Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.mft
File: jrsOsZ53d9cDgAD2wS053tEgQkI.mft (raw, json)
Hash identifier: meLLie7dXNE79WFNoWWPGTSii5Kem5TJkzzwX1bh/84=
Subject key identifier: 93:57:C5:32:1D:0A:6C:36:4E:F2:57:CA:09:33:E6:F0:98:19:FF:A1
Authority key identifier: 8E:BB:0E:B1:9E:77:77:D7:03:80:00:F6:C1:2D:39:DE:D1:20:42:42
Certificate issuer: /CN=8ebb0eb19e7777d7038000f6c12d39ded1204242
Certificate serial: 0197843342D2C22CF8409AD7B4606B30E8CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jrsOsZ53d9cDgAD2wS053tEgQkI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.mft
Manifest number: 0BD5
Signing time: Wed 18 Jun 2025 18:00:41 +0000
Manifest this update: Wed 18 Jun 2025 18:00:41 +0000
Manifest next update: Thu 19 Jun 2025 18:00:41 +0000
Files and hashes: 1: 68-2o2gnqeFje-83JI2NL7vcFCs.roa (hash: 5XT1BGaZiWzYIBY9EJMQdD9z2CvFYvirF/G5S8/gceM=)
2: jrsOsZ53d9cDgAD2wS053tEgQkI.crl (hash: /esLZw5mvMmHImBsK4FZfLokKJ7h8HFxTYY39pN5K1c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.mft
rsync://rpki.ripe.net/repository/DEFAULT/jrsOsZ53d9cDgAD2wS053tEgQkI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Jun 2025 18:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:84:33:42:d2:c2:2c:f8:40:9a:d7:b4:60:6b:30:e8:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ebb0eb19e7777d7038000f6c12d39ded1204242
Validity
Not Before: Jun 18 18:00:41 2025 GMT
Not After : Jun 19 18:00:41 2025 GMT
Subject: CN=9357c5321d0a6c364ef257ca0933e6f09819ffa1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:7c:2d:2c:70:93:90:d8:b1:e1:85:fc:d1:30:
4a:fe:b9:96:66:ed:c7:c5:8e:91:e6:56:ce:df:96:
6d:93:8d:fb:f2:99:1f:87:39:8f:ad:35:08:54:40:
0e:ab:c0:f4:8e:0a:8f:91:17:13:83:1d:17:ef:b6:
bc:e2:25:e5:38:a4:24:a0:2a:0b:34:2c:e4:43:9e:
30:c9:73:61:2e:fd:98:73:fe:6f:96:18:1e:df:79:
22:1b:43:aa:60:9d:25:c6:b8:53:b9:3f:86:43:3e:
17:95:e0:86:86:7f:1f:eb:c7:54:f3:4b:d7:3a:24:
48:fc:d8:93:61:db:3b:6b:59:c8:da:8b:e8:91:04:
64:79:ad:8b:4e:d1:99:84:80:c9:9f:ca:a1:2e:b1:
ec:84:65:f3:8d:0a:c4:be:0a:79:2c:50:d1:84:c3:
71:1c:b9:c8:f9:41:34:34:08:3c:27:a3:8a:47:6e:
9e:73:8d:5e:6c:5c:8e:e6:4b:e9:77:3b:5d:09:10:
8e:f1:92:99:36:7e:fc:58:9f:c9:0f:a3:29:10:17:
07:e5:ee:71:0a:69:2d:3f:0a:e4:38:22:10:80:70:
9e:df:b0:0d:70:cf:bd:ef:31:b0:a9:71:bc:be:d6:
fb:76:f5:d3:ae:66:8e:a2:c7:a1:0b:bb:40:72:e8:
d2:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:57:C5:32:1D:0A:6C:36:4E:F2:57:CA:09:33:E6:F0:98:19:FF:A1
X509v3 Authority Key Identifier:
keyid:8E:BB:0E:B1:9E:77:77:D7:03:80:00:F6:C1:2D:39:DE:D1:20:42:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jrsOsZ53d9cDgAD2wS053tEgQkI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:ec:95:a0:c4:92:8b:c6:bb:c1:4f:73:08:f8:bc:43:25:aa:
7a:d4:4f:1f:88:63:0c:19:b7:44:53:fc:a1:1b:52:3b:c5:6c:
8a:17:af:c8:a5:22:44:44:cb:97:85:9f:16:fc:49:59:7f:56:
33:f1:56:c5:6c:e5:b0:e9:f0:46:fd:ba:0e:a9:9d:ee:65:66:
ae:ac:7c:fc:c9:b9:6d:9a:50:c2:64:25:2b:fd:65:b1:55:a6:
a1:66:3d:06:39:10:ac:f5:2a:63:ec:88:99:13:34:45:df:2a:
6c:03:db:67:34:9b:99:ba:d2:55:b9:e5:a0:c1:fa:3b:ae:d5:
13:ed:c3:99:c1:1d:b6:f8:fe:7f:31:2b:34:6d:d3:56:cc:61:
10:3d:48:e5:23:52:9d:55:e4:ac:9a:08:6b:2b:c1:6d:18:98:
1d:d0:2f:1c:be:ea:94:68:9f:98:16:93:17:00:27:e8:39:0e:
02:9d:fe:ed:11:03:77:06:10:3c:1f:0e:92:07:79:5e:c0:2e:
3d:4d:3f:d1:01:f7:19:5f:04:99:66:8c:14:dc:03:5d:4a:fc:
59:29:ff:13:1a:d6:dc:40:1e:3d:8e:81:7e:fc:b8:61:d7:f4:
4a:75:d6:a3:aa:99:c7:15:45:49:df:e9:3a:f2:ed:90:a7:7a:
e1:b2:b4:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 19 04:38:39 2025 by rpki-client