Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/bc53d2-9137-4799-9e41-e69a017485fb/1/jolfHicMY17GHfmpf8D2aMCo9Ug.mft
File: jolfHicMY17GHfmpf8D2aMCo9Ug.mft (raw, json)
Hash identifier: cZdX6NWN/lZu/55glwxhzfBlv0tDvWH/WoM4RpwFFA4=
Subject key identifier: 70:9A:D1:AF:12:9D:EA:74:32:A7:B3:A2:28:25:5E:90:01:57:00:3D
Authority key identifier: 8E:89:5F:1E:27:0C:63:5E:C6:1D:F9:A9:7F:C0:F6:68:C0:A8:F5:48
Certificate issuer: /CN=8e895f1e270c635ec61df9a97fc0f668c0a8f548
Certificate serial: 0197789D3B3049E8F3B218C8E6DB1D01D0DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jolfHicMY17GHfmpf8D2aMCo9Ug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/bc53d2-9137-4799-9e41-e69a017485fb/1/jolfHicMY17GHfmpf8D2aMCo9Ug.mft
Manifest number: 1089
Signing time: Mon 16 Jun 2025 12:00:59 +0000
Manifest this update: Mon 16 Jun 2025 12:00:59 +0000
Manifest next update: Tue 17 Jun 2025 12:00:59 +0000
Files and hashes: 1: ExwmpmCoQJo2OxTGvS9tBUVoCTI.roa (hash: 5uKveASNNkoz3m6Z/IoI5wPaRI1/s/iR92XdJr3b/vs=)
2: jolfHicMY17GHfmpf8D2aMCo9Ug.crl (hash: eaelPW97NzciLyiFvu12anVq1l/u+YFa+jvSIvbOoIA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/bc53d2-9137-4799-9e41-e69a017485fb/1/jolfHicMY17GHfmpf8D2aMCo9Ug.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/bc53d2-9137-4799-9e41-e69a017485fb/1/jolfHicMY17GHfmpf8D2aMCo9Ug.mft
rsync://rpki.ripe.net/repository/DEFAULT/jolfHicMY17GHfmpf8D2aMCo9Ug.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 12:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:78:9d:3b:30:49:e8:f3:b2:18:c8:e6:db:1d:01:d0:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e895f1e270c635ec61df9a97fc0f668c0a8f548
Validity
Not Before: Jun 16 12:00:59 2025 GMT
Not After : Jun 17 12:00:59 2025 GMT
Subject: CN=709ad1af129dea7432a7b3a228255e900157003d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:7c:ee:05:72:54:8a:fe:87:56:be:f8:35:2d:
81:84:40:a1:48:ec:83:55:d4:e8:9c:61:09:e0:f1:
40:f7:2f:2e:f5:43:8f:03:8e:9f:39:86:59:5c:9e:
a7:4f:9a:82:fd:9f:2a:b9:91:2b:b5:12:81:93:24:
06:f6:a4:5d:06:f0:c0:4a:16:bb:09:b9:9a:a3:0e:
7e:0b:7e:80:8f:fa:34:cf:cd:0f:d5:62:7c:b4:d1:
c0:4d:82:6b:9f:03:48:0d:7a:6e:fa:f4:12:df:29:
ab:b2:18:4e:34:57:ab:3a:b1:f1:5d:2c:38:1d:d9:
5c:3b:14:29:a9:2d:96:6a:78:5c:71:f4:8b:cc:d6:
31:79:13:0b:3f:36:d1:76:86:76:53:de:26:d5:06:
24:42:d5:b0:4a:cc:f1:89:be:98:43:18:fe:66:47:
28:64:9a:2a:43:3b:8a:18:38:ae:93:79:53:c2:c0:
dd:e0:48:c8:a1:67:8a:f7:6b:f2:d2:2d:d7:68:a4:
38:63:ed:c7:7b:09:0b:54:45:01:33:d4:a1:d0:0a:
8c:d3:f1:2b:bc:0c:16:58:29:4d:1d:20:ec:25:e6:
72:14:c3:7c:49:1b:f7:e3:de:2c:cf:7b:11:75:6b:
56:51:01:90:19:c6:1a:08:e0:4a:82:c4:bf:21:23:
a2:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:9A:D1:AF:12:9D:EA:74:32:A7:B3:A2:28:25:5E:90:01:57:00:3D
X509v3 Authority Key Identifier:
keyid:8E:89:5F:1E:27:0C:63:5E:C6:1D:F9:A9:7F:C0:F6:68:C0:A8:F5:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jolfHicMY17GHfmpf8D2aMCo9Ug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/bc53d2-9137-4799-9e41-e69a017485fb/1/jolfHicMY17GHfmpf8D2aMCo9Ug.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/bc53d2-9137-4799-9e41-e69a017485fb/1/jolfHicMY17GHfmpf8D2aMCo9Ug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:e8:82:75:1d:93:dc:b0:20:0a:b8:b3:45:e5:15:cb:56:27:
b7:a0:35:4c:7b:d3:f5:ea:51:85:a8:eb:09:c5:5e:c7:94:60:
f8:3c:ac:ea:4e:65:f7:e9:57:8a:b0:fe:00:93:04:56:e2:0d:
8e:04:32:d8:90:f7:04:f0:38:fa:a5:d6:9e:fa:46:2c:1c:b8:
4a:25:b9:2a:35:a1:99:54:b5:31:00:fb:9c:b5:21:ac:8b:14:
c9:9b:b6:d5:be:20:ba:b8:d1:07:4b:73:04:10:5e:97:08:f3:
7b:b2:ec:9e:85:59:f3:74:84:c6:5d:d4:5c:00:1b:44:5d:00:
6c:0a:dc:ae:50:1a:9b:b9:29:1a:54:79:6b:52:cc:02:c6:5a:
12:ac:7b:2d:47:2f:05:be:ab:7e:85:c9:6b:85:3d:d4:b4:c0:
bb:31:c8:fb:32:e8:b8:2a:d7:16:27:f7:65:70:1e:1f:7e:53:
0c:40:35:6b:d7:74:71:e2:0e:84:ae:41:d6:9f:78:a5:af:af:
b2:5c:b2:8a:f6:29:1b:b6:eb:2c:aa:39:51:b7:4f:b3:7e:b7:
f2:f6:c9:4f:aa:29:c3:fe:1c:76:43:87:ce:6b:6a:b5:0c:af:
67:1f:fa:0e:2b:d5:dc:ff:95:cd:4f:96:62:1a:e6:66:13:93:
33:13:d6:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 20:47:04 2025 by rpki-client