Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
File: JY8HU8Azwa8JGGbQlCZFEmlspos.mft (raw, json)
Hash identifier: RBWkslOfxUwYRqW1XsnNsctpdSTc8+ARTSimZlUUqVk=
Subject key identifier: BF:E2:67:17:B8:AC:DA:C6:4C:C2:91:C1:90:F9:6E:C6:D3:FD:78:97
Authority key identifier: 25:8F:07:53:C0:33:C1:AF:09:18:66:D0:94:26:45:12:69:6C:A6:8B
Certificate issuer: /CN=258f0753c033c1af091866d094264512696ca68b
Certificate serial: 01976CCF965B8DB27703AF48D05137CC730E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
Manifest number: 08DA
Signing time: Sat 14 Jun 2025 05:00:33 +0000
Manifest this update: Sat 14 Jun 2025 05:00:33 +0000
Manifest next update: Sun 15 Jun 2025 05:00:33 +0000
Files and hashes: 1: BQh7QT9BX7cTqXjHHhGh4E0jau4.roa (hash: ji+6a8qXV045VZtKjEfl6cGy7fTl7ME8scmY2gpWI2s=)
2: JY8HU8Azwa8JGGbQlCZFEmlspos.crl (hash: zlKc+3mntup6YVa0zd/+qnLKQSWzoHNHMKSbO8uVpDU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:cf:96:5b:8d:b2:77:03:af:48:d0:51:37:cc:73:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=258f0753c033c1af091866d094264512696ca68b
Validity
Not Before: Jun 14 05:00:33 2025 GMT
Not After : Jun 15 05:00:33 2025 GMT
Subject: CN=bfe26717b8acdac64cc291c190f96ec6d3fd7897
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:0d:e6:2b:6a:58:3c:4c:05:e8:ec:22:9b:41:
37:e7:7b:59:2e:f5:d5:93:ca:16:e0:8f:c0:4d:78:
f1:c5:17:c1:0e:90:3e:d6:23:8b:b8:10:80:3d:27:
b6:c3:a2:59:1a:d9:a8:c1:82:54:6b:60:b9:99:8e:
1e:ab:9c:e0:6a:3e:bf:66:c6:60:69:b7:eb:c7:a1:
44:8a:e0:60:92:d5:da:e5:06:32:b4:b1:43:ed:81:
68:53:05:9a:f9:55:88:b8:15:22:5f:9f:ef:05:28:
87:33:0d:80:6d:49:cb:4d:b3:36:36:0f:f3:9e:17:
13:dd:77:ab:b5:90:ab:80:bc:6c:d6:2b:ba:65:40:
20:7c:b0:f7:e7:d6:03:d6:66:53:7a:62:58:13:d3:
0c:b1:73:cf:5c:fb:a8:ff:de:be:a3:17:8c:ac:48:
77:36:66:1e:61:d2:bf:77:22:12:cc:65:52:ec:d0:
24:8b:96:5c:81:49:cf:34:19:4f:4b:24:be:2c:64:
eb:a3:c0:97:51:97:aa:e1:51:2d:ff:07:29:7f:e8:
cd:94:13:86:ac:de:a0:31:fa:88:88:8d:56:7a:5b:
f6:3e:e9:dc:73:29:96:d8:2e:4e:2c:0f:91:6d:1b:
62:b5:1e:0d:b7:3a:91:89:81:54:94:9d:f2:e7:10:
b0:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:E2:67:17:B8:AC:DA:C6:4C:C2:91:C1:90:F9:6E:C6:D3:FD:78:97
X509v3 Authority Key Identifier:
keyid:25:8F:07:53:C0:33:C1:AF:09:18:66:D0:94:26:45:12:69:6C:A6:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:96:dc:67:b7:02:ba:56:f3:bc:70:fd:e8:8d:b4:78:4c:21:
14:7b:a4:e5:39:87:f4:8d:b7:72:e2:58:04:34:64:73:88:33:
94:de:d4:08:a0:d9:0c:24:86:72:8d:3e:a7:78:bb:4f:a7:c1:
a6:1f:b9:ef:f8:a0:3c:60:70:66:fe:6f:f6:f2:d1:b3:6b:c9:
eb:e6:bb:e3:b0:66:ab:70:20:1b:5a:34:33:58:b0:15:24:55:
f7:f6:e0:d6:fd:68:47:22:f2:2d:3c:7f:0a:50:c6:eb:6f:b7:
bd:b3:fa:18:bd:e1:f6:12:cb:1a:89:0f:00:0a:42:c9:b2:d5:
32:dd:24:3f:7f:a6:3c:df:a3:fa:7d:ed:47:57:5f:99:7e:ff:
3e:31:5b:1a:2c:da:a4:a8:32:2d:4d:45:d6:40:9c:3d:0b:9b:
61:ca:a4:34:6a:a7:e2:78:5e:33:12:89:7e:86:45:04:3b:ef:
13:3d:f9:4d:bc:c5:81:4c:21:76:92:11:33:48:07:31:08:db:
df:cb:f3:a2:af:03:ad:94:de:c7:e5:1e:fc:c7:ef:6b:df:31:
50:3f:4e:85:78:53:66:b2:4d:2f:07:b1:20:29:74:39:b1:27:
c3:e2:1f:1a:df:04:80:a4:ef:77:8a:db:be:49:20:76:d1:29:
c9:5c:d3:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:06:41 2025 by rpki-client