Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/41b8f8-3900-4514-8dbf-27d362e96d40/1/J8QG3ym-nyrVCz7FvVPfuSLRr6A.mft
File: J8QG3ym-nyrVCz7FvVPfuSLRr6A.mft (raw, json)
Hash identifier: FHW4jVL0x94YiFMb8du+j5Hgd1Em1hAumplxeY7wnQ4=
Subject key identifier: 47:C5:39:3A:77:27:93:A8:11:34:9D:68:3A:F5:D2:F3:49:26:80:61
Authority key identifier: 27:C4:06:DF:29:BE:9F:2A:D5:0B:3E:C5:BD:53:DF:B9:22:D1:AF:A0
Certificate issuer: /CN=27c406df29be9f2ad50b3ec5bd53dfb922d1afa0
Certificate serial: 01988DA1F1440600BF6ACDB85CB3227A4F3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J8QG3ym-nyrVCz7FvVPfuSLRr6A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/41b8f8-3900-4514-8dbf-27d362e96d40/1/J8QG3ym-nyrVCz7FvVPfuSLRr6A.mft
Manifest number: 069D
Signing time: Sat 09 Aug 2025 07:00:57 +0000
Manifest this update: Sat 09 Aug 2025 07:00:57 +0000
Manifest next update: Sun 10 Aug 2025 07:00:57 +0000
Files and hashes: 1: J8QG3ym-nyrVCz7FvVPfuSLRr6A.crl (hash: lFMc6FBDtK3DdNZdWu9rnfTujUDl6SoSuMiVGnDk58s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/41b8f8-3900-4514-8dbf-27d362e96d40/1/J8QG3ym-nyrVCz7FvVPfuSLRr6A.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/41b8f8-3900-4514-8dbf-27d362e96d40/1/J8QG3ym-nyrVCz7FvVPfuSLRr6A.mft
rsync://rpki.ripe.net/repository/DEFAULT/J8QG3ym-nyrVCz7FvVPfuSLRr6A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 05:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8d:a1:f1:44:06:00:bf:6a:cd:b8:5c:b3:22:7a:4f:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27c406df29be9f2ad50b3ec5bd53dfb922d1afa0
Validity
Not Before: Aug 9 07:00:57 2025 GMT
Not After : Aug 10 07:00:57 2025 GMT
Subject: CN=47c5393a772793a811349d683af5d2f349268061
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:fb:59:24:f8:63:76:54:cc:30:4c:77:c9:5b:
d6:00:ce:0b:59:2a:f5:97:e7:27:18:b1:f3:3a:fd:
02:ca:ad:a4:c8:3c:87:73:f5:3b:f7:14:2d:94:41:
02:c0:30:a7:cc:7b:43:58:14:63:8d:cb:f3:ef:0f:
aa:61:15:6e:17:0b:30:b2:ed:85:04:66:ac:fe:f6:
03:9c:9a:aa:de:9e:29:e1:75:52:52:88:e3:0b:ac:
71:0a:75:da:26:60:e7:23:22:c2:11:17:59:3c:78:
09:cd:8e:ba:32:42:30:bd:e7:91:05:54:6a:13:da:
85:a4:ed:09:3a:fa:7d:be:c8:33:7c:35:83:d0:01:
cf:53:a9:ef:7b:21:da:19:53:26:b1:ea:3f:b0:5a:
26:4c:dc:db:40:65:37:32:df:20:8e:57:ed:f4:d9:
32:ea:50:45:97:13:d6:8f:44:fa:01:2d:88:19:0d:
6e:bd:0e:a2:9b:2e:c8:e9:70:8f:ef:b3:b3:e7:b5:
c0:c4:3c:5d:69:6e:72:87:c9:c1:63:d4:06:39:44:
0c:78:d1:09:20:e1:4b:89:f4:de:0f:82:62:00:cf:
fb:10:7a:5f:ac:69:64:4e:b0:9e:0f:59:58:01:27:
1a:83:1f:d7:5b:f1:32:3a:f3:05:ee:ac:ba:05:4f:
3c:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:C5:39:3A:77:27:93:A8:11:34:9D:68:3A:F5:D2:F3:49:26:80:61
X509v3 Authority Key Identifier:
keyid:27:C4:06:DF:29:BE:9F:2A:D5:0B:3E:C5:BD:53:DF:B9:22:D1:AF:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J8QG3ym-nyrVCz7FvVPfuSLRr6A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/41b8f8-3900-4514-8dbf-27d362e96d40/1/J8QG3ym-nyrVCz7FvVPfuSLRr6A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/41b8f8-3900-4514-8dbf-27d362e96d40/1/J8QG3ym-nyrVCz7FvVPfuSLRr6A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:4e:f5:6f:6d:30:b0:29:d5:f2:1d:a8:7a:36:3d:40:92:e5:
41:58:b4:fd:9a:64:1a:b3:19:32:7b:83:94:b1:5e:48:5d:d4:
9c:ec:50:1c:7b:92:7d:8c:1a:c7:89:65:d6:7e:e3:a6:17:5f:
53:3a:1e:d4:0b:78:b2:a0:4e:e6:07:cc:be:48:3c:e5:55:39:
ce:12:68:58:8c:fb:b0:d9:79:b8:db:88:65:cb:6e:18:42:76:
51:00:e0:ef:37:91:43:5d:42:fb:79:2b:7e:37:ab:47:8a:aa:
f0:4d:21:29:0b:cd:35:5d:a7:37:6c:73:f0:0e:93:82:b5:f5:
28:3d:27:dc:22:87:bc:52:16:75:76:a9:bc:3a:5d:c5:00:ee:
92:1c:fa:98:f4:27:88:13:3a:d1:f0:0c:00:88:53:95:4d:5b:
17:bd:88:fd:df:f2:83:09:eb:88:9d:70:4c:33:b4:95:3f:39:
e0:be:0f:e3:85:c1:97:3f:3e:7f:95:19:d0:34:6e:8c:5e:d0:
f8:37:d5:ee:ae:bd:08:52:ce:2f:da:bf:46:e5:db:9e:a2:d4:
93:55:4d:e5:25:bd:a2:5e:70:93:af:fe:98:5e:6a:a8:72:7c:
13:3d:e9:73:c8:79:dc:56:bb:6a:ef:2a:02:cf:98:ff:ae:36:
95:09:17:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 10:34:33 2025 by rpki-client