Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/9cedd9-113b-4061-a632-4e1d167f0a9c/1/JOuXPcgi1CNuy911UB0mxD4chzk.mft
File: JOuXPcgi1CNuy911UB0mxD4chzk.mft (raw, json)
Hash identifier: gp0EGZk3mYcDiC7ZWUm9YBeCl2QdXT3U4y3CgJLIfgs=
Subject key identifier: DD:F8:0D:AC:7D:56:B9:2E:E4:8F:CA:C1:8F:5F:1C:D8:3A:CD:92:1B
Authority key identifier: 24:EB:97:3D:C8:22:D4:23:6E:CB:DD:75:50:1D:26:C4:3E:1C:87:39
Certificate issuer: /CN=24eb973dc822d4236ecbdd75501d26c43e1c8739
Certificate serial: 01987B9D6F0E9F52D472ED5C59C9ABD0E94D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOuXPcgi1CNuy911UB0mxD4chzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/9cedd9-113b-4061-a632-4e1d167f0a9c/1/JOuXPcgi1CNuy911UB0mxD4chzk.mft
Manifest number: 0ABF
Signing time: Tue 05 Aug 2025 19:02:51 +0000
Manifest this update: Tue 05 Aug 2025 19:02:51 +0000
Manifest next update: Wed 06 Aug 2025 19:02:51 +0000
Files and hashes: 1: JOuXPcgi1CNuy911UB0mxD4chzk.crl (hash: 9pYnXk8K5UmSc7ZIntyDzM3x5zX0Ix03eJqi9fpkKHw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/9cedd9-113b-4061-a632-4e1d167f0a9c/1/JOuXPcgi1CNuy911UB0mxD4chzk.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/9cedd9-113b-4061-a632-4e1d167f0a9c/1/JOuXPcgi1CNuy911UB0mxD4chzk.mft
rsync://rpki.ripe.net/repository/DEFAULT/JOuXPcgi1CNuy911UB0mxD4chzk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 17:44:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7b:9d:6f:0e:9f:52:d4:72:ed:5c:59:c9:ab:d0:e9:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24eb973dc822d4236ecbdd75501d26c43e1c8739
Validity
Not Before: Aug 5 19:02:51 2025 GMT
Not After : Aug 6 19:02:51 2025 GMT
Subject: CN=ddf80dac7d56b92ee48fcac18f5f1cd83acd921b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:36:1f:ed:79:5e:fc:60:76:73:eb:7f:02:a5:
24:5d:52:67:61:97:7d:91:92:d5:81:cf:c2:69:bc:
5f:86:2f:61:13:1d:81:6f:32:88:6e:e9:34:df:3e:
07:13:0c:86:a5:c3:d1:50:a0:19:0e:f6:95:4e:3c:
17:4a:b4:7b:e1:f5:13:79:38:93:1d:a7:e3:40:ad:
19:dc:a2:9e:ab:14:c4:33:ba:55:a5:f7:58:50:81:
2c:a5:fb:25:5e:68:92:de:35:a3:f7:3e:d7:4f:24:
e9:1e:35:1e:81:1a:70:4f:17:40:ea:44:28:8c:0d:
1a:39:c1:6e:5d:ba:08:62:8b:ec:70:15:c7:b6:1a:
fc:ba:08:f6:3b:83:72:00:2d:83:b0:ba:cc:d6:4f:
88:05:cf:6d:f3:c6:cb:8a:89:18:5f:26:88:03:51:
84:8f:01:08:04:a7:62:14:99:29:e3:38:63:ea:66:
40:01:d7:e9:77:2c:a1:a3:bb:ab:47:26:44:49:19:
9f:20:8f:c9:29:99:67:86:c8:46:ef:90:8c:36:57:
67:d4:72:7e:4a:8f:6d:06:5b:9a:1a:a4:dc:97:23:
3e:76:54:e4:7b:5f:9e:90:e9:2a:36:5b:16:be:74:
e5:1e:3d:96:9f:36:2a:aa:57:46:4a:4d:ca:1e:cb:
10:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:F8:0D:AC:7D:56:B9:2E:E4:8F:CA:C1:8F:5F:1C:D8:3A:CD:92:1B
X509v3 Authority Key Identifier:
keyid:24:EB:97:3D:C8:22:D4:23:6E:CB:DD:75:50:1D:26:C4:3E:1C:87:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOuXPcgi1CNuy911UB0mxD4chzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/9cedd9-113b-4061-a632-4e1d167f0a9c/1/JOuXPcgi1CNuy911UB0mxD4chzk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/9cedd9-113b-4061-a632-4e1d167f0a9c/1/JOuXPcgi1CNuy911UB0mxD4chzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:06:9e:eb:9c:af:16:d4:4d:2a:55:92:df:13:af:78:81:93:
a7:cb:f3:df:5a:5e:aa:94:a5:14:52:d0:08:cc:c0:22:6b:92:
8d:25:2b:1b:86:83:eb:62:1a:de:54:6e:15:13:65:da:b6:45:
41:46:91:d2:39:50:fd:dd:1a:db:0f:26:9e:bc:10:ff:ac:4f:
9f:14:6d:74:8c:6b:dc:0b:f8:08:b7:fc:03:ee:07:04:29:81:
9a:97:8f:ec:be:1f:bc:da:66:14:4a:05:b3:9e:79:f3:8a:3c:
1b:e4:f9:cb:04:c6:d6:5c:64:c5:94:81:fe:1b:b1:f5:8b:96:
25:c7:c0:3b:e1:76:51:ca:cf:ed:2f:6b:83:23:62:17:55:69:
5f:c4:31:2a:dd:93:45:16:85:22:23:17:8d:cf:10:83:6d:be:
09:31:6a:7d:ac:c2:74:d7:7e:61:81:d4:13:39:d1:ee:b8:4c:
82:a6:57:d0:d9:03:b3:a0:2d:fd:16:df:95:59:9f:a8:32:b3:
a0:dc:17:08:7d:4e:57:f9:1d:88:d7:67:d0:d5:71:89:20:1b:
02:97:39:fe:33:ea:b5:4e:9c:e2:93:52:3d:3c:75:fd:e6:5e:
7d:9c:d1:56:29:c3:23:42:db:56:55:e9:ba:37:b2:d8:68:eb:
35:40:e0:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 00:54:46 2025 by rpki-client