Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
File: jha95kqam7o_-hQ4oZesP5SYn68.mft (raw, json)
Hash identifier: tERiEOFV3tf3f2OIzuA3giHqYPHhI+uKPsk7BKNJkzc=
Subject key identifier: 37:77:99:86:79:EE:D1:B8:54:24:C9:0D:12:D9:50:13:1D:1D:42:5B
Authority key identifier: 8E:16:BD:E6:4A:9A:9B:BA:3F:FA:14:38:A1:97:AC:3F:94:98:9F:AF
Certificate issuer: /CN=8e16bde64a9a9bba3ffa1438a197ac3f94989faf
Certificate serial: 019A4F995B7AF4BA86F9844FDE516B728E30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
Manifest number: 0AA1
Signing time: Tue 04 Nov 2025 16:00:41 +0000
Manifest this update: Tue 04 Nov 2025 16:00:41 +0000
Manifest next update: Wed 05 Nov 2025 16:00:41 +0000
Files and hashes: 1: jha95kqam7o_-hQ4oZesP5SYn68.crl (hash: 6xoNHsHF+7t7QuCuw7Y9zKGYDn66kjMr2oXJJ8bJMow=)
2: lgcKgcRNJg401G2YURIZe_B5NuU.roa (hash: uy67hQlFG6+Rikv9aAochHvjUmoKf+eqiNInXnUkhzk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:99:5b:7a:f4:ba:86:f9:84:4f:de:51:6b:72:8e:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e16bde64a9a9bba3ffa1438a197ac3f94989faf
Validity
Not Before: Nov 4 16:00:41 2025 GMT
Not After : Nov 5 16:00:41 2025 GMT
Subject: CN=3777998679eed1b85424c90d12d950131d1d425b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:94:c8:31:6c:c0:cf:9a:2f:3f:93:cc:d8:10:
a1:b7:1d:e9:b8:c0:57:68:0d:f4:21:1e:83:e4:03:
b8:5c:f4:f2:ed:96:54:b6:6a:9c:bf:7d:e4:23:d5:
9b:69:e1:f3:b0:ef:eb:ed:a4:c9:dc:31:9e:a5:c8:
d9:12:82:90:7b:79:68:7e:1f:92:b8:cf:f0:eb:0d:
b6:4b:1d:d7:c8:42:5d:e4:2c:66:96:f6:40:6d:83:
dd:99:fc:b1:8b:53:ed:3e:f0:cb:69:92:86:65:a6:
51:a6:c5:6f:ac:24:33:68:01:97:a6:58:bf:d7:22:
84:ac:32:d3:c9:04:52:24:be:4b:c8:63:ba:81:9b:
d3:cf:44:30:ae:c9:f3:f2:75:fe:5a:4e:f0:f7:94:
e7:51:89:81:b1:30:49:51:45:eb:bc:d8:33:1f:df:
7f:28:b4:dd:30:95:18:69:66:82:5f:ca:d1:86:bd:
73:51:4a:88:e0:9a:30:a5:e0:88:db:58:52:e4:b8:
c4:90:f4:81:e5:10:c7:07:b2:b4:9a:27:0d:bd:4f:
aa:32:7c:a6:b2:12:b3:e7:19:f2:a0:dc:b8:d5:46:
c8:02:a1:e0:36:5a:35:29:90:68:a2:c0:d6:0a:16:
f1:35:00:8d:0e:db:15:a3:37:4b:d6:95:fa:b2:7f:
4c:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:77:99:86:79:EE:D1:B8:54:24:C9:0D:12:D9:50:13:1D:1D:42:5B
X509v3 Authority Key Identifier:
keyid:8E:16:BD:E6:4A:9A:9B:BA:3F:FA:14:38:A1:97:AC:3F:94:98:9F:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:da:b2:03:f5:9e:30:44:89:4d:dd:22:0f:c7:c5:11:83:da:
72:36:12:8c:27:20:ed:c1:1a:69:5c:d6:48:0f:a0:c4:62:0f:
8b:95:3d:1f:9e:5c:55:96:9d:d7:81:b9:c9:ce:bd:23:11:bc:
19:53:95:e8:35:32:f1:4e:9e:12:17:f7:a5:f8:9d:d4:73:45:
c0:74:8e:90:c3:a2:5d:60:72:7a:14:35:08:c3:fe:83:77:42:
11:ee:3d:97:c9:cc:98:96:73:6b:94:5b:93:be:2f:a6:b8:12:
88:e6:fc:ba:8b:26:09:33:af:d7:53:d2:97:94:d6:40:7d:84:
ce:e4:fb:e0:ae:86:0a:c2:57:ea:b7:d4:09:47:4d:53:5f:98:
bd:37:fa:8b:01:c1:5a:82:b5:0c:0d:c0:be:b8:05:db:83:eb:
25:28:9b:f1:2c:b8:1f:c2:5b:d5:ab:40:72:09:a4:62:a3:68:
97:02:9e:31:c8:c7:0b:8f:d4:06:a5:7f:07:20:60:3a:36:ac:
b1:27:d0:ca:3c:28:48:42:0b:18:8f:e2:20:74:6c:c9:f0:bb:
d7:77:08:fa:91:17:e6:de:38:8f:03:78:27:1c:24:45:8d:8a:
6c:12:89:30:cd:b6:a0:c6:99:81:55:7c:75:a8:b1:4d:90:72:
e3:b3:a1:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 17:54:36 2025 by rpki-client