Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
File: JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft (raw, json)
Hash identifier: ZBJ1MqvB0hcFEPeJ2A2dRHkmipgFcQP2TPjr2wfAUTg=
Subject key identifier: 52:FC:46:B3:67:21:2F:65:B0:21:52:91:48:43:3F:AC:61:8A:86:2D
Authority key identifier: 24:A9:D8:4C:6D:16:C0:83:09:3C:33:71:B4:57:5D:36:EF:44:8F:E4
Certificate issuer: /CN=24a9d84c6d16c083093c3371b4575d36ef448fe4
Certificate serial: 01988F9055A3C148FECD71A4E94BE821881F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
Manifest number: 09D7
Signing time: Sat 09 Aug 2025 16:00:57 +0000
Manifest this update: Sat 09 Aug 2025 16:00:57 +0000
Manifest next update: Sun 10 Aug 2025 16:00:57 +0000
Files and hashes: 1: JKnYTG0WwIMJPDNxtFddNu9Ej-Q.crl (hash: 8mh3/DTFEmJsxfcsySGNwMmFNPp8cPRw3gHRiuEDqiE=)
2: sEY4t-bPe6btAR7wv3UJWwU-X2E.roa (hash: aU4yEzDR1E1BJAYcSFYYldSWQZ2ELBxfjYhJldcUrMM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 14:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8f:90:55:a3:c1:48:fe:cd:71:a4:e9:4b:e8:21:88:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24a9d84c6d16c083093c3371b4575d36ef448fe4
Validity
Not Before: Aug 9 16:00:57 2025 GMT
Not After : Aug 10 16:00:57 2025 GMT
Subject: CN=52fc46b367212f65b021529148433fac618a862d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:28:fa:12:a0:0f:f2:2a:3c:66:3e:12:ea:66:
10:c0:c6:04:55:7b:0d:e7:44:a1:cf:c7:56:1c:2d:
44:16:cb:25:f1:46:59:7c:f2:c9:02:f9:d6:bb:b7:
80:6b:e9:88:b7:04:de:99:07:ed:e9:5b:1f:53:86:
9b:90:0f:72:35:10:a5:05:cf:72:27:4f:b5:04:3e:
80:7c:b3:3f:77:27:c2:fa:0d:8e:49:3c:36:65:1b:
0d:f1:41:4b:31:b8:cf:f1:b2:0a:4d:58:1e:bf:ae:
38:d1:61:24:e5:8c:73:55:3e:b9:cb:24:51:1c:59:
58:13:62:b0:3b:eb:2e:30:0b:71:de:f9:90:fa:fc:
c5:91:cc:40:76:43:92:09:b4:a5:6f:96:78:59:4c:
9f:af:fd:f9:2c:1b:5e:2b:3f:2f:7a:da:12:97:db:
da:f7:ea:6e:04:c9:eb:4c:f0:2d:07:a7:ff:4b:4a:
15:e9:61:25:4b:c9:aa:7d:68:6c:0d:77:da:f0:e2:
1c:37:29:c8:40:3f:2d:39:17:57:1c:79:22:ca:85:
67:af:73:45:dc:04:2a:b7:6f:70:58:30:8c:68:99:
05:c9:24:55:75:1c:1a:72:b4:57:9a:2b:39:8e:09:
57:47:a6:6f:8c:f8:74:94:20:8d:4b:8b:b6:15:dc:
d2:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:FC:46:B3:67:21:2F:65:B0:21:52:91:48:43:3F:AC:61:8A:86:2D
X509v3 Authority Key Identifier:
keyid:24:A9:D8:4C:6D:16:C0:83:09:3C:33:71:B4:57:5D:36:EF:44:8F:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:b0:dd:28:b6:a7:e3:2f:a6:7a:b8:dc:68:33:61:1f:8d:cf:
5d:f6:9e:2c:1f:05:b0:f1:78:d3:13:75:44:c5:fd:a9:f8:ad:
dc:fc:a8:24:aa:db:4f:75:9a:b1:19:8b:bd:c4:5c:98:b9:e1:
eb:86:1a:17:65:19:9a:91:5e:37:64:0a:b3:08:88:c1:01:85:
c4:94:70:26:94:fa:52:fa:00:12:16:0e:41:18:2d:13:61:fb:
02:b8:b7:20:40:bb:7d:f0:79:6c:bc:af:65:4b:55:cf:f2:b7:
6f:a6:4a:19:15:f1:88:10:06:6b:38:ba:15:ee:ef:ef:25:31:
7e:a2:e4:12:16:f1:dc:d8:1f:9b:4e:bd:77:83:67:fa:a4:eb:
fb:0e:6c:93:58:10:62:d2:ce:96:52:87:22:0a:ae:ee:4e:7a:
93:01:e1:dd:7a:6e:be:d5:93:b1:ca:90:02:86:de:44:31:15:
1c:fb:e4:3f:6b:dd:fb:37:a2:e0:5d:a5:de:ff:50:a1:d9:88:
d3:60:df:ef:aa:08:93:04:f6:71:df:e7:23:94:c2:bf:9f:c5:
99:da:ab:c9:d8:a2:0d:a3:67:3e:47:16:f5:12:2a:e7:1b:bf:
2f:81:65:74:4b:de:e1:00:3a:bd:ca:66:c1:cd:32:4b:f4:3d:
48:91:4d:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 20:44:24 2025 by rpki-client