Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.mft
File: jrsOsZ53d9cDgAD2wS053tEgQkI.mft (raw, json)
Hash identifier: GM+OrA2exuv5HPoBRWQEuKe1FvSgoSYOcjbea8Ej7dg=
Subject key identifier: E6:99:80:FC:D7:01:82:C0:DD:65:A9:6B:16:DD:F3:78:89:B6:A4:D6
Authority key identifier: 8E:BB:0E:B1:9E:77:77:D7:03:80:00:F6:C1:2D:39:DE:D1:20:42:42
Certificate issuer: /CN=8ebb0eb19e7777d7038000f6c12d39ded1204242
Certificate serial: 01988EEB8E4176CC312570583FEA54B5E3AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jrsOsZ53d9cDgAD2wS053tEgQkI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.mft
Manifest number: 0C5F
Signing time: Sat 09 Aug 2025 13:00:58 +0000
Manifest this update: Sat 09 Aug 2025 13:00:58 +0000
Manifest next update: Sun 10 Aug 2025 13:00:58 +0000
Files and hashes: 1: 68-2o2gnqeFje-83JI2NL7vcFCs.roa (hash: 5XT1BGaZiWzYIBY9EJMQdD9z2CvFYvirF/G5S8/gceM=)
2: jrsOsZ53d9cDgAD2wS053tEgQkI.crl (hash: lTCoUq0oGTSp2+cU910PJKtbSDnZU3DRMQw+Xe4MVl0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.mft
rsync://rpki.ripe.net/repository/DEFAULT/jrsOsZ53d9cDgAD2wS053tEgQkI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 05:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8e:eb:8e:41:76:cc:31:25:70:58:3f:ea:54:b5:e3:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ebb0eb19e7777d7038000f6c12d39ded1204242
Validity
Not Before: Aug 9 13:00:58 2025 GMT
Not After : Aug 10 13:00:58 2025 GMT
Subject: CN=e69980fcd70182c0dd65a96b16ddf37889b6a4d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:71:c7:1d:5e:7f:9c:25:9e:fa:31:41:49:cd:
b2:47:de:32:dd:f4:8b:a7:14:a2:dc:a7:91:41:77:
3d:61:9e:86:51:e2:c3:93:f8:cd:13:4d:29:d5:f6:
2b:99:d2:34:14:8c:d4:51:6a:cd:87:35:b1:d5:b8:
9d:9a:fc:f4:95:fa:c2:14:94:33:ae:c2:96:11:22:
93:d2:77:24:f0:50:83:49:01:bd:a7:b9:4a:1d:8d:
cc:38:12:97:6a:fb:18:33:49:81:6b:60:a7:98:e5:
c0:0a:cf:9e:cc:2c:2c:52:10:f7:bf:1f:9c:20:77:
c1:fb:7c:10:82:58:fe:a2:04:68:72:c4:a0:e3:db:
03:b8:66:90:24:0a:b0:50:14:0a:60:c3:13:88:25:
15:13:b3:3d:49:35:aa:ff:fc:0d:d3:31:39:32:ca:
55:d5:74:db:ff:d0:8f:ba:76:ff:6c:65:34:79:89:
3e:ad:cd:1b:d8:d1:e7:e2:72:e0:35:64:bc:be:91:
d7:b2:49:3e:c3:0b:8a:66:41:df:d8:35:b7:43:dd:
10:fc:91:a7:1b:9d:8a:8c:82:74:ee:7e:51:c4:dd:
ce:f3:77:b6:ef:f6:37:a5:86:4b:90:05:ca:bf:36:
e7:da:67:50:05:f1:53:45:2d:4a:b0:b1:21:22:62:
f5:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:99:80:FC:D7:01:82:C0:DD:65:A9:6B:16:DD:F3:78:89:B6:A4:D6
X509v3 Authority Key Identifier:
keyid:8E:BB:0E:B1:9E:77:77:D7:03:80:00:F6:C1:2D:39:DE:D1:20:42:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jrsOsZ53d9cDgAD2wS053tEgQkI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:8e:a4:32:b3:7e:db:7b:c6:f8:17:fd:17:bc:ee:4d:d1:66:
fb:7c:7c:97:5e:d9:8e:72:0e:e3:5b:f5:2b:8e:8a:65:50:74:
05:89:1c:56:04:11:92:5b:9d:0d:fe:c4:71:71:21:4c:34:e4:
ef:db:87:fc:47:1d:a8:ce:c4:ee:a4:75:31:74:25:db:b0:ba:
ef:93:48:0e:3d:07:39:2c:ca:a7:0a:01:f6:ce:49:9b:a2:d1:
c0:6e:41:e0:f0:3e:37:10:e4:00:1e:09:b7:0f:a3:e4:f9:29:
75:54:2e:d1:61:5e:9c:d8:4d:01:b8:3b:e9:ec:52:2d:63:fe:
b1:ad:6e:21:24:39:92:e4:89:c8:89:69:b1:2c:8f:0f:52:c6:
21:31:4b:cc:ef:43:ed:f6:9a:79:e1:02:ea:28:bd:2c:9e:b7:
ca:dc:03:cb:59:e1:3a:93:1e:1c:e4:ee:3a:65:e3:ee:a0:1a:
b2:0e:ed:5b:71:2e:92:7b:e7:2f:b9:00:e8:31:e2:e4:ba:4d:
84:be:6b:d9:06:34:70:fa:8a:02:d1:61:97:e6:e7:0c:97:f3:
63:bc:6a:d6:dd:43:f4:a3:12:bb:5e:c9:ff:1c:4c:7a:20:aa:
a2:dc:5f:19:74:24:9c:f1:93:02:49:d9:77:d2:96:cf:93:31:
9a:48:2c:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 14:31:22 2025 by rpki-client