Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/7dadd3-3e55-46be-94e1-c90658ebd697/1/jRHN6i8zL8ztMzil3x-y30Uh-OI.mft
File: jRHN6i8zL8ztMzil3x-y30Uh-OI.mft (raw, json)
Hash identifier: 4nPPXhewXjh9rFVvmcBepClO0gWKr9LkLXd4UVdfkRI=
Subject key identifier: 60:28:48:B8:7B:68:BC:E9:0E:51:F1:22:B5:F2:8D:45:30:EA:3F:4A
Authority key identifier: 8D:11:CD:EA:2F:33:2F:CC:ED:33:38:A5:DF:1F:B2:DF:45:21:F8:E2
Certificate issuer: /CN=8d11cdea2f332fcced3338a5df1fb2df4521f8e2
Certificate serial: 019A4EF53C82E5833F9FBAB7B3AE5C7AE528
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRHN6i8zL8ztMzil3x-y30Uh-OI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/7dadd3-3e55-46be-94e1-c90658ebd697/1/jRHN6i8zL8ztMzil3x-y30Uh-OI.mft
Manifest number: 1221
Signing time: Tue 04 Nov 2025 13:01:25 +0000
Manifest this update: Tue 04 Nov 2025 13:01:25 +0000
Manifest next update: Wed 05 Nov 2025 13:01:25 +0000
Files and hashes: 1: jRHN6i8zL8ztMzil3x-y30Uh-OI.crl (hash: xbC8k9VF/l4RjFgiVJJdLvcloKBLEo2Kx22PYZsXgN0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/7dadd3-3e55-46be-94e1-c90658ebd697/1/jRHN6i8zL8ztMzil3x-y30Uh-OI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/7dadd3-3e55-46be-94e1-c90658ebd697/1/jRHN6i8zL8ztMzil3x-y30Uh-OI.mft
rsync://rpki.ripe.net/repository/DEFAULT/jRHN6i8zL8ztMzil3x-y30Uh-OI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:3c:82:e5:83:3f:9f:ba:b7:b3:ae:5c:7a:e5:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d11cdea2f332fcced3338a5df1fb2df4521f8e2
Validity
Not Before: Nov 4 13:01:25 2025 GMT
Not After : Nov 5 13:01:25 2025 GMT
Subject: CN=602848b87b68bce90e51f122b5f28d4530ea3f4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:0a:13:33:34:e7:c2:50:d6:52:dc:cc:b5:fd:
bb:37:0e:55:61:f2:31:c4:45:54:f0:7c:ff:63:67:
72:89:19:fc:9f:68:47:ad:c2:29:08:c1:35:15:66:
b0:c9:d7:34:85:ce:87:b1:c2:9f:9c:09:52:d6:3b:
ac:da:1f:55:d9:76:02:8f:4b:88:44:be:78:ba:4a:
23:62:00:f3:be:70:3a:97:c9:3b:d2:b1:93:cb:95:
86:e2:e3:55:24:ba:17:28:2a:d8:6b:80:5a:93:05:
c1:1b:e8:60:b1:17:46:e1:45:ff:46:af:27:fd:be:
22:21:c2:62:07:f9:3a:96:b8:31:f9:e5:ab:4c:4f:
58:09:80:39:4c:77:e7:76:30:9d:ed:af:eb:8f:25:
df:5f:f6:05:53:06:16:5f:f3:2a:29:5f:79:18:aa:
59:2f:6f:5c:57:11:d3:59:e4:36:c1:11:36:43:f3:
c8:f5:64:34:83:26:7c:25:5c:bf:47:b9:94:a5:19:
1f:d0:9b:9c:51:3a:53:c3:20:14:d2:13:1c:33:01:
51:88:a9:e5:8c:26:4d:2b:df:70:a9:c7:a3:4c:94:
2c:f0:d7:a4:49:f7:c2:2b:69:bf:58:2e:61:a5:75:
ff:6f:c4:41:03:45:67:29:42:d9:0f:d6:8f:a4:47:
37:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:28:48:B8:7B:68:BC:E9:0E:51:F1:22:B5:F2:8D:45:30:EA:3F:4A
X509v3 Authority Key Identifier:
keyid:8D:11:CD:EA:2F:33:2F:CC:ED:33:38:A5:DF:1F:B2:DF:45:21:F8:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRHN6i8zL8ztMzil3x-y30Uh-OI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/7dadd3-3e55-46be-94e1-c90658ebd697/1/jRHN6i8zL8ztMzil3x-y30Uh-OI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/7dadd3-3e55-46be-94e1-c90658ebd697/1/jRHN6i8zL8ztMzil3x-y30Uh-OI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:e9:84:85:e8:0b:f6:c8:b8:a4:11:11:f0:72:bb:1a:3d:d6:
3b:fe:37:c7:16:32:ef:b5:42:f1:61:9e:2f:06:0f:23:be:fc:
53:d5:af:2b:3f:7c:eb:97:23:2e:2c:51:a7:ed:d6:87:ab:8c:
c4:e2:44:9f:8b:54:ed:18:db:0c:68:ab:0c:2e:23:83:20:f0:
27:46:7b:03:79:4b:21:5f:5b:86:b5:6a:f7:86:66:a7:a3:85:
bd:09:30:cf:39:c9:a4:7d:af:bd:63:37:e1:ba:54:5b:bd:29:
73:99:d6:ae:5f:39:37:c4:d3:f9:43:4f:c3:b5:e0:c3:af:b5:
cf:f3:6b:ab:7f:36:2e:95:0a:40:96:06:99:63:bd:0e:29:38:
b1:d5:87:fe:c9:3c:50:5a:bd:5e:4e:8c:b7:36:e9:b4:53:66:
2f:f0:a2:8a:09:d1:f5:93:57:05:82:cd:67:27:8e:c1:05:ff:
9e:91:76:65:f9:7c:75:bf:5f:a1:a1:bf:7e:74:53:54:d2:98:
0a:71:3c:91:39:a5:59:f7:14:7a:bf:e0:28:8b:c8:94:12:82:
82:56:7b:e0:a9:c0:0f:1d:84:9f:ca:e9:66:6b:94:da:47:9e:
2d:6a:a3:62:dd:ec:c8:93:7b:df:3b:ea:13:3e:17:f2:ed:00:
b2:f3:39:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 17:31:05 2025 by rpki-client