Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/0e90c8-2b83-4715-9933-a73f0b7418ab/1/JbGiI7fnP9I0YsIE5g6dSBXPdj8.mft
File: JbGiI7fnP9I0YsIE5g6dSBXPdj8.mft (raw, json)
Hash identifier: 5Pkvwekch92YtgT6L5Fl1/lczYizBXRTkXXzvyBoM/c=
Subject key identifier: F0:19:96:D0:11:9F:C5:49:7D:45:37:C9:72:19:06:9D:FB:2B:31:84
Authority key identifier: 25:B1:A2:23:B7:E7:3F:D2:34:62:C2:04:E6:0E:9D:48:15:CF:76:3F
Certificate issuer: /CN=25b1a223b7e73fd23462c204e60e9d4815cf763f
Certificate serial: 01988C5855ED2256888AFE743BC02116350A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JbGiI7fnP9I0YsIE5g6dSBXPdj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/0e90c8-2b83-4715-9933-a73f0b7418ab/1/JbGiI7fnP9I0YsIE5g6dSBXPdj8.mft
Manifest number: 020B
Signing time: Sat 09 Aug 2025 01:00:56 +0000
Manifest this update: Sat 09 Aug 2025 01:00:56 +0000
Manifest next update: Sun 10 Aug 2025 01:00:56 +0000
Files and hashes: 1: 1-nkTyOMqH94a8OlfukcDf7YbkNc.roa (hash: Z6uvUYmhirGQlJwClrs+HtNhQJGa2PNo7VCbu68pXz8=)
2: JbGiI7fnP9I0YsIE5g6dSBXPdj8.crl (hash: JiNtn8ClEq9LbMSP8oByBm3ACUDtHTTI1jypbJMkHfI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/0e90c8-2b83-4715-9933-a73f0b7418ab/1/JbGiI7fnP9I0YsIE5g6dSBXPdj8.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/0e90c8-2b83-4715-9933-a73f0b7418ab/1/JbGiI7fnP9I0YsIE5g6dSBXPdj8.mft
rsync://rpki.ripe.net/repository/DEFAULT/JbGiI7fnP9I0YsIE5g6dSBXPdj8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 01:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8c:58:55:ed:22:56:88:8a:fe:74:3b:c0:21:16:35:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25b1a223b7e73fd23462c204e60e9d4815cf763f
Validity
Not Before: Aug 9 01:00:56 2025 GMT
Not After : Aug 10 01:00:56 2025 GMT
Subject: CN=f01996d0119fc5497d4537c97219069dfb2b3184
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:39:7e:2d:8b:9e:0a:5a:d3:f7:50:50:93:f0:
c0:91:c3:56:f2:d9:a7:e5:8d:52:6c:9f:cd:a5:b1:
0b:58:17:33:f1:70:9f:e8:ad:90:ef:75:76:84:f4:
db:6d:e5:6b:c4:cb:e3:d6:e8:a9:26:a1:e6:07:6c:
3a:f2:6f:56:c5:7d:b4:ce:02:09:1e:50:94:10:60:
2a:13:b3:78:0b:21:19:e9:2e:66:11:a4:de:4f:64:
d3:08:24:4d:33:e1:24:8d:a2:68:2d:b0:88:29:b1:
d4:50:5b:0b:2c:8a:79:aa:91:4d:1a:48:8b:d0:66:
c5:0d:40:34:fc:8b:20:12:16:27:b8:d4:c3:e6:d8:
75:eb:97:61:b9:5d:f3:27:47:0c:81:ba:cb:99:5c:
92:14:8f:cc:ae:a2:98:cb:cc:f3:0b:bf:96:75:49:
b8:ca:ff:31:4f:a2:6a:90:08:8b:f4:8e:00:47:55:
36:b6:14:db:ec:67:4a:72:4a:e6:5a:6c:dc:21:c3:
31:47:cb:7d:f0:55:4d:6e:5a:07:e4:ac:4e:b0:1f:
14:fb:9b:b4:a4:84:57:30:fa:95:99:9a:13:f6:56:
61:68:b0:7b:cf:a3:51:e6:8d:cb:1f:dd:17:b0:8e:
81:7d:fa:ca:ad:5e:a7:e2:e9:6b:36:e5:ae:1e:9a:
25:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:19:96:D0:11:9F:C5:49:7D:45:37:C9:72:19:06:9D:FB:2B:31:84
X509v3 Authority Key Identifier:
keyid:25:B1:A2:23:B7:E7:3F:D2:34:62:C2:04:E6:0E:9D:48:15:CF:76:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JbGiI7fnP9I0YsIE5g6dSBXPdj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0e90c8-2b83-4715-9933-a73f0b7418ab/1/JbGiI7fnP9I0YsIE5g6dSBXPdj8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0e90c8-2b83-4715-9933-a73f0b7418ab/1/JbGiI7fnP9I0YsIE5g6dSBXPdj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:c0:86:e5:a1:a4:ed:50:2a:03:c2:a6:19:e5:53:5e:84:9f:
97:71:04:64:4b:47:91:c4:41:66:5f:71:a8:0f:60:a3:5e:43:
c3:47:59:e5:97:0d:e1:05:83:13:b1:8f:d0:87:a1:95:e9:0b:
b5:ab:6f:6a:ce:e3:ed:1c:6d:1f:26:eb:ee:b4:c6:2a:69:a1:
f7:c2:49:95:96:e1:05:3f:a7:11:20:8b:41:a3:fb:85:a3:1c:
89:65:d0:e7:44:f7:e6:33:61:a1:e4:d7:d4:5a:bc:cc:88:f0:
9f:6f:38:59:11:4d:70:d5:3c:1f:7e:08:ba:1b:a4:ac:f3:12:
fa:12:9d:bf:db:d0:8f:54:40:64:9d:ce:36:d1:2c:e3:ca:be:
a1:41:d9:11:3b:76:45:bd:55:c2:54:13:5f:f7:53:14:27:44:
78:ee:2f:7a:a3:9a:61:8f:b2:ea:e9:8e:56:70:76:62:43:5e:
40:a9:f7:05:bc:5f:38:e9:f8:f1:83:c3:67:ba:c2:85:09:62:
5e:78:0b:4f:af:3b:05:bb:66:2b:e2:9a:ff:ff:3e:e9:b9:fb:
51:cb:1c:a4:04:59:f3:98:be:07:ae:b7:8f:6c:99:d3:c4:8f:
03:46:a8:5b:88:49:12:a8:c4:d2:9d:03:ef:85:a6:81:64:17:
e6:ee:d7:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 10:32:49 2025 by rpki-client