Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.mft
File: JY9ajila0de0ih4RlYeQBStXolM.mft (raw, json)
Hash identifier: 6jFYWshrnHTLaykMHhGC87x+GBmo7gpOUmQDl2I8vs4=
Subject key identifier: B4:8D:35:01:D1:F4:B1:34:46:09:C6:2E:83:DB:6E:08:A5:A9:0A:F5
Authority key identifier: 25:8F:5A:8E:29:5A:D1:D7:B4:8A:1E:11:95:87:90:05:2B:57:A2:53
Certificate issuer: /CN=258f5a8e295ad1d7b48a1e11958790052b57a253
Certificate serial: 019A4E86454062934282244BC4811553604D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JY9ajila0de0ih4RlYeQBStXolM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.mft
Manifest number: 1664
Signing time: Tue 04 Nov 2025 11:00:13 +0000
Manifest this update: Tue 04 Nov 2025 11:00:13 +0000
Manifest next update: Wed 05 Nov 2025 11:00:13 +0000
Files and hashes: 1: HL0tpswU2gQezd0-x9ZWDdfR-RY.roa (hash: NAIPlF1KgdG7sggbmAwv2GRB6aTgtE/arOeqKYJF690=)
2: JY9ajila0de0ih4RlYeQBStXolM.crl (hash: Dsj3IfMQ/RxrU4jgSu5uue1Yuw72cDHQd6vaYOjlTlE=)
3: X5-jl_Od0mEO_dSg7rALYkevjoQ.roa (hash: xqc4fnPLjvYYKZxEv5pbNLPSZEhrMf7SnWN3fQ6sCO8=)
4: ljF5u-YRkQFhR1-JzkqgY4rX8fg.roa (hash: yARJg/r5KzAJTCBC6Aa8YbBreZ5SqvZOXFrSvclMQ38=)
5: s_QDIrLshBQNlu6RPwCemGYvy74.roa (hash: 6Y18bq+vtApdDZHTDEQgo5JwDFt4pJR0lVY1yqjzjsk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.mft
rsync://rpki.ripe.net/repository/DEFAULT/JY9ajila0de0ih4RlYeQBStXolM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:86:45:40:62:93:42:82:24:4b:c4:81:15:53:60:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=258f5a8e295ad1d7b48a1e11958790052b57a253
Validity
Not Before: Nov 4 11:00:13 2025 GMT
Not After : Nov 5 11:00:13 2025 GMT
Subject: CN=b48d3501d1f4b1344609c62e83db6e08a5a90af5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:aa:fd:3e:ba:ab:94:17:c0:25:33:c7:4e:88:
b1:0d:7a:05:f4:0a:60:43:4d:f2:6a:0c:bc:79:11:
21:4c:6a:ac:c9:a9:64:0a:10:1a:40:f4:90:6b:22:
7d:d7:c1:ce:ff:c8:e5:34:08:62:87:20:6a:70:3a:
de:ad:f7:9e:1d:60:ed:aa:a4:54:69:64:28:de:79:
c6:4a:30:8a:ce:e9:ef:20:12:af:75:23:db:a9:36:
36:a7:06:f1:39:9c:67:f7:f2:82:9b:7c:c7:96:09:
39:e9:0b:2c:05:03:54:7e:ff:b4:e9:d3:58:e0:c9:
47:9d:8b:bb:e2:a2:61:f2:47:4f:25:44:27:bb:f7:
c7:de:ee:fd:ad:69:fb:03:3d:8f:43:e7:80:32:02:
45:13:7b:ad:ce:5f:61:11:f9:3d:5c:85:d0:23:59:
37:1d:6d:3c:67:b3:5d:c8:9d:8d:f0:5b:14:55:35:
b9:5e:d5:35:60:a2:dc:1d:a9:93:05:5a:53:ea:ac:
60:33:6d:0b:fc:25:03:e7:cb:04:87:29:fc:76:b8:
32:8b:3a:ee:6a:ce:95:f1:0d:9f:6f:17:93:c2:4b:
0e:88:c0:9d:c5:b1:c3:75:5b:8e:49:42:49:c3:9f:
21:0a:01:61:9f:1b:fe:34:64:2c:cb:18:20:02:f0:
08:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:8D:35:01:D1:F4:B1:34:46:09:C6:2E:83:DB:6E:08:A5:A9:0A:F5
X509v3 Authority Key Identifier:
keyid:25:8F:5A:8E:29:5A:D1:D7:B4:8A:1E:11:95:87:90:05:2B:57:A2:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JY9ajila0de0ih4RlYeQBStXolM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:65:8d:38:da:b6:1a:b9:9d:12:e7:ba:2d:2f:25:05:4b:c0:
36:41:54:dd:2f:07:91:2f:76:31:60:f6:17:28:c0:f8:39:a0:
53:f0:12:fb:f4:dd:e8:bc:8a:75:ff:52:42:da:12:d4:8d:9f:
23:5e:70:79:18:18:89:f8:b2:45:c9:55:2b:e8:68:23:35:dd:
0c:b5:1b:86:e1:ac:c8:26:f4:8f:d8:7a:b1:1b:aa:f5:31:88:
cf:e8:26:6a:80:b8:ac:d4:75:71:18:07:af:ec:e9:3e:d0:08:
2f:73:d7:ef:ac:f2:66:db:57:c4:b2:2d:84:67:6e:99:c9:9f:
2c:92:53:3d:4d:4b:e3:50:18:ad:8f:c2:6c:be:6c:5a:20:eb:
63:b7:dd:b3:2f:22:04:ba:1b:bd:b3:9d:8f:0b:25:8a:f8:e6:
1f:52:c5:5c:3c:c4:89:48:7e:9d:55:96:69:ba:f7:71:0f:77:
5c:77:51:2b:81:3c:d0:6c:c9:a9:80:d1:b2:93:42:e8:9b:e6:
4d:d5:c8:19:ea:f4:7a:b9:17:56:51:0c:73:e9:87:00:70:97:
2a:71:23:b5:55:0b:56:e2:9c:e5:e0:98:fe:b7:fc:41:8d:9f:
75:80:77:ef:7e:e3:53:6c:1a:c4:14:ba:24:ed:b9:a5:f1:c4:
50:1b:ff:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:54:34 2025 by rpki-client