Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.mft
File: jHFLbLK61OdjmoqicQKPWqG8asI.mft (raw, json)
Hash identifier: w9pENt54flcSnH8pUBSRRSfzZnolUhyXdP4KdpQBPTY=
Subject key identifier: 7D:47:6B:EB:82:0C:CF:7F:FA:09:EC:7D:9C:29:BA:E0:A5:1D:B0:3F
Authority key identifier: 8C:71:4B:6C:B2:BA:D4:E7:63:9A:8A:A2:71:02:8F:5A:A1:BC:6A:C2
Certificate issuer: /CN=8c714b6cb2bad4e7639a8aa271028f5aa1bc6ac2
Certificate serial: 01989F0332DB08FECA6CE3A7040B455E1DA8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jHFLbLK61OdjmoqicQKPWqG8asI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.mft
Manifest number: 05DF
Signing time: Tue 12 Aug 2025 16:00:43 +0000
Manifest this update: Tue 12 Aug 2025 16:00:43 +0000
Manifest next update: Wed 13 Aug 2025 16:00:43 +0000
Files and hashes: 1: 4SJUH7W4ejICjEKktk38NQNcB4Q.roa (hash: 2qwbbCMLxypAlAiGN2fpQYPHWTBbWd8fpkq/6FE+imI=)
2: jHFLbLK61OdjmoqicQKPWqG8asI.crl (hash: r24fz4UAuTuwEJPppsROdLgVZ4i4geiX3hZ+fC1vnTs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.mft
rsync://rpki.ripe.net/repository/DEFAULT/jHFLbLK61OdjmoqicQKPWqG8asI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 16:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9f:03:32:db:08:fe:ca:6c:e3:a7:04:0b:45:5e:1d:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c714b6cb2bad4e7639a8aa271028f5aa1bc6ac2
Validity
Not Before: Aug 12 16:00:43 2025 GMT
Not After : Aug 13 16:00:43 2025 GMT
Subject: CN=7d476beb820ccf7ffa09ec7d9c29bae0a51db03f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:12:9a:89:bc:5b:b5:0c:f2:94:cd:b5:4c:48:
5b:ea:3e:78:18:a6:ad:6c:35:d3:0d:1d:a7:78:28:
05:f3:99:f4:aa:54:5b:c8:7b:ee:80:0c:00:06:9e:
c7:96:ba:64:7a:e3:ec:83:db:ac:64:3e:f2:d1:19:
3c:05:25:cc:2b:a1:f1:33:7e:56:6a:a8:16:c7:2f:
92:0c:dc:ff:6e:a4:ce:30:46:37:f9:c2:3d:93:d6:
39:a0:c1:35:d0:7f:02:83:f1:f9:33:45:f3:78:d1:
12:9e:a8:91:97:72:94:8e:9b:94:72:da:8b:ea:a7:
e2:4a:4d:1b:62:bd:a6:13:7b:b3:11:b9:c8:71:11:
88:ec:ca:98:a6:89:b2:67:80:63:c1:68:96:e8:0b:
f9:85:8b:20:d5:6d:04:c4:db:33:56:58:94:27:93:
4a:b5:64:66:f8:ce:59:eb:69:77:6b:37:54:1b:18:
3b:73:49:ee:6e:fc:ff:48:11:06:3b:ea:42:c1:6d:
a6:43:c7:09:69:a3:3b:e6:3f:46:e8:4d:18:82:2c:
e7:1d:3a:c0:bd:88:cd:f1:fa:cd:00:ec:6c:23:3e:
a8:be:2f:40:18:fe:94:1f:8b:65:b5:d9:72:f4:25:
ff:c1:b4:38:3e:a9:dd:fb:bc:0b:f7:fb:e1:1f:28:
8b:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:47:6B:EB:82:0C:CF:7F:FA:09:EC:7D:9C:29:BA:E0:A5:1D:B0:3F
X509v3 Authority Key Identifier:
keyid:8C:71:4B:6C:B2:BA:D4:E7:63:9A:8A:A2:71:02:8F:5A:A1:BC:6A:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jHFLbLK61OdjmoqicQKPWqG8asI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:c8:b1:28:b1:c4:f5:eb:52:81:ca:1e:0d:7a:61:fe:a8:44:
29:8e:0d:6a:8a:57:01:b8:13:ff:90:48:7b:eb:43:5a:7a:7a:
4e:2c:f2:26:61:db:76:44:53:ae:aa:f8:29:8c:fe:9a:e2:0b:
04:d2:d8:cc:f7:76:34:a6:6a:a8:dd:dd:47:f0:57:58:82:15:
0d:81:e6:dd:9f:6e:db:cd:f9:93:b1:1c:d0:69:c3:45:d4:82:
5a:70:fd:fe:d7:1e:ed:63:86:0c:2d:7c:e1:7d:ee:cd:04:10:
f0:f1:2b:00:e6:fc:bf:82:60:d8:b6:c5:1e:d2:2a:e4:bb:91:
ea:e3:5e:e7:55:5c:99:08:0c:7e:aa:27:34:9b:b8:c1:e8:b6:
89:35:6e:89:e7:9a:1b:73:77:1b:cc:d0:32:16:9d:d0:c3:4f:
73:9d:ba:32:2f:d4:35:d2:a4:d8:81:f9:b0:82:f3:ed:17:98:
d8:50:2d:23:e8:64:5a:79:88:c3:49:43:64:f6:7d:7a:2c:a0:
79:10:f1:d5:c8:54:18:47:77:01:da:5e:ae:1f:5f:cf:e8:10:
da:ef:e5:a5:74:07:fe:ee:2f:38:db:ab:51:0e:e2:61:96:d1:
39:4e:d1:e2:07:54:f2:cf:28:dd:5b:16:26:81:eb:7c:1d:da:
9f:45:ef:05
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZifAzLbCP7KbOOnBAtFXh2oMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhjNzE0YjZjYjJiYWQ0ZTc2MzlhOGFhMjcxMDI4ZjVhYTFi
YzZhYzIwHhcNMjUwODEyMTYwMDQzWhcNMjUwODEzMTYwMDQzWjAzMTEwLwYDVQQD
Eyg3ZDQ3NmJlYjgyMGNjZjdmZmEwOWVjN2Q5YzI5YmFlMGE1MWRiMDNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuhKaibxbtQzylM21TEhb6j54GKat
bDXTDR2neCgF85n0qlRbyHvugAwABp7HlrpkeuPsg9usZD7y0Rk8BSXMK6HxM35W
aqgWxy+SDNz/bqTOMEY3+cI9k9Y5oME10H8Cg/H5M0XzeNESnqiRl3KUjpuUctqL
6qfiSk0bYr2mE3uzEbnIcRGI7MqYpomyZ4BjwWiW6Av5hYsg1W0ExNszVliUJ5NK
tWRm+M5Z62l3azdUGxg7c0nubvz/SBEGO+pCwW2mQ8cJaaM75j9G6E0YgiznHTrA
vYjN8frNAOxsIz6ovi9AGP6UH4tltdly9CX/wbQ4Pqnd+7wL9/vhHyiLQQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH1Ha+uCDM9/+gnsfZwpuuClHbA/MB8GA1UdIwQY
MBaAFIxxS2yyutTnY5qKonECj1qhvGrCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvakhGTGJMSzYxT2RqbW9xaWNRS1BXcUc4YXNJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS8wMmE4ZDYtOTE1OC00YWViLWE3NTAt
Nzg3NTNhMTA0MjI2LzEvakhGTGJMSzYxT2RqbW9xaWNRS1BXcUc4YXNJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS8wMmE4ZDYtOTE1OC00YWViLWE3NTAtNzg3NTNhMTA0MjI2
LzEvakhGTGJMSzYxT2RqbW9xaWNRS1BXcUc4YXNJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARsixKLHE
9etSgcoeDXph/qhEKY4NaopXAbgT/5BIe+tDWnp6TizyJmHbdkRTrqr4KYz+muIL
BNLYzPd2NKZqqN3dR/BXWIIVDYHm3Z9u2835k7Ec0GnDRdSCWnD9/tce7WOGDC18
4X3uzQQQ8PErAOb8v4Jg2LbFHtIq5LuR6uNe51VcmQgMfqonNJu4wei2iTVuieea
G3N3G8zQMhad0MNPc526Mi/UNdKk2IH5sILz7ReY2FAtI+hkWnmIw0lDZPZ9eiyg
eRDx1chUGEd3Adperh9fz+gQ2u/lpXQH/u4vONurUQ7iYZbROU7R4gdU8s8o3VsW
JoHrfB3an0XvBQ==
-----END CERTIFICATE-----
Generated at Wed Aug 13 00:25:32 2025 by rpki-client