Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
File: jha95kqam7o_-hQ4oZesP5SYn68.mft (raw, json)
Hash identifier: xe4jiLqb9+xCZzPTbD/fEbJ7A9Q1CYGamLOyi8zvEko=
Subject key identifier: F4:3B:E5:58:5F:CD:2C:05:50:40:2E:13:D6:F7:57:F3:18:C0:56:E5
Authority key identifier: 8E:16:BD:E6:4A:9A:9B:BA:3F:FA:14:38:A1:97:AC:3F:94:98:9F:AF
Certificate issuer: /CN=8e16bde64a9a9bba3ffa1438a197ac3f94989faf
Certificate serial: 01988BB346B3B407F77FDF60C3F35D743894
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
Manifest number: 09B7
Signing time: Fri 08 Aug 2025 22:00:38 +0000
Manifest this update: Fri 08 Aug 2025 22:00:38 +0000
Manifest next update: Sat 09 Aug 2025 22:00:38 +0000
Files and hashes: 1: jha95kqam7o_-hQ4oZesP5SYn68.crl (hash: 7pm4BdiIaIPnGegs7L6uDlzp1FYIIwVvIoeueAS4XKY=)
2: lgcKgcRNJg401G2YURIZe_B5NuU.roa (hash: uy67hQlFG6+Rikv9aAochHvjUmoKf+eqiNInXnUkhzk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:b3:46:b3:b4:07:f7:7f:df:60:c3:f3:5d:74:38:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e16bde64a9a9bba3ffa1438a197ac3f94989faf
Validity
Not Before: Aug 8 22:00:38 2025 GMT
Not After : Aug 9 22:00:38 2025 GMT
Subject: CN=f43be5585fcd2c0550402e13d6f757f318c056e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ed:82:8d:f6:e8:ab:b9:3a:76:57:57:9d:e1:
36:c1:dd:35:27:1a:94:dc:0f:07:7f:b9:e4:13:62:
a5:69:4f:39:48:cb:22:5a:0c:50:c0:02:af:f0:b3:
dd:cd:b4:da:b6:bc:10:63:56:bb:35:5b:69:11:5d:
11:f3:de:b1:72:b1:e3:82:0c:02:9c:09:37:10:9c:
19:36:eb:f5:13:e9:14:bf:a8:ea:d4:99:8b:3c:f9:
4d:59:80:63:78:00:d1:59:a2:2d:fc:89:39:47:5e:
4d:18:ef:ea:f9:e5:74:ba:b6:68:ed:77:7f:c6:90:
99:77:5f:61:18:b4:9b:68:ac:6b:97:d4:e0:13:b4:
b4:40:e5:d4:b6:16:b7:37:a9:fb:8b:1d:4d:56:d5:
23:91:ad:98:24:55:e6:dd:0a:62:62:ec:15:1f:e2:
0f:50:4a:2a:eb:0b:c3:e5:90:4f:4b:3b:b8:d2:8a:
20:98:b5:db:c6:4b:5a:df:e3:49:6e:84:05:e1:23:
1a:02:f1:02:4e:6a:8a:19:7e:d5:ce:a8:47:da:0c:
83:69:3d:b5:a0:d2:0c:3d:00:cb:3f:6c:9c:f8:67:
36:fc:32:16:f6:92:c5:6e:c0:fb:9b:b9:b2:ab:8f:
2c:ad:84:d5:b2:9d:89:03:ca:70:66:d0:bb:d0:95:
ae:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:3B:E5:58:5F:CD:2C:05:50:40:2E:13:D6:F7:57:F3:18:C0:56:E5
X509v3 Authority Key Identifier:
keyid:8E:16:BD:E6:4A:9A:9B:BA:3F:FA:14:38:A1:97:AC:3F:94:98:9F:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:48:f5:21:04:e1:d1:a2:8c:f9:71:28:f4:95:55:43:e8:40:
1e:2c:46:43:be:f7:12:b1:6d:a5:9e:c4:25:e1:5e:35:94:eb:
0c:1b:fd:56:bd:81:0d:16:90:af:20:c0:90:c3:9b:b3:49:95:
5f:c9:2c:de:e2:00:5e:dd:5e:4c:66:45:6a:64:5b:38:e9:b3:
db:c3:aa:91:a1:2b:64:99:eb:f3:01:98:9e:ba:41:d9:1c:d9:
45:ac:7e:c1:d5:8e:72:09:1c:1e:08:70:02:c8:de:63:77:44:
7b:78:e8:a2:39:ee:fc:49:34:74:9b:b9:02:ef:39:48:9b:e9:
86:d0:0c:e5:2f:fa:60:2a:cb:9a:76:f3:7a:53:c1:8b:c8:40:
03:2a:86:69:72:2c:6d:ce:c4:05:d3:58:1a:46:cf:61:ed:9a:
56:b2:d4:89:5a:9f:53:99:ad:ae:20:87:50:58:62:c6:8b:ce:
5a:72:07:ae:97:d9:2c:d6:51:b2:16:b2:d7:40:14:f7:6c:48:
79:43:87:d0:ea:27:6b:bd:09:40:ea:a0:ca:ea:c1:a8:9b:cf:
ae:08:49:06:6b:4b:5b:7f:11:13:13:f7:6e:e9:78:6d:06:b1:
1d:28:ae:51:8f:c6:6c:39:c4:ac:2b:cb:da:e0:1d:7e:50:58:
53:e9:d8:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:03:19 2025 by rpki-client