Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft
File: 0jtkd-HIT1KQfNYMY-qD715Kx4I.mft (raw, json)
Hash identifier: RQ+KhIcCVwQTyP2rUpQTx+M1+tXorQl8wlJBqDSuoyQ=
Subject key identifier: 57:5A:AE:59:79:77:38:C0:32:5B:24:EA:05:A8:CA:0F:18:94:B3:E4
Authority key identifier: D2:3B:64:77:E1:C8:4F:52:90:7C:D6:0C:63:EA:83:EF:5E:4A:C7:82
Certificate issuer: /CN=d23b6477e1c84f52907cd60c63ea83ef5e4ac782
Certificate serial: 01989FDF327B31D755EF7B884DDD0090C30E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0jtkd-HIT1KQfNYMY-qD715Kx4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft
Manifest number: 097A
Signing time: Tue 12 Aug 2025 20:01:01 +0000
Manifest this update: Tue 12 Aug 2025 20:01:01 +0000
Manifest next update: Wed 13 Aug 2025 20:01:01 +0000
Files and hashes: 1: 0jtkd-HIT1KQfNYMY-qD715Kx4I.crl (hash: facYvdpKH89a1Wzs7QDHtn46dMNhaDKDEFMDObX3JfQ=)
2: 99RaY9xH4qOYuC0KdiJQrFMbC5E.roa (hash: TZUHN/mcHmz7AzTn504QkH94CMbEPlnfBvzJqjhXWtc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft
rsync://rpki.ripe.net/repository/DEFAULT/0jtkd-HIT1KQfNYMY-qD715Kx4I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 20:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9f:df:32:7b:31:d7:55:ef:7b:88:4d:dd:00:90:c3:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d23b6477e1c84f52907cd60c63ea83ef5e4ac782
Validity
Not Before: Aug 12 20:01:01 2025 GMT
Not After : Aug 13 20:01:01 2025 GMT
Subject: CN=575aae59797738c0325b24ea05a8ca0f1894b3e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:a9:89:8c:8b:1e:62:a5:83:f3:4a:3a:ca:a2:
a8:00:75:f4:d7:3e:6d:ea:fb:a5:54:5d:01:2f:ac:
1c:2a:7d:66:f8:41:d4:e5:c8:da:86:2e:39:e6:9a:
45:36:e8:b8:e9:68:41:3f:21:e3:99:bf:c3:86:e1:
8d:66:3c:42:48:f3:fb:8d:2c:77:01:6f:e5:5b:db:
ce:df:1f:f5:94:ea:88:63:fe:37:4c:0c:b3:1d:e5:
36:23:36:80:c6:8a:ef:c1:8c:f3:ed:02:26:6d:69:
ad:44:53:6c:dd:63:66:ce:80:a4:c3:41:10:52:5b:
af:86:08:f5:4e:17:80:82:f1:1a:8e:ac:76:fe:e7:
96:62:33:d5:87:a9:82:42:14:a5:bc:23:40:44:d2:
de:f3:1e:83:a2:fa:06:3d:a8:c2:67:f6:5d:d9:18:
ef:75:50:8d:26:0b:d6:dc:be:bc:a3:69:9f:c7:9c:
52:e3:aa:02:06:40:f6:1e:91:eb:70:3b:af:1c:20:
54:2a:88:86:51:73:57:6d:dc:70:73:1b:2f:1b:e4:
4b:30:94:b8:ce:8b:7e:98:6c:78:5f:23:71:c0:a6:
ed:10:8f:36:d8:56:53:c6:35:a9:e7:ce:f0:7a:97:
0a:d5:e4:74:aa:2b:cb:64:aa:f9:b6:8d:e1:eb:80:
ea:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:5A:AE:59:79:77:38:C0:32:5B:24:EA:05:A8:CA:0F:18:94:B3:E4
X509v3 Authority Key Identifier:
keyid:D2:3B:64:77:E1:C8:4F:52:90:7C:D6:0C:63:EA:83:EF:5E:4A:C7:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0jtkd-HIT1KQfNYMY-qD715Kx4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:f8:88:8b:0d:54:bd:70:11:4f:ee:a3:a4:c0:56:e0:68:87:
df:74:64:e0:45:4f:14:d0:28:dc:e7:93:ec:e9:2d:1c:0d:99:
bb:a3:51:05:0b:0f:c8:99:4b:70:e7:c7:a1:29:79:f0:95:3c:
64:57:3c:c7:95:85:17:44:b2:d8:1c:65:6a:ba:de:5b:05:0a:
5e:e9:d6:6c:08:f7:4b:0f:80:d1:9c:fd:6e:64:ec:7e:e8:36:
0b:0d:14:ec:e3:dc:dc:43:2d:64:59:58:dd:ce:73:08:6a:80:
9c:8a:43:0b:65:eb:3d:eb:6a:e2:da:17:9a:bb:8f:8e:d0:87:
cf:55:49:11:0a:a3:96:b8:49:01:01:e4:6e:fe:5f:4f:f5:69:
81:92:57:66:f2:12:65:69:b4:9a:bd:97:19:66:14:cb:f2:4d:
f8:48:7d:51:e2:de:5b:0d:ce:cb:25:97:6b:5a:ac:bc:4b:0b:
c7:20:38:2d:cb:bd:35:16:eb:b9:b5:94:ae:6c:f0:02:40:8b:
d2:13:1b:9c:c3:d3:32:30:6b:a2:de:5d:0c:7d:f3:7b:83:d1:
b9:dd:57:16:e7:ba:7a:77:5d:4a:5f:21:b9:fc:a5:68:64:0f:
de:f4:bd:9a:28:d2:1c:eb:aa:e2:b3:67:68:03:34:93:3c:c7:
4d:f2:eb:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 02:42:57 2025 by rpki-client