Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
File: jha95kqam7o_-hQ4oZesP5SYn68.mft (raw, json)
Hash identifier: Sq6/RmsP4kRaesP62UuNDtUIFyH5ZTa1D0BIPQ9eaQs=
Subject key identifier: 6D:76:6D:4D:EC:F9:5C:B3:0B:4A:DE:0A:10:A2:68:59:24:B9:C3:43
Authority key identifier: 8E:16:BD:E6:4A:9A:9B:BA:3F:FA:14:38:A1:97:AC:3F:94:98:9F:AF
Certificate issuer: /CN=8e16bde64a9a9bba3ffa1438a197ac3f94989faf
Certificate serial: 01976FD159DF890424F1BDB73A0D2D37015B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
Manifest number: 0924
Signing time: Sat 14 Jun 2025 19:01:20 +0000
Manifest this update: Sat 14 Jun 2025 19:01:20 +0000
Manifest next update: Sun 15 Jun 2025 19:01:20 +0000
Files and hashes: 1: jha95kqam7o_-hQ4oZesP5SYn68.crl (hash: Iav5MfKLa7t4M+evrMyJXaAtBdqc4w7fmr9YqNd+VfE=)
2: lgcKgcRNJg401G2YURIZe_B5NuU.roa (hash: uy67hQlFG6+Rikv9aAochHvjUmoKf+eqiNInXnUkhzk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:d1:59:df:89:04:24:f1:bd:b7:3a:0d:2d:37:01:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e16bde64a9a9bba3ffa1438a197ac3f94989faf
Validity
Not Before: Jun 14 19:01:20 2025 GMT
Not After : Jun 15 19:01:20 2025 GMT
Subject: CN=6d766d4decf95cb30b4ade0a10a2685924b9c343
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:43:a7:32:ee:51:31:32:b9:86:2b:70:89:76:
77:79:70:9b:16:6f:12:3f:e6:1e:fc:bd:16:2c:84:
01:eb:44:3d:70:71:2d:d3:0a:5e:d7:3d:a4:82:4f:
1e:f9:b5:86:07:21:b9:3d:03:ec:7a:28:54:4e:76:
97:57:ab:65:47:88:ac:36:cf:d9:1e:0e:9f:15:b8:
48:58:b5:5f:c6:ed:9b:21:69:16:ea:4c:b1:38:69:
eb:f7:db:d4:62:0e:93:9e:98:be:06:e8:d1:84:68:
a7:89:6f:05:fb:60:ea:7f:56:aa:50:0b:9b:66:ce:
59:63:ad:4a:d5:9c:f1:8b:d4:05:b5:f8:e5:e3:20:
35:00:fd:fe:d0:81:ee:74:04:b1:2d:4c:c8:ec:2c:
bb:fa:2a:b1:e0:e8:f6:8e:60:4a:04:1f:69:a7:b1:
6d:85:4c:73:55:e6:31:b2:f6:b8:2a:a7:41:8d:6f:
ce:d6:82:05:d6:03:bc:82:13:d3:b3:94:34:58:42:
c3:65:03:e1:42:33:c5:0f:8d:43:1d:93:58:9b:4c:
9f:a8:42:11:a9:18:ff:fc:f7:3e:78:3e:03:8f:44:
4c:19:fc:76:95:a6:e5:c3:dd:9a:e6:67:e2:8b:9f:
ab:14:8b:12:e4:9c:9d:b4:5b:37:d7:8e:63:2d:dc:
d7:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:76:6D:4D:EC:F9:5C:B3:0B:4A:DE:0A:10:A2:68:59:24:B9:C3:43
X509v3 Authority Key Identifier:
keyid:8E:16:BD:E6:4A:9A:9B:BA:3F:FA:14:38:A1:97:AC:3F:94:98:9F:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:c2:d4:e7:19:60:82:53:68:8a:a1:6b:0e:58:7f:d0:6b:21:
2f:11:ce:7c:87:64:22:a2:21:16:06:98:a3:37:e4:d4:93:3d:
aa:9b:cf:e7:81:41:65:72:e6:17:5a:b8:e2:d2:8e:0f:71:27:
72:d6:d1:4c:0f:35:c0:a5:f5:81:32:f3:26:ff:c7:df:68:86:
93:de:f7:bc:73:99:05:a5:79:90:22:81:a2:d4:04:35:eb:a9:
9b:ee:8c:dc:e1:54:f6:22:83:73:7c:86:91:6d:fb:c4:2b:28:
b4:36:2b:9f:b7:01:54:09:50:e7:1f:00:40:87:bb:79:8d:19:
8e:e1:f2:c1:7a:9f:a6:75:c1:08:63:36:60:72:c4:41:b5:85:
fa:da:a8:1d:7d:2f:35:cc:b6:56:01:cd:12:eb:dd:a4:88:cf:
31:d7:5b:a6:55:1e:41:49:e5:51:36:8f:31:b0:29:6a:23:3c:
a3:ca:5e:25:d1:3e:08:f4:fd:9a:b0:11:31:41:c0:cd:6e:bc:
06:6f:00:c6:27:34:85:3c:dc:62:74:d1:4d:2e:ad:c4:7e:ff:
9c:46:c7:ca:c7:97:5f:12:7b:14:13:ca:5e:79:98:5b:41:8b:
73:7d:db:6b:ee:4e:a4:97:37:77:6d:d4:c7:db:2e:bb:ef:db:
d8:86:7d:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 03:54:04 2025 by rpki-client