Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/809cd5-f23f-4720-8c64-59eb384e0967/1/JcUDXdNt8HSfTWKZyPy-1hVcARc.mft
File: JcUDXdNt8HSfTWKZyPy-1hVcARc.mft (raw, json)
Hash identifier: Tu1xGrM5YghYnFCaPk+kkmm9g8T8fg/rT5lWPcZVQHE=
Subject key identifier: AB:7A:DA:2F:42:51:1C:E7:AC:57:52:74:CB:13:C1:FC:3A:B7:D3:31
Authority key identifier: 25:C5:03:5D:D3:6D:F0:74:9F:4D:62:99:C8:FC:BE:D6:15:5C:01:17
Certificate issuer: /CN=25c5035dd36df0749f4d6299c8fcbed6155c0117
Certificate serial: 019873E2D9AB56F0615BB2BF10009A9D6B02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JcUDXdNt8HSfTWKZyPy-1hVcARc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/809cd5-f23f-4720-8c64-59eb384e0967/1/JcUDXdNt8HSfTWKZyPy-1hVcARc.mft
Manifest number: 1613
Signing time: Mon 04 Aug 2025 07:01:43 +0000
Manifest this update: Mon 04 Aug 2025 07:01:43 +0000
Manifest next update: Tue 05 Aug 2025 07:01:43 +0000
Files and hashes: 1: JcUDXdNt8HSfTWKZyPy-1hVcARc.crl (hash: EsqZnMa2URloBJ7wdCyEDJCkX4UY1ObSEA6V43q0Mh8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/809cd5-f23f-4720-8c64-59eb384e0967/1/JcUDXdNt8HSfTWKZyPy-1hVcARc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cc/809cd5-f23f-4720-8c64-59eb384e0967/1/JcUDXdNt8HSfTWKZyPy-1hVcARc.mft
rsync://rpki.ripe.net/repository/DEFAULT/JcUDXdNt8HSfTWKZyPy-1hVcARc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e2:d9:ab:56:f0:61:5b:b2:bf:10:00:9a:9d:6b:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25c5035dd36df0749f4d6299c8fcbed6155c0117
Validity
Not Before: Aug 4 07:01:43 2025 GMT
Not After : Aug 5 07:01:43 2025 GMT
Subject: CN=ab7ada2f42511ce7ac575274cb13c1fc3ab7d331
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:14:7d:32:90:da:a6:d8:ef:7b:4b:da:88:ec:
7f:0b:23:8b:e2:f3:74:95:b9:03:1e:41:6d:c4:a7:
c3:3c:3c:72:60:f1:23:1e:e4:93:b7:b3:0b:03:5a:
51:1b:a2:16:86:ac:f7:c7:f2:2e:06:fa:de:69:8e:
2c:c1:57:a1:ea:58:21:db:b6:4e:8b:3f:84:74:ec:
da:42:ec:ee:5c:0c:86:d2:3e:48:62:bc:0e:44:69:
a1:8e:19:80:42:73:29:d6:e8:aa:5e:d1:2b:51:c6:
79:e7:61:5a:a7:4f:de:5b:e3:0c:83:c1:7f:b9:43:
9a:d9:1d:c9:cc:cf:8c:14:14:e2:74:fb:4a:ff:97:
5a:74:55:be:68:ab:4b:ab:40:6f:d9:73:fa:27:6f:
99:8e:f2:ea:00:d0:2d:bc:5c:4d:88:ae:b3:c6:67:
18:dd:70:74:a9:5a:20:47:d5:1b:5c:11:41:31:e9:
f7:66:0e:96:d6:f1:e3:78:d7:9e:f4:74:db:e0:04:
9a:57:c9:8c:db:f2:5a:05:04:82:bd:7d:1b:06:22:
06:45:60:b8:15:53:8a:45:ac:74:8f:42:fe:30:51:
05:70:f6:71:58:d6:4d:57:25:ad:23:7d:7a:89:39:
d9:b6:63:f3:cb:a3:97:03:54:68:a4:f2:e4:4d:d5:
4d:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:7A:DA:2F:42:51:1C:E7:AC:57:52:74:CB:13:C1:FC:3A:B7:D3:31
X509v3 Authority Key Identifier:
keyid:25:C5:03:5D:D3:6D:F0:74:9F:4D:62:99:C8:FC:BE:D6:15:5C:01:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JcUDXdNt8HSfTWKZyPy-1hVcARc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/809cd5-f23f-4720-8c64-59eb384e0967/1/JcUDXdNt8HSfTWKZyPy-1hVcARc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/809cd5-f23f-4720-8c64-59eb384e0967/1/JcUDXdNt8HSfTWKZyPy-1hVcARc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:74:d1:fd:a1:55:c0:f3:af:63:25:2b:96:21:77:e6:fb:13:
f6:18:e7:3f:63:cd:83:cf:b5:1a:d0:af:6c:23:20:90:ca:13:
a3:07:d1:b1:3e:02:4f:1d:d2:6a:94:84:5c:b0:ec:46:96:3d:
d4:af:9e:ba:7d:6f:30:4d:6d:dd:2f:c7:a2:3c:bf:94:89:ff:
bd:1b:ad:ff:7f:8a:3b:c8:f4:e6:46:8d:86:aa:2c:42:6d:08:
b4:4a:5b:31:47:e5:3c:27:76:d5:44:f2:e8:ad:42:7d:3a:a7:
0c:b4:f3:f2:84:33:5b:09:67:01:29:a0:bf:3f:e9:73:eb:ba:
c1:5d:d3:8f:4d:1a:e5:84:ab:c7:6b:f3:07:7d:27:3d:fe:42:
79:78:90:09:d1:7c:7e:12:2b:7a:b4:e1:86:33:17:b1:ef:e2:
76:80:7e:5d:87:80:16:d9:a5:a5:c2:3d:18:b8:21:9a:43:27:
e2:59:3c:4b:25:21:c1:48:4f:00:3c:a1:f7:1c:53:88:5d:c5:
f9:fd:e8:67:98:6f:0d:fd:40:06:50:d7:6e:d7:80:85:34:3f:
a4:91:0f:e0:e6:db:5a:0d:53:b6:7e:4f:23:61:72:63:13:b2:
bb:4c:73:a8:f7:db:5a:50:ff:42:e4:da:98:61:52:18:db:1c:
f9:83:5f:5d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhz4tmrVvBhW7K/EACanWsCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI1YzUwMzVkZDM2ZGYwNzQ5ZjRkNjI5OWM4ZmNiZWQ2MTU1
YzAxMTcwHhcNMjUwODA0MDcwMTQzWhcNMjUwODA1MDcwMTQzWjAzMTEwLwYDVQQD
EyhhYjdhZGEyZjQyNTExY2U3YWM1NzUyNzRjYjEzYzFmYzNhYjdkMzMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1BR9MpDaptjve0vaiOx/CyOL4vN0
lbkDHkFtxKfDPDxyYPEjHuSTt7MLA1pRG6IWhqz3x/IuBvreaY4swVeh6lgh27ZO
iz+EdOzaQuzuXAyG0j5IYrwORGmhjhmAQnMp1uiqXtErUcZ552Fap0/eW+MMg8F/
uUOa2R3JzM+MFBTidPtK/5dadFW+aKtLq0Bv2XP6J2+ZjvLqANAtvFxNiK6zxmcY
3XB0qVogR9UbXBFBMen3Zg6W1vHjeNee9HTb4ASaV8mM2/JaBQSCvX0bBiIGRWC4
FVOKRax0j0L+MFEFcPZxWNZNVyWtI316iTnZtmPzy6OXA1RopPLkTdVNlwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKt62i9CURznrFdSdMsTwfw6t9MxMB8GA1UdIwQY
MBaAFCXFA13TbfB0n01imcj8vtYVXAEXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSmNVRFhkTnQ4SFNmVFdLWnlQeS0xaFZjQVJjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy84MDljZDUtZjIzZi00NzIwLThjNjQt
NTllYjM4NGUwOTY3LzEvSmNVRFhkTnQ4SFNmVFdLWnlQeS0xaFZjQVJjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYy84MDljZDUtZjIzZi00NzIwLThjNjQtNTllYjM4NGUwOTY3
LzEvSmNVRFhkTnQ4SFNmVFdLWnlQeS0xaFZjQVJjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhXTR/aFV
wPOvYyUrliF35vsT9hjnP2PNg8+1GtCvbCMgkMoTowfRsT4CTx3SapSEXLDsRpY9
1K+eun1vME1t3S/Hojy/lIn/vRut/3+KO8j05kaNhqosQm0ItEpbMUflPCd21UTy
6K1CfTqnDLTz8oQzWwlnASmgvz/pc+u6wV3Tj00a5YSrx2vzB30nPf5CeXiQCdF8
fhIrerThhjMXse/idoB+XYeAFtmlpcI9GLghmkMn4lk8SyUhwUhPADyh9xxTiF3F
+f3oZ5hvDf1ABlDXbteAhTQ/pJEP4ObbWg1Ttn5PI2FyYxOyu0xzqPfbWlD/QuTa
mGFSGNsc+YNfXQ==
-----END CERTIFICATE-----
Generated at Mon Aug 4 11:01:00 2025 by rpki-client