Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/7d20ed-3d4a-44d3-a2d7-d64d70612a17/1/jh_mbZ9htuZFpEe28GvUm9PgC84.mft
File: jh_mbZ9htuZFpEe28GvUm9PgC84.mft (raw, json)
Hash identifier: OEISNsEN0B2jKgjgIH9v6tBWZsrO2Yzigjhgpf8xFtc=
Subject key identifier: 2E:0A:C4:81:35:04:2A:83:15:82:6A:3F:46:F6:98:D1:C4:8D:41:A2
Authority key identifier: 8E:1F:E6:6D:9F:61:B6:E6:45:A4:47:B6:F0:6B:D4:9B:D3:E0:0B:CE
Certificate issuer: /CN=8e1fe66d9f61b6e645a447b6f06bd49bd3e00bce
Certificate serial: 01967378AC9D70F24DE8DE01E6CADB3F8AA5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jh_mbZ9htuZFpEe28GvUm9PgC84.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/7d20ed-3d4a-44d3-a2d7-d64d70612a17/1/jh_mbZ9htuZFpEe28GvUm9PgC84.mft
Manifest number: 119F
Signing time: Sat 26 Apr 2025 19:00:10 +0000
Manifest this update: Sat 26 Apr 2025 19:00:10 +0000
Manifest next update: Sun 27 Apr 2025 19:00:10 +0000
Files and hashes: 1: jh_mbZ9htuZFpEe28GvUm9PgC84.crl (hash: gkcd+5o+Or0n/NVoXzvwbVHTZUosfJGbMDbG+edC7pI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/7d20ed-3d4a-44d3-a2d7-d64d70612a17/1/jh_mbZ9htuZFpEe28GvUm9PgC84.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/7d20ed-3d4a-44d3-a2d7-d64d70612a17/1/jh_mbZ9htuZFpEe28GvUm9PgC84.mft
rsync://rpki.ripe.net/repository/DEFAULT/jh_mbZ9htuZFpEe28GvUm9PgC84.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:73:78:ac:9d:70:f2:4d:e8:de:01:e6:ca:db:3f:8a:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e1fe66d9f61b6e645a447b6f06bd49bd3e00bce
Validity
Not Before: Apr 26 19:00:10 2025 GMT
Not After : Apr 27 19:00:10 2025 GMT
Subject: CN=2e0ac48135042a8315826a3f46f698d1c48d41a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:b8:8e:b1:9c:fc:e9:39:73:0f:dd:4e:c5:25:
1f:61:50:9d:22:62:71:b7:b6:db:16:aa:dc:2d:9d:
cc:93:c4:0a:ca:66:8d:26:47:9b:bc:e8:2c:e5:e9:
56:5a:23:43:74:dd:f1:91:bb:fd:b2:80:50:15:1b:
0e:67:b4:fb:cf:79:f2:c9:0e:17:ee:58:c2:cd:5b:
96:18:0e:33:f4:68:c4:54:74:b1:c0:6f:f9:e1:73:
e4:69:56:b5:44:56:a8:98:14:df:3e:12:be:3b:44:
93:18:8a:f1:2a:6b:d7:56:6e:a4:27:78:ff:bc:e4:
eb:24:2a:2b:7d:e3:82:d4:be:16:c9:4f:cb:f1:9d:
0a:18:c9:00:f7:09:28:1c:f5:3e:ad:4c:90:28:63:
10:93:53:59:71:6d:5f:ca:ee:6c:6c:de:ec:b3:ac:
2e:2e:d5:31:d2:08:15:62:56:95:ff:f6:44:e8:82:
90:c1:65:c7:c4:0c:d7:2a:15:c1:8b:99:7f:d3:b6:
0d:50:fd:15:f5:ee:73:6e:11:f9:63:f2:00:e8:06:
e2:ff:ba:33:81:4f:ea:fc:7e:30:c2:b9:39:bd:79:
f5:3b:32:5b:ef:a5:02:bc:f7:c2:99:55:e0:d8:65:
87:01:fe:0e:31:dd:4a:13:ff:42:46:7b:a9:a4:60:
fa:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:0A:C4:81:35:04:2A:83:15:82:6A:3F:46:F6:98:D1:C4:8D:41:A2
X509v3 Authority Key Identifier:
keyid:8E:1F:E6:6D:9F:61:B6:E6:45:A4:47:B6:F0:6B:D4:9B:D3:E0:0B:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jh_mbZ9htuZFpEe28GvUm9PgC84.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/7d20ed-3d4a-44d3-a2d7-d64d70612a17/1/jh_mbZ9htuZFpEe28GvUm9PgC84.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/7d20ed-3d4a-44d3-a2d7-d64d70612a17/1/jh_mbZ9htuZFpEe28GvUm9PgC84.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:58:d8:eb:28:ab:82:72:f6:16:38:94:eb:10:1f:7c:42:25:
1e:3e:6d:67:54:76:2b:9e:99:53:61:b1:3a:9e:02:0e:71:8f:
fd:18:25:72:79:c4:0b:96:b1:f8:a2:a9:a1:64:cb:fc:53:06:
29:26:d2:12:5b:f2:2e:eb:fd:75:6f:57:27:84:a3:ec:44:e8:
12:4d:f3:89:c7:9b:1a:e5:57:46:51:d9:e2:42:27:7c:ee:4e:
44:1a:7a:fd:52:22:5c:9e:86:ea:53:8d:bd:ab:93:86:24:ef:
4f:c5:fe:c2:ff:16:ee:8e:4b:82:7a:70:a4:db:e5:6d:6d:a0:
11:79:31:03:d2:81:c0:a5:e2:08:75:2a:d8:02:5d:b3:bc:28:
19:00:a5:94:66:59:47:a3:8a:94:b9:f3:43:26:5e:ba:b2:19:
94:00:7b:af:7b:c2:89:88:25:69:a7:f7:d0:4d:9d:99:f9:a7:
1d:03:a0:7a:94:74:ee:b6:4f:02:f2:66:18:bf:50:e1:3c:2e:
ae:98:68:b2:8a:86:ee:88:68:8e:2d:32:3a:9e:21:17:04:57:
7c:42:45:f0:59:9b:0f:4b:75:d1:d6:67:c5:4e:0d:c2:cd:78:
38:6a:dc:a6:ab:7c:d7:68:a4:4c:9f:4e:54:d0:85:c9:73:98:
f0:c1:fa:57
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZzeKydcPJN6N4B5srbP4qlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhlMWZlNjZkOWY2MWI2ZTY0NWE0NDdiNmYwNmJkNDliZDNl
MDBiY2UwHhcNMjUwNDI2MTkwMDEwWhcNMjUwNDI3MTkwMDEwWjAzMTEwLwYDVQQD
EygyZTBhYzQ4MTM1MDQyYTgzMTU4MjZhM2Y0NmY2OThkMWM0OGQ0MWEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApLiOsZz86TlzD91OxSUfYVCdImJx
t7bbFqrcLZ3Mk8QKymaNJkebvOgs5elWWiNDdN3xkbv9soBQFRsOZ7T7z3nyyQ4X
7ljCzVuWGA4z9GjEVHSxwG/54XPkaVa1RFaomBTfPhK+O0STGIrxKmvXVm6kJ3j/
vOTrJCorfeOC1L4WyU/L8Z0KGMkA9wkoHPU+rUyQKGMQk1NZcW1fyu5sbN7ss6wu
LtUx0ggVYlaV//ZE6IKQwWXHxAzXKhXBi5l/07YNUP0V9e5zbhH5Y/IA6Abi/7oz
gU/q/H4wwrk5vXn1OzJb76UCvPfCmVXg2GWHAf4OMd1KE/9CRnuppGD6UwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC4KxIE1BCqDFYJqP0b2mNHEjUGiMB8GA1UdIwQY
MBaAFI4f5m2fYbbmRaRHtvBr1JvT4AvOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvamhfbWJaOWh0dVpGcEVlMjhHdlVtOVBnQzg0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS83ZDIwZWQtM2Q0YS00NGQzLWEyZDct
ZDY0ZDcwNjEyYTE3LzEvamhfbWJaOWh0dVpGcEVlMjhHdlVtOVBnQzg0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS83ZDIwZWQtM2Q0YS00NGQzLWEyZDctZDY0ZDcwNjEyYTE3
LzEvamhfbWJaOWh0dVpGcEVlMjhHdlVtOVBnQzg0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPljY6yir
gnL2FjiU6xAffEIlHj5tZ1R2K56ZU2GxOp4CDnGP/RglcnnEC5ax+KKpoWTL/FMG
KSbSElvyLuv9dW9XJ4Sj7EToEk3zicebGuVXRlHZ4kInfO5ORBp6/VIiXJ6G6lON
vauThiTvT8X+wv8W7o5LgnpwpNvlbW2gEXkxA9KBwKXiCHUq2AJds7woGQCllGZZ
R6OKlLnzQyZeurIZlAB7r3vCiYglaaf30E2dmfmnHQOgepR07rZPAvJmGL9Q4Twu
rphosoqG7ohoji0yOp4hFwRXfEJF8FmbD0t10dZnxU4Nws14OGrcpqt812ikTJ9O
VNCFyXOY8MH6Vw==
-----END CERTIFICATE-----
Generated at Sun Apr 27 06:07:15 2025 by rpki-client