
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/739291-2d5c-4c1d-9079-027e8c09146b/1/JGJNNpZGiPmJxkSsIBH0Fl086wc.mft
File: JGJNNpZGiPmJxkSsIBH0Fl086wc.mft (raw, json)
Hash identifier: xVXng8XLrxSlG+sCgNZKE7u35Pb9SKAcTo7ID2ewprk=
Subject key identifier: 1B:AE:01:66:1B:16:7A:CB:9A:34:21:FA:D8:38:6F:52:2C:F9:E4:90
Authority key identifier: 24:62:4D:36:96:46:88:F9:89:C6:44:AC:20:11:F4:16:5D:3C:EB:07
Certificate issuer: /CN=24624d36964688f989c644ac2011f4165d3ceb07
Certificate serial: 019873E22C861C2D84A50F876AEDCE50B7A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JGJNNpZGiPmJxkSsIBH0Fl086wc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/739291-2d5c-4c1d-9079-027e8c09146b/1/JGJNNpZGiPmJxkSsIBH0Fl086wc.mft
Manifest number: 096F
Signing time: Mon 04 Aug 2025 07:00:59 +0000
Manifest this update: Mon 04 Aug 2025 07:00:59 +0000
Manifest next update: Tue 05 Aug 2025 07:00:59 +0000
Files and hashes: 1: JGJNNpZGiPmJxkSsIBH0Fl086wc.crl (hash: H9ci9K1KgvW9YxtPo+KceIBPm+GGgv6ZtfDlyxLa24o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/739291-2d5c-4c1d-9079-027e8c09146b/1/JGJNNpZGiPmJxkSsIBH0Fl086wc.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/739291-2d5c-4c1d-9079-027e8c09146b/1/JGJNNpZGiPmJxkSsIBH0Fl086wc.mft
rsync://rpki.ripe.net/repository/DEFAULT/JGJNNpZGiPmJxkSsIBH0Fl086wc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e2:2c:86:1c:2d:84:a5:0f:87:6a:ed:ce:50:b7:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24624d36964688f989c644ac2011f4165d3ceb07
Validity
Not Before: Aug 4 07:00:59 2025 GMT
Not After : Aug 5 07:00:59 2025 GMT
Subject: CN=1bae01661b167acb9a3421fad8386f522cf9e490
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:05:77:f1:c6:62:f5:f1:5c:db:d0:92:ea:15:
86:0b:0f:66:db:6b:4d:14:0c:f0:cf:77:64:ab:6e:
60:ea:a9:db:a8:bf:a5:95:bd:9b:aa:48:64:cf:63:
32:5b:da:38:41:2a:fc:86:d2:a8:57:c1:4b:7b:8a:
ad:df:3d:6f:c9:98:58:e3:d5:b4:45:4b:30:4e:ee:
9d:3e:9e:bf:64:d3:a1:e6:94:53:9e:c8:7e:38:bf:
80:fc:60:48:87:44:24:76:34:d9:22:99:a8:7e:2a:
ba:5c:68:2c:07:c5:e1:a3:bc:3d:34:78:e2:f6:fa:
22:67:92:75:6c:f8:bf:60:dc:4e:ef:33:47:36:ad:
21:d8:3d:f1:b5:fc:97:a8:bf:7e:4f:e4:de:a2:c4:
3c:36:0b:40:dd:19:2f:57:5d:8a:14:a8:42:78:d0:
6a:11:1c:6e:ee:c0:bd:c0:67:32:97:92:1c:4b:48:
6b:2a:be:9b:d4:a0:b6:de:33:0f:08:2f:44:f1:1d:
ab:4a:95:14:85:12:6f:b8:2b:a2:85:e4:ee:75:a1:
60:1b:b2:9e:b5:60:69:fa:14:7b:d3:6f:56:9d:8c:
c5:44:49:06:1b:71:9c:97:73:98:8a:4b:34:8c:e9:
95:5e:f9:5b:bc:16:56:34:dc:25:11:11:f7:23:66:
b6:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:AE:01:66:1B:16:7A:CB:9A:34:21:FA:D8:38:6F:52:2C:F9:E4:90
X509v3 Authority Key Identifier:
keyid:24:62:4D:36:96:46:88:F9:89:C6:44:AC:20:11:F4:16:5D:3C:EB:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JGJNNpZGiPmJxkSsIBH0Fl086wc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/739291-2d5c-4c1d-9079-027e8c09146b/1/JGJNNpZGiPmJxkSsIBH0Fl086wc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/739291-2d5c-4c1d-9079-027e8c09146b/1/JGJNNpZGiPmJxkSsIBH0Fl086wc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:72:1a:92:7b:32:19:6b:a4:70:be:25:48:2e:65:63:5f:dd:
22:c1:e7:d4:5b:58:e4:bd:7e:5a:8d:c0:fa:d6:09:f0:14:49:
75:ce:22:5a:5e:f5:f4:6d:67:88:5d:95:5d:29:af:21:de:01:
98:c7:a8:c0:60:89:f3:61:ce:87:2f:0e:dc:a1:39:0a:db:94:
e0:7f:e2:38:b1:8a:8a:ce:3e:b1:c1:7d:59:77:e0:88:7c:e7:
24:1c:3f:87:53:5f:48:bb:2a:bc:c2:31:c5:dc:a5:f9:0b:ec:
d0:0d:9c:59:64:2b:5a:5a:42:95:36:c9:6e:72:1d:b8:d7:33:
b5:cb:67:82:8f:11:7b:6a:69:60:c6:c9:44:97:6c:20:ab:90:
15:85:7e:aa:bb:86:1f:9a:5e:46:d6:67:b1:6f:e9:62:49:b6:
90:57:fc:f6:80:38:91:44:1e:be:52:78:24:a1:c0:a5:c8:23:
a8:25:52:20:48:6a:b1:06:81:f5:07:a6:f1:a5:b3:fa:29:ec:
35:a5:62:22:bf:3c:e6:8c:96:6b:90:9e:61:0e:2b:a6:b8:9b:
d4:13:8e:20:94:b3:e2:0a:9d:c1:da:6d:fd:7a:59:5e:19:d8:
94:0e:be:aa:31:01:ab:53:a8:c4:c4:5a:25:92:b5:de:a4:c9:
19:a4:18:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:05:49 2025 by rpki-client