGamO56Qmoo/ZRTfOCzd8=
Subject key identifier: 61:B6:E2:82:D9:B2:E6:85:94:40:40:A6:BD:F2:7C:8F:26:55:6E:F3
Authority key identifier: 8E:89:5F:1E:27:0C:63:5E:C6:1D:F9:A9:7F:C0:F6:68:C0:A8:F5:48
Certificate issuer: /CN=8e895f1e270c635ec61df9a97fc0f668c0a8f548
Certificate serial: 019A4EF43F548C54E51800909C448C1A1BE1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jolfHicMY17GHfmpf8D2aMCo9Ug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/bc53d2-9137-4799-9e41-e69a017485fb/1/jolfHicMY17GHfmpf8D2aMCo9Ug.mft
Manifest number: 1201
Signing time: Tue 04 Nov 2025 13:00:21 +0000
Manifest this update: Tue 04 Nov 2025 13:00:21 +0000
Manifest next update: Wed 05 Nov 2025 13:00:21 +0000
Files and hashes: 1: ExwmpmCoQJo2OxTGvS9tBUVoCTI.roa (hash: 5uKveASNNkoz3m6Z/IoI5wPaRI1/s/iR92XdJr3b/vs=)
2: jolfHicMY17GHfmpf8D2aMCo9Ug.crl (hash: vfBBTudwchR/iCKusnbI33AedRWvog32+fXZR7m0wrg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/bc53d2-9137-4799-9e41-e69a017485fb/1/jolfHicMY17GHfmpf8D2aMCo9Ug.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/bc53d2-9137-4799-9e41-e69a017485fb/1/jolfHicMY17GHfmpf8D2aMCo9Ug.mft
rsync://rpki.ripe.net/repository/DEFAULT/jolfHicMY17GHfmpf8D2aMCo9Ug.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 13:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:3f:54:8c:54:e5:18:00:90:9c:44:8c:1a:1b:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e895f1e270c635ec61df9a97fc0f668c0a8f548
Validity
Not Before: Nov 4 13:00:21 2025 GMT
Not After : Nov 5 13:00:21 2025 GMT
Subject: CN=61b6e282d9b2e685944040a6bdf27c8f26556ef3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:54:9c:ec:97:99:31:60:c4:9f:da:97:f9:a1:
fa:2f:e5:6c:83:79:41:09:db:de:c8:b0:e6:15:67:
80:c8:ed:c9:85:da:18:40:71:18:a3:7b:2b:71:99:
eb:66:57:7e:2c:70:34:31:e2:82:ee:17:70:6b:d7:
8f:0d:19:0a:32:a9:25:0f:3d:3a:eb:67:d2:d6:2d:
56:3b:0f:27:54:e8:3f:75:ad:43:9e:2f:91:d7:0b:
ff:f8:3f:35:b6:65:28:e8:d5:45:c4:ab:53:83:47:
35:d0:b6:f7:66:2f:68:f9:67:b2:fe:c8:ea:79:4a:
e9:51:34:a0:14:d1:ac:4c:9e:a4:70:bb:91:cb:0e:
66:14:82:a1:22:94:3c:00:47:df:1a:68:d2:d9:44:
7a:ed:ed:43:b3:db:f4:50:74:c5:68:71:c2:fb:dd:
2a:2e:59:a2:a1:e4:e5:66:fa:0f:b2:bc:ac:03:2d:
c7:57:6d:6b:40:9f:d8:b9:71:88:ac:10:f4:ae:48:
59:22:e7:56:6f:c0:d6:38:97:0c:d7:d8:19:e3:8e:
1c:d4:91:17:ad:9e:3e:99:50:e8:22:bb:d0:3a:36:
2d:1f:58:00:3e:bf:89:ea:52:a4:9e:2f:bb:be:35:
1c:84:95:89:4a:a6:87:56:7b:93:0a:3c:18:57:7a:
44:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:B6:E2:82:D9:B2:E6:85:94:40:40:A6:BD:F2:7C:8F:26:55:6E:F3
X509v3 Authority Key Identifier:
keyid:8E:89:5F:1E:27:0C:63:5E:C6:1D:F9:A9:7F:C0:F6:68:C0:A8:F5:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jolfHicMY17GHfmpf8D2aMCo9Ug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/bc53d2-9137-4799-9e41-e69a017485fb/1/jolfHicMY17GHfmpf8D2aMCo9Ug.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/bc53d2-9137-4799-9e41-e69a017485fb/1/jolfHicMY17GHfmpf8D2aMCo9Ug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:ff:5c:7a:ea:7d:7a:01:bb:5b:81:87:fe:e1:50:0f:a6:e1:
84:75:6b:56:84:d3:7b:1d:69:de:14:2b:66:ea:a9:eb:36:2c:
fe:f6:19:34:9b:22:3e:03:fd:63:1e:c5:e6:4c:11:9f:ca:a2:
c4:43:87:69:a9:56:89:22:e0:b0:99:6f:25:ca:5b:60:d8:5c:
20:38:9a:d4:5b:d2:de:a8:b5:33:8d:df:51:8c:0f:1c:8b:83:
29:48:9f:2f:39:d7:5d:92:b9:9d:bc:3c:be:b5:22:07:5f:8f:
64:62:fc:a1:47:55:b1:eb:bc:41:f2:c1:64:dd:e2:0b:7c:26:
05:95:2e:03:4f:95:ed:43:de:f6:e0:ea:87:44:08:2f:37:6e:
4a:1d:f6:3f:25:c1:da:da:c0:91:ef:f5:b8:3c:1b:1f:cb:2a:
4d:05:3d:96:df:90:77:d4:53:b7:5c:3c:ea:cc:e2:1a:0d:bd:
4d:c5:32:dc:cc:d0:9e:1b:e4:80:db:54:91:47:96:93:b2:6b:
f9:2f:e0:01:d5:6a:23:30:3b:df:13:9e:7c:b6:66:40:04:bc:
80:69:96:a0:39:f4:51:07:78:10:16:94:ce:24:88:f2:c6:a9:
f0:15:ab:5f:7e:e4:71:9c:27:9e:dd:e6:db:e2:7e:ce:9c:c7:
92:bf:24:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 22:38:49 2025 by rpki-client