Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/0e90c8-2b83-4715-9933-a73f0b7418ab/1/JbGiI7fnP9I0YsIE5g6dSBXPdj8.mft
File: JbGiI7fnP9I0YsIE5g6dSBXPdj8.mft (raw, json)
Hash identifier: QtaPPco3q8hwJRzb3SrH2FDlmUoWtyCaTAhDn/znL8Q=
Subject key identifier: D6:05:B1:D5:7B:B0:BE:A6:E9:0D:5D:92:11:7F:7E:66:50:EC:EE:BC
Authority key identifier: 25:B1:A2:23:B7:E7:3F:D2:34:62:C2:04:E6:0E:9D:48:15:CF:76:3F
Certificate issuer: /CN=25b1a223b7e73fd23462c204e60e9d4815cf763f
Certificate serial: 01976C98E7AB10C44204DF88D2D95945590C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JbGiI7fnP9I0YsIE5g6dSBXPdj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/0e90c8-2b83-4715-9933-a73f0b7418ab/1/JbGiI7fnP9I0YsIE5g6dSBXPdj8.mft
Manifest number: 0176
Signing time: Sat 14 Jun 2025 04:00:49 +0000
Manifest this update: Sat 14 Jun 2025 04:00:49 +0000
Manifest next update: Sun 15 Jun 2025 04:00:49 +0000
Files and hashes: 1: 1-nkTyOMqH94a8OlfukcDf7YbkNc.roa (hash: Z6uvUYmhirGQlJwClrs+HtNhQJGa2PNo7VCbu68pXz8=)
2: JbGiI7fnP9I0YsIE5g6dSBXPdj8.crl (hash: WfeBy4jTg0gkubGPpudP/IP3c+RIzzdKOWE1mtkYITI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/0e90c8-2b83-4715-9933-a73f0b7418ab/1/JbGiI7fnP9I0YsIE5g6dSBXPdj8.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/0e90c8-2b83-4715-9933-a73f0b7418ab/1/JbGiI7fnP9I0YsIE5g6dSBXPdj8.mft
rsync://rpki.ripe.net/repository/DEFAULT/JbGiI7fnP9I0YsIE5g6dSBXPdj8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:98:e7:ab:10:c4:42:04:df:88:d2:d9:59:45:59:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25b1a223b7e73fd23462c204e60e9d4815cf763f
Validity
Not Before: Jun 14 04:00:49 2025 GMT
Not After : Jun 15 04:00:49 2025 GMT
Subject: CN=d605b1d57bb0bea6e90d5d92117f7e6650eceebc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:71:cf:06:ff:5e:7e:06:aa:96:11:a8:ba:a6:
59:ce:c8:8c:71:40:f0:64:df:62:19:ff:ef:5e:9b:
1d:fb:02:bc:65:17:cd:d5:06:0c:ba:73:80:3f:d2:
b4:bd:ff:b1:e2:b7:dd:16:34:4c:2b:9e:4b:ef:cd:
bc:16:04:df:f8:80:3c:2b:a2:09:f2:89:6d:2b:28:
53:0f:fb:4d:35:57:32:5e:e8:df:a3:1a:97:63:9f:
f8:8f:d3:48:e3:ba:b4:c4:38:5f:b8:7e:8f:e8:7d:
79:9d:1f:a3:08:9c:3b:72:c0:2e:21:41:a1:60:e9:
41:42:43:74:0f:31:7a:84:3f:dd:a4:f6:43:5e:e8:
dd:2e:95:46:b2:2e:69:8d:a3:a0:c3:06:84:ac:8e:
05:3b:a0:a6:d3:ad:7c:d2:e4:46:d4:93:f0:8f:4d:
2c:fb:7e:51:87:0b:f6:24:ca:59:af:8b:49:a8:85:
36:35:67:16:32:9b:88:38:ad:b4:ce:41:2b:af:f0:
6c:9b:c1:33:5f:8e:2b:a4:78:03:ab:3e:79:cf:46:
92:53:fc:ae:b2:36:a2:76:93:04:2c:ec:34:db:a1:
db:b5:5d:9e:ec:91:a0:95:3f:30:0f:15:75:b2:36:
8a:6a:f9:73:ff:33:c8:df:19:ca:2c:f9:22:58:99:
62:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:05:B1:D5:7B:B0:BE:A6:E9:0D:5D:92:11:7F:7E:66:50:EC:EE:BC
X509v3 Authority Key Identifier:
keyid:25:B1:A2:23:B7:E7:3F:D2:34:62:C2:04:E6:0E:9D:48:15:CF:76:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JbGiI7fnP9I0YsIE5g6dSBXPdj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0e90c8-2b83-4715-9933-a73f0b7418ab/1/JbGiI7fnP9I0YsIE5g6dSBXPdj8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0e90c8-2b83-4715-9933-a73f0b7418ab/1/JbGiI7fnP9I0YsIE5g6dSBXPdj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:27:2e:3b:76:58:bf:ae:e1:29:67:9d:ae:00:37:9c:ca:52:
02:10:78:2f:74:a7:4c:49:31:30:8a:75:2e:9b:f7:91:ee:59:
7d:0d:1f:af:c6:6d:bc:e8:64:64:5c:38:81:e2:e8:ac:0d:63:
2f:9b:b0:1b:b6:8b:73:39:1e:23:e7:6e:ce:0c:57:7e:7e:5a:
8f:a0:12:3f:9b:c3:ef:9c:de:1b:47:58:cc:50:f3:82:9d:02:
d5:5f:da:36:e2:1c:0f:29:a8:bb:2e:fa:88:d8:a8:3a:a9:1c:
85:a1:96:54:35:0a:4b:a1:0a:3f:fa:c5:a6:63:05:3c:fe:cc:
ea:ec:4c:aa:fb:1b:b6:85:47:70:64:b6:42:b6:a8:c9:aa:ff:
3b:cb:e1:f3:17:cd:d1:65:8c:90:55:ba:4f:55:c9:a6:3a:6c:
e1:58:c2:4e:77:19:30:ec:66:0b:0a:f5:64:df:ac:05:a0:9e:
5b:8a:1f:10:4d:1d:18:dc:f8:13:79:d3:8c:e8:cd:66:7d:25:
87:f2:a6:7e:17:d1:b1:4c:ef:38:c7:27:f8:4f:d3:82:c4:13:
81:a9:62:4e:74:b1:d7:83:7e:90:6d:0e:5d:42:21:10:04:10:
80:10:4a:1f:58:59:02:e8:fd:d2:eb:be:14:e9:54:3f:07:e5:
8f:cf:b8:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:49:40 2025 by rpki-client