
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.mft
File: jbNHdLAZeShP2edU_qaPo8YXg9A.mft (raw, json)
Hash identifier: cYAahk9+F2hV/cUb6UZUkV3iOzO3VtIHr85AjmpDoEw=
Subject key identifier: 0E:78:90:79:ED:55:80:8C:69:40:E9:CB:1E:A2:9E:A0:C1:51:D7:5F
Authority key identifier: 8D:B3:47:74:B0:19:79:28:4F:D9:E7:54:FE:A6:8F:A3:C6:17:83:D0
Certificate issuer: /CN=8db34774b01979284fd9e754fea68fa3c61783d0
Certificate serial: 0198733D7F86A7845DA61E64DED7FA8E1D0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.mft
Manifest number: 1659
Signing time: Mon 04 Aug 2025 04:01:06 +0000
Manifest this update: Mon 04 Aug 2025 04:01:06 +0000
Manifest next update: Tue 05 Aug 2025 04:01:06 +0000
Files and hashes: 1: 4xDjMGoR5cxZD0TEt45OTNLuzZ4.roa (hash: aWtnbMWrytraTfwmFZQXH9y0uPlTO0CdQ7LWoLXK164=)
2: J8HqZbweBSBfotj9M3AMH0o24CY.roa (hash: KkFoXwUHnXFgQiJUTdylT6bFXV0tnmXRuocNWtuhH7k=)
3: aXs8DBYHqH16kFI25mAmO1bJxx4.roa (hash: d1LoCC9lmf7ZBBsN52kpeKsNgpbykeADMERL6qdd4Bg=)
4: jbNHdLAZeShP2edU_qaPo8YXg9A.crl (hash: 21lqVe5rpancr7xYUbcif7ipNOjl85yvXPm3dPf8UvY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.mft
rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:3d:7f:86:a7:84:5d:a6:1e:64:de:d7:fa:8e:1d:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8db34774b01979284fd9e754fea68fa3c61783d0
Validity
Not Before: Aug 4 04:01:06 2025 GMT
Not After : Aug 5 04:01:06 2025 GMT
Subject: CN=0e789079ed55808c6940e9cb1ea29ea0c151d75f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:46:8b:0e:ea:aa:15:78:a5:38:f7:11:b7:39:
1a:f0:50:c2:7b:db:45:7f:4b:ee:2a:2e:3f:bf:34:
10:7d:67:47:50:1c:d8:ce:6b:c8:51:12:99:dd:3c:
8b:52:01:27:a1:b6:83:a9:76:ba:2d:66:75:6d:44:
58:72:b9:7b:71:c0:f0:df:1c:30:ba:70:f5:54:4f:
ae:ad:56:12:4e:1b:8a:a7:89:c2:09:b3:fd:7f:22:
2e:48:b8:d8:4a:ee:c0:04:c1:1d:52:b1:db:40:4d:
6a:92:1e:2b:5b:13:b1:94:5b:1f:83:de:1f:bd:7f:
7d:2e:c4:fd:5f:09:44:9d:16:9f:cc:60:a8:dc:f2:
c4:cd:bc:b8:ff:dd:5a:43:d8:18:24:c3:b3:03:22:
7c:63:c6:00:32:a6:b8:64:42:97:f9:33:76:0a:0e:
9f:01:39:89:b0:81:75:24:49:d2:81:9c:c2:40:a2:
1a:7e:59:e9:8d:59:a4:32:10:27:fc:06:6c:c8:97:
99:22:4f:20:6f:7f:11:a6:b0:ad:bd:67:e3:b5:d7:
d7:36:39:33:ab:a0:92:12:74:4d:cb:d9:85:e9:a4:
b5:8a:09:32:8c:1d:85:a0:79:1c:94:3e:f1:e1:a5:
2d:56:b4:a0:a3:b3:0f:df:6c:de:c8:b9:fd:ac:2f:
b4:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:78:90:79:ED:55:80:8C:69:40:E9:CB:1E:A2:9E:A0:C1:51:D7:5F
X509v3 Authority Key Identifier:
keyid:8D:B3:47:74:B0:19:79:28:4F:D9:E7:54:FE:A6:8F:A3:C6:17:83:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:1b:ed:7a:e4:2b:96:78:d2:2d:34:ca:5d:60:b7:8d:18:fd:
6f:9b:45:e2:af:e8:14:89:80:f2:d8:c1:20:b2:00:72:ff:53:
c4:af:10:ca:dc:74:5a:95:b6:b7:aa:76:1d:ed:e9:31:ff:00:
dc:c8:61:41:2d:32:da:e5:90:46:4f:bc:7a:8d:fc:b8:26:59:
27:f0:d7:81:e9:12:63:fe:9a:5d:c1:2d:5e:f2:92:a9:22:2e:
6e:88:70:b9:c3:c6:17:b7:9f:5c:eb:c8:48:9a:7a:28:a3:18:
34:6b:70:8c:b6:9e:0d:91:48:10:d1:3a:7b:fa:3f:e0:94:03:
d5:fb:6a:fb:3c:21:11:92:32:5c:40:f3:19:64:6a:c1:af:56:
a5:37:c7:da:b1:81:40:c7:2c:cf:82:26:71:59:3e:7f:b1:f9:
33:fe:48:6d:a9:7e:f1:42:6e:21:0b:90:6b:98:0d:cb:ea:6b:
7e:54:d9:b2:07:b7:ce:91:32:d9:4e:4f:00:20:b9:7d:35:ad:
46:a9:fe:4c:e6:42:92:7d:69:5b:54:1f:88:dd:81:42:81:68:
6d:d7:8e:43:35:eb:49:ca:ca:e4:98:66:ca:6a:47:0d:a3:c4:
dd:af:7f:5f:91:25:65:bb:5e:60:a1:b3:2f:77:28:9b:3d:c3:
9d:4b:6a:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:03:56 2025 by rpki-client