Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
File: JY8HU8Azwa8JGGbQlCZFEmlspos.mft (raw, json)
Hash identifier: hR6+kx6eSD89kpMcanCN4tZtNq1CB/pBrKdZN7pahYA=
Subject key identifier: D3:D2:66:B8:7D:87:E1:84:55:8D:8A:66:C0:8C:A9:7D:FE:9C:27:F4
Authority key identifier: 25:8F:07:53:C0:33:C1:AF:09:18:66:D0:94:26:45:12:69:6C:A6:8B
Certificate issuer: /CN=258f0753c033c1af091866d094264512696ca68b
Certificate serial: 01987373EC20EB3B4FB119331DCEB001E3B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
Manifest number: 0962
Signing time: Mon 04 Aug 2025 05:00:33 +0000
Manifest this update: Mon 04 Aug 2025 05:00:33 +0000
Manifest next update: Tue 05 Aug 2025 05:00:33 +0000
Files and hashes: 1: BQh7QT9BX7cTqXjHHhGh4E0jau4.roa (hash: ji+6a8qXV045VZtKjEfl6cGy7fTl7ME8scmY2gpWI2s=)
2: JY8HU8Azwa8JGGbQlCZFEmlspos.crl (hash: VLwmeb3FUuYkNqEovGV8MQ8gyDS6r6t1N+pCzQ2cauA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:73:ec:20:eb:3b:4f:b1:19:33:1d:ce:b0:01:e3:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=258f0753c033c1af091866d094264512696ca68b
Validity
Not Before: Aug 4 05:00:33 2025 GMT
Not After : Aug 5 05:00:33 2025 GMT
Subject: CN=d3d266b87d87e184558d8a66c08ca97dfe9c27f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:34:6c:d9:fa:1c:68:34:06:e9:0d:0d:cd:1a:
0a:26:2f:03:c9:bc:ae:e0:9d:73:41:f0:72:99:6e:
e8:c2:d2:ae:6a:4a:4f:6a:96:26:37:69:87:22:f8:
3f:50:06:82:b5:41:45:d1:fd:e8:05:6a:16:89:27:
4b:34:21:e8:fd:3a:30:75:5b:1e:77:80:32:6b:8d:
0b:74:4c:11:1c:67:77:77:fd:33:8c:9f:4d:86:ae:
d6:ea:1f:a2:a8:65:f5:17:64:65:44:22:59:81:b4:
59:e2:82:8e:a3:73:ba:d8:fd:8d:47:84:56:99:09:
59:41:fa:0a:38:22:bf:ec:b4:2b:66:a1:f8:56:fc:
7c:2f:dc:60:6b:c3:bb:da:49:da:8a:f2:04:7c:76:
c5:ed:0b:98:c2:77:eb:a6:33:dc:9f:6f:23:39:6c:
f0:f3:61:49:c6:ed:cb:70:16:08:75:12:65:f3:82:
b3:88:83:1a:c4:74:51:1e:f2:cc:1d:13:0b:f5:af:
22:21:9c:cd:15:58:b9:c6:54:4b:ea:74:d1:29:d8:
cd:f8:0f:c4:28:1e:5b:22:62:0b:10:ed:de:a6:68:
7d:48:32:95:22:3a:11:fd:0f:a2:fc:76:c9:3d:32:
3f:aa:23:d3:75:95:b1:6a:a7:c4:0a:b9:f2:73:6a:
28:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:D2:66:B8:7D:87:E1:84:55:8D:8A:66:C0:8C:A9:7D:FE:9C:27:F4
X509v3 Authority Key Identifier:
keyid:25:8F:07:53:C0:33:C1:AF:09:18:66:D0:94:26:45:12:69:6C:A6:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:6a:29:9b:e0:80:0d:3f:dc:df:e8:95:32:54:ac:cd:f2:e8:
8b:8b:f9:f4:16:fb:65:e4:d9:86:13:e2:44:3d:e0:db:19:69:
cc:54:3f:27:2a:86:5d:60:1d:4b:b2:cb:f9:33:f7:a8:0c:34:
96:78:24:b1:2e:c2:9b:fd:65:1c:2c:4c:ea:37:98:19:9e:9c:
22:a2:19:32:60:1f:bb:19:fd:d3:5e:1d:03:da:ef:2c:15:09:
ac:59:86:6e:be:3b:d2:5b:3c:bb:0e:60:9a:20:ea:70:02:8b:
4f:fd:22:35:51:e7:5e:31:52:07:40:ee:2d:96:6c:44:ea:42:
c5:45:2e:72:d1:33:d7:55:1e:e1:1d:99:77:0a:1a:4e:ad:a1:
00:67:7a:90:1f:25:08:bf:b6:2c:84:9e:7b:a5:8d:c5:2c:38:
b6:ae:3e:de:02:27:f9:0f:99:83:2e:7a:ba:ae:28:31:8a:fa:
64:02:8d:fd:19:aa:bc:7f:74:96:a4:b9:ee:48:bb:15:6e:07:
16:96:87:64:20:04:f9:a0:cf:37:9b:fd:64:1d:12:4f:b2:6d:
3b:51:15:a1:cd:be:7d:6f:80:29:df:05:c4:71:c4:e1:42:3e:
c2:44:9a:03:c8:ab:9f:78:29:17:b2:6c:39:4a:17:86:7b:96:
22:16:0f:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 10:58:28 2025 by rpki-client