Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/809cd5-f23f-4720-8c64-59eb384e0967/1/JcUDXdNt8HSfTWKZyPy-1hVcARc.mft
File: JcUDXdNt8HSfTWKZyPy-1hVcARc.mft (raw, json)
Hash identifier: 81tustpj95Z6aXv3n99YIVmKIX6l3whYONVvIcejTI4=
Subject key identifier: 89:4E:C2:05:89:97:12:96:1C:DC:10:8A:54:1D:1A:85:E4:85:1C:07
Authority key identifier: 25:C5:03:5D:D3:6D:F0:74:9F:4D:62:99:C8:FC:BE:D6:15:5C:01:17
Certificate issuer: /CN=25c5035dd36df0749f4d6299c8fcbed6155c0117
Certificate serial: 01976F2C89FC0214533BCE71FD5A0645A0FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JcUDXdNt8HSfTWKZyPy-1hVcARc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/809cd5-f23f-4720-8c64-59eb384e0967/1/JcUDXdNt8HSfTWKZyPy-1hVcARc.mft
Manifest number: 158C
Signing time: Sat 14 Jun 2025 16:01:19 +0000
Manifest this update: Sat 14 Jun 2025 16:01:19 +0000
Manifest next update: Sun 15 Jun 2025 16:01:19 +0000
Files and hashes: 1: JcUDXdNt8HSfTWKZyPy-1hVcARc.crl (hash: DverbX3II7s2Af0yndP1kAmsE/bu3/+/vJv51pR1RGI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/809cd5-f23f-4720-8c64-59eb384e0967/1/JcUDXdNt8HSfTWKZyPy-1hVcARc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cc/809cd5-f23f-4720-8c64-59eb384e0967/1/JcUDXdNt8HSfTWKZyPy-1hVcARc.mft
rsync://rpki.ripe.net/repository/DEFAULT/JcUDXdNt8HSfTWKZyPy-1hVcARc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 10:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:2c:89:fc:02:14:53:3b:ce:71:fd:5a:06:45:a0:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25c5035dd36df0749f4d6299c8fcbed6155c0117
Validity
Not Before: Jun 14 16:01:19 2025 GMT
Not After : Jun 15 16:01:19 2025 GMT
Subject: CN=894ec205899712961cdc108a541d1a85e4851c07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:7f:33:42:4a:d6:7c:4a:bb:19:19:86:0b:4a:
28:54:ed:5e:77:34:0f:ae:bd:24:a0:8d:41:6b:82:
57:f3:da:ff:53:0f:ad:23:24:b6:c0:f9:82:fd:97:
c5:c4:92:f4:cb:4b:46:86:c1:c9:4f:79:a9:c9:05:
ff:00:07:4b:ae:4c:a8:33:4e:95:fc:34:0d:da:70:
52:e5:30:97:d9:e9:de:c2:84:3a:bb:3c:cb:af:0c:
52:e4:88:e3:15:0a:5c:32:d0:7e:2e:c6:4d:35:84:
e2:44:98:ea:65:e7:f2:fa:e8:57:b7:f8:ca:78:52:
a6:0f:62:7a:4d:ab:b5:34:71:6d:68:93:ec:4a:d8:
1d:73:ef:39:67:86:80:a3:c2:34:9a:19:0a:0a:35:
9a:cb:78:c7:57:90:44:09:9b:68:eb:72:88:5d:96:
30:bf:46:19:64:e3:73:43:ab:07:be:8c:ce:25:df:
1c:9e:a7:6a:cf:ee:ba:c7:99:a1:26:63:bf:18:b2:
21:d4:d7:69:8d:c6:98:68:8a:d4:e4:1c:e0:9b:17:
ad:5b:9a:7f:44:02:f1:8b:2f:8f:c9:c0:cc:6f:a6:
1e:26:41:d9:e9:13:dd:ba:fc:a5:b6:b5:a7:cd:fe:
2b:75:06:3a:c1:28:63:3b:60:8e:22:6c:a2:56:f6:
66:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:4E:C2:05:89:97:12:96:1C:DC:10:8A:54:1D:1A:85:E4:85:1C:07
X509v3 Authority Key Identifier:
keyid:25:C5:03:5D:D3:6D:F0:74:9F:4D:62:99:C8:FC:BE:D6:15:5C:01:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JcUDXdNt8HSfTWKZyPy-1hVcARc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/809cd5-f23f-4720-8c64-59eb384e0967/1/JcUDXdNt8HSfTWKZyPy-1hVcARc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/809cd5-f23f-4720-8c64-59eb384e0967/1/JcUDXdNt8HSfTWKZyPy-1hVcARc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:23:e5:47:16:b0:57:80:e4:19:68:92:18:72:1c:a1:88:df:
4a:55:ea:60:a0:a9:fe:48:83:8c:6e:95:b2:ca:dd:75:26:26:
c1:e1:c2:79:1d:0f:68:fd:1c:aa:58:cb:2b:88:4d:82:10:69:
6d:ba:10:e9:27:5f:3e:81:4e:27:c3:d8:50:7e:69:a9:25:5d:
d8:e0:1d:6e:6e:d1:4c:da:34:14:fd:d9:1c:6b:c9:2d:d8:85:
87:b8:69:7a:19:b9:bb:e9:af:3e:f9:c1:d9:43:cf:1a:79:d0:
8c:8a:e6:32:38:53:6c:56:b1:d4:99:02:6c:73:25:19:86:cf:
80:8c:59:60:72:1a:9b:e6:b4:a1:8c:6f:57:20:0e:1b:2d:de:
a8:2b:ad:06:9e:9a:bb:5e:fd:58:9c:ab:d5:ca:53:ea:e4:eb:
55:08:e5:58:f0:24:4a:81:10:4f:f3:7d:38:80:db:60:4c:6e:
87:8d:e0:87:00:cf:6a:91:0a:4b:49:34:7e:a6:9a:04:b3:b6:
d7:a2:90:80:eb:43:95:0b:37:b1:19:82:fb:6b:22:f5:2b:c2:
94:7e:25:6d:06:94:75:f5:cb:31:8a:c3:b3:ef:50:63:c4:ee:
42:7a:42:d2:42:56:f9:fe:9e:f0:5f:42:94:a1:7e:84:49:ba:
3a:18:b0:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 19:48:43 2025 by rpki-client