Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/1ac271-6be9-4a14-8616-465a333ab444/1/jYQ7V9CvzBEv44lmi_Z12A2CI9o.mft
File: jYQ7V9CvzBEv44lmi_Z12A2CI9o.mft (raw, json)
Hash identifier: gTSbOhvdK20k8YjUTSwJVY5G3scNOIhDylKZIEIfdko=
Subject key identifier: 1E:8D:86:B2:5C:ED:03:EB:57:AC:9D:E1:41:8C:4A:00:32:A0:A2:73
Authority key identifier: 8D:84:3B:57:D0:AF:CC:11:2F:E3:89:66:8B:F6:75:D8:0D:82:23:DA
Certificate issuer: /CN=8d843b57d0afcc112fe389668bf675d80d8223da
Certificate serial: 019A4DE1762583FEDE927DAE419BAC2DCED1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jYQ7V9CvzBEv44lmi_Z12A2CI9o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/1ac271-6be9-4a14-8616-465a333ab444/1/jYQ7V9CvzBEv44lmi_Z12A2CI9o.mft
Manifest number: 0830
Signing time: Tue 04 Nov 2025 08:00:12 +0000
Manifest this update: Tue 04 Nov 2025 08:00:12 +0000
Manifest next update: Wed 05 Nov 2025 08:00:12 +0000
Files and hashes: 1: iKKb1X29tTU2k_RZJyC1P6S0W1I.roa (hash: JYbd5SDgMPm4EIN7ny/Mr7yif1cItUNdM4vZHpLmqsU=)
2: jYQ7V9CvzBEv44lmi_Z12A2CI9o.crl (hash: Ts2NW/ydpH+98W61xy4zdfVV0nT5aM/bIMEkJsEtBxo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/1ac271-6be9-4a14-8616-465a333ab444/1/jYQ7V9CvzBEv44lmi_Z12A2CI9o.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/1ac271-6be9-4a14-8616-465a333ab444/1/jYQ7V9CvzBEv44lmi_Z12A2CI9o.mft
rsync://rpki.ripe.net/repository/DEFAULT/jYQ7V9CvzBEv44lmi_Z12A2CI9o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 08:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:e1:76:25:83:fe:de:92:7d:ae:41:9b:ac:2d:ce:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d843b57d0afcc112fe389668bf675d80d8223da
Validity
Not Before: Nov 4 08:00:12 2025 GMT
Not After : Nov 5 08:00:12 2025 GMT
Subject: CN=1e8d86b25ced03eb57ac9de1418c4a0032a0a273
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:fe:44:6d:4e:39:31:01:7a:ac:5a:63:a4:1c:
7d:78:62:0e:35:9a:2e:8e:6c:50:f6:ca:b0:f6:82:
8a:47:02:6c:20:dc:6a:12:c8:47:38:cb:9a:f8:d4:
a1:bb:9c:70:62:ac:a8:a5:bc:9d:e7:49:05:5b:46:
a8:3d:8e:ac:e2:2c:dc:07:c2:fd:74:cb:32:7b:56:
e1:bd:c6:50:36:9d:59:ae:5d:10:6f:55:22:76:a4:
cb:5f:06:7a:25:85:01:a8:b9:ae:90:22:44:27:4c:
f0:d6:13:f1:94:fb:42:e3:c1:23:68:da:ed:2a:09:
80:0d:e4:30:eb:96:1b:5a:29:a8:26:4d:c8:06:9d:
a7:c9:b6:4c:3a:02:bf:1b:a0:1b:73:eb:9a:a6:9b:
e8:a8:f4:ac:2d:8b:0a:18:c4:77:1e:23:a2:cf:4f:
bb:d9:ce:dc:ec:b5:74:64:0a:8a:f4:cb:8a:1d:95:
dd:da:a3:b9:16:a0:f6:20:44:94:38:03:1a:7d:a7:
58:05:ee:bc:7f:55:13:86:11:51:37:1d:1f:78:6a:
a0:a9:83:74:7d:6f:1f:97:66:a5:34:55:6f:30:d4:
d5:66:7c:c1:9a:3b:f2:6c:06:36:48:ec:ab:6f:0c:
02:05:60:c6:71:43:8e:6c:e8:59:2e:83:51:68:9b:
ed:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:8D:86:B2:5C:ED:03:EB:57:AC:9D:E1:41:8C:4A:00:32:A0:A2:73
X509v3 Authority Key Identifier:
keyid:8D:84:3B:57:D0:AF:CC:11:2F:E3:89:66:8B:F6:75:D8:0D:82:23:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jYQ7V9CvzBEv44lmi_Z12A2CI9o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/1ac271-6be9-4a14-8616-465a333ab444/1/jYQ7V9CvzBEv44lmi_Z12A2CI9o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/1ac271-6be9-4a14-8616-465a333ab444/1/jYQ7V9CvzBEv44lmi_Z12A2CI9o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:ed:94:31:b4:00:93:99:a6:1e:2e:ae:82:55:d4:e5:33:bf:
af:6f:30:f4:f9:82:97:de:89:f4:be:2d:b8:aa:2c:59:29:0b:
da:1b:37:f5:21:a3:42:4c:a7:11:9d:07:34:ea:2b:4d:6b:f9:
76:c7:5e:d8:67:8e:bd:59:57:79:e7:7e:58:0f:50:27:91:55:
eb:d5:ba:a6:0f:30:59:01:bf:84:51:d8:44:23:90:9a:dc:0f:
ad:db:6a:ee:73:fe:3c:21:53:1e:61:85:91:4a:2d:fc:15:62:
62:42:38:51:b7:81:38:29:ef:f5:dd:82:ed:8a:9d:a3:20:c7:
e7:a9:99:d0:1a:b1:5c:51:0d:ef:9f:a8:4f:55:a8:7c:04:c9:
1a:44:b2:8a:02:78:fd:19:cf:fb:3b:ff:c0:6a:a2:bd:9c:f9:
d6:ae:bf:3a:bd:e4:2c:3a:a6:cc:8b:7f:80:3f:94:23:b3:76:
e9:57:b1:4b:27:69:c5:b2:3e:87:a6:f0:12:c0:e7:0c:ab:72:
b5:7b:c8:ef:e9:43:5a:cb:93:8a:6a:6b:9d:ee:e8:d6:da:3b:
82:f0:89:47:bc:fa:d6:8e:a1:82:82:4a:ca:e9:1c:38:fa:ab:
49:95:5c:30:8f:b8:6e:34:3f:8c:2a:e1:33:9b:e2:5a:c6:91:
8d:d2:42:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:20:28 2025 by rpki-client