Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/1ac271-6be9-4a14-8616-465a333ab444/1/jYQ7V9CvzBEv44lmi_Z12A2CI9o.mft
File: jYQ7V9CvzBEv44lmi_Z12A2CI9o.mft (raw, json)
Hash identifier: 0wwHS6KgLB3PT+/gB0V+wAECVTCGuL1cWR3Mch784Ls=
Subject key identifier: 4C:75:38:FB:04:12:38:DC:05:86:3D:F8:44:1B:AE:0F:09:DA:09:30
Authority key identifier: 8D:84:3B:57:D0:AF:CC:11:2F:E3:89:66:8B:F6:75:D8:0D:82:23:DA
Certificate issuer: /CN=8d843b57d0afcc112fe389668bf675d80d8223da
Certificate serial: 01987E65BA45D12141B7C0230EFCE9C77F2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jYQ7V9CvzBEv44lmi_Z12A2CI9o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/1ac271-6be9-4a14-8616-465a333ab444/1/jYQ7V9CvzBEv44lmi_Z12A2CI9o.mft
Manifest number: 0740
Signing time: Wed 06 Aug 2025 08:00:52 +0000
Manifest this update: Wed 06 Aug 2025 08:00:52 +0000
Manifest next update: Thu 07 Aug 2025 08:00:52 +0000
Files and hashes: 1: iKKb1X29tTU2k_RZJyC1P6S0W1I.roa (hash: JYbd5SDgMPm4EIN7ny/Mr7yif1cItUNdM4vZHpLmqsU=)
2: jYQ7V9CvzBEv44lmi_Z12A2CI9o.crl (hash: htBeuqw96jY17BsmOxJeqIP7PWJwC4kEmtQfRv+kt+A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/1ac271-6be9-4a14-8616-465a333ab444/1/jYQ7V9CvzBEv44lmi_Z12A2CI9o.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/1ac271-6be9-4a14-8616-465a333ab444/1/jYQ7V9CvzBEv44lmi_Z12A2CI9o.mft
rsync://rpki.ripe.net/repository/DEFAULT/jYQ7V9CvzBEv44lmi_Z12A2CI9o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 08:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7e:65:ba:45:d1:21:41:b7:c0:23:0e:fc:e9:c7:7f:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d843b57d0afcc112fe389668bf675d80d8223da
Validity
Not Before: Aug 6 08:00:52 2025 GMT
Not After : Aug 7 08:00:52 2025 GMT
Subject: CN=4c7538fb041238dc05863df8441bae0f09da0930
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:be:34:8b:2e:e8:fd:c4:54:bd:13:4d:dd:c4:
64:8a:d5:4d:fe:70:97:17:29:c8:f5:76:74:58:c6:
46:08:fe:4c:6d:bd:e0:12:2f:6f:b0:b9:4c:5b:b7:
42:41:d1:0b:97:ea:c2:f9:ad:21:36:18:20:0c:12:
48:4e:18:b4:4f:c7:69:51:67:b6:ee:16:86:fd:60:
28:63:67:97:e5:72:93:31:02:12:7e:47:7d:5a:cf:
e0:00:8d:6d:b8:98:b3:e3:e0:f0:f1:ec:d1:ad:2f:
21:13:58:f4:3b:be:35:28:19:d5:5f:ce:51:41:b0:
a9:57:81:e0:e8:62:b4:bc:ae:76:bc:07:41:41:1c:
ca:62:f9:56:e1:81:48:c1:5c:15:a8:9e:dd:0c:9b:
72:46:96:cb:33:01:d8:66:af:20:9d:76:5d:02:03:
83:3c:68:de:4a:42:34:98:3d:fd:1a:d3:81:f6:2c:
9d:3f:23:5e:aa:0e:fa:df:18:4c:43:bd:d6:b6:e6:
e3:e0:cb:3e:70:47:64:dd:cd:79:f0:e0:49:bd:13:
88:2d:8f:6a:0f:dd:fe:f1:53:d9:d5:86:c1:b8:96:
7f:b6:0f:8c:e6:8e:1b:73:2f:f8:94:c3:97:82:0f:
eb:f1:eb:78:14:da:72:33:a6:e3:b1:50:19:59:ed:
57:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:75:38:FB:04:12:38:DC:05:86:3D:F8:44:1B:AE:0F:09:DA:09:30
X509v3 Authority Key Identifier:
keyid:8D:84:3B:57:D0:AF:CC:11:2F:E3:89:66:8B:F6:75:D8:0D:82:23:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jYQ7V9CvzBEv44lmi_Z12A2CI9o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/1ac271-6be9-4a14-8616-465a333ab444/1/jYQ7V9CvzBEv44lmi_Z12A2CI9o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/1ac271-6be9-4a14-8616-465a333ab444/1/jYQ7V9CvzBEv44lmi_Z12A2CI9o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:f2:f3:ac:10:7b:ae:3c:df:a7:61:7b:7e:49:81:ab:4a:4d:
62:02:dc:17:05:be:59:57:50:5d:9d:d5:c8:72:35:56:8e:33:
32:6d:e4:2c:8c:77:23:9e:bd:e9:b1:1e:26:69:ae:8c:b1:ad:
cd:8b:b7:ac:c6:8a:84:2d:7b:dc:a3:54:86:66:bc:1b:db:e7:
9e:3a:34:1d:af:c1:a6:2b:86:c4:e1:22:41:8d:f1:16:85:b8:
f2:7f:93:d6:cd:42:5f:dc:4b:25:bc:2e:48:f6:1f:71:f2:e2:
e9:e1:ab:98:b3:73:dd:17:f3:4f:a2:80:7d:51:a5:a9:41:e0:
e5:2e:6c:85:57:79:34:35:ae:6a:31:25:66:36:a6:0f:38:2c:
74:70:68:ee:10:25:61:5a:71:c8:78:e9:2d:f0:c4:5a:4f:1c:
32:e4:21:37:3d:8e:3a:2f:54:54:f0:2b:0d:8b:0e:8a:33:fd:
89:44:f8:a0:40:b1:43:eb:27:86:bb:04:b5:50:31:be:8f:61:
63:38:8d:0c:e7:44:dc:2c:e6:f8:0d:53:66:fc:93:cf:1d:f2:
39:52:2f:d7:af:e7:2d:8e:b5:a6:b3:c7:c1:a3:1d:de:26:ae:
86:a4:15:49:75:b5:be:e5:62:49:07:6f:6b:f2:fd:cd:e3:1b:
e7:df:0c:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 11:04:37 2025 by rpki-client