Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/a59955-86cf-4655-a1f8-258954b4fe5a/1/J2zuYEMhsPEryjZ7VMBzmqil8To.mft
File: J2zuYEMhsPEryjZ7VMBzmqil8To.mft (raw, json)
Hash identifier: SToxatpVHaAzNu2+ikuZOCdM/5SYFpVrk/jafwBpkfE=
Subject key identifier: 68:6D:48:F9:F9:30:4C:C5:F1:DD:A1:F8:E4:AA:84:41:C2:E4:F9:B6
Authority key identifier: 27:6C:EE:60:43:21:B0:F1:2B:CA:36:7B:54:C0:73:9A:A8:A5:F1:3A
Certificate issuer: /CN=276cee604321b0f12bca367b54c0739aa8a5f13a
Certificate serial: 0198D84F80618C9A1D9A3999D9A39C2A08BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J2zuYEMhsPEryjZ7VMBzmqil8To.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/a59955-86cf-4655-a1f8-258954b4fe5a/1/J2zuYEMhsPEryjZ7VMBzmqil8To.mft
Manifest number: 0F9D
Signing time: Sat 23 Aug 2025 19:02:25 +0000
Manifest this update: Sat 23 Aug 2025 19:02:25 +0000
Manifest next update: Sun 24 Aug 2025 19:02:25 +0000
Files and hashes: 1: J2zuYEMhsPEryjZ7VMBzmqil8To.crl (hash: HSD/DgDVhDW6A8qg3Yyo9c81OXyUznP3sueBJ5BN98E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/a59955-86cf-4655-a1f8-258954b4fe5a/1/J2zuYEMhsPEryjZ7VMBzmqil8To.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/a59955-86cf-4655-a1f8-258954b4fe5a/1/J2zuYEMhsPEryjZ7VMBzmqil8To.mft
rsync://rpki.ripe.net/repository/DEFAULT/J2zuYEMhsPEryjZ7VMBzmqil8To.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d8:4f:80:61:8c:9a:1d:9a:39:99:d9:a3:9c:2a:08:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=276cee604321b0f12bca367b54c0739aa8a5f13a
Validity
Not Before: Aug 23 19:02:25 2025 GMT
Not After : Aug 24 19:02:25 2025 GMT
Subject: CN=686d48f9f9304cc5f1dda1f8e4aa8441c2e4f9b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:0f:6a:29:b2:b6:b7:de:59:f7:35:c0:16:ad:
31:cf:21:2a:9b:18:dc:90:07:97:0d:9d:97:80:12:
37:d2:59:d7:43:ea:dc:98:83:c0:22:e4:bf:c0:59:
64:41:c1:f9:1e:26:5b:9a:60:ee:e4:06:03:6a:9f:
5f:93:ef:57:6c:3f:48:a2:91:10:ed:27:67:fa:fc:
77:7b:ff:e4:73:59:c0:a5:e0:f7:13:2f:20:13:15:
4e:1a:34:74:2b:bd:7b:ef:77:70:a0:a1:92:81:45:
8d:d5:75:f2:bb:1d:8e:98:5d:18:8c:3d:f5:e6:45:
6a:44:30:69:38:ed:b7:0d:6a:4d:a5:69:d4:95:82:
58:cf:fe:03:71:40:53:5a:85:9f:0d:8a:95:79:f1:
ce:2d:6a:51:36:89:51:48:54:51:be:e5:ca:c2:d9:
9e:8a:47:62:41:81:c9:8d:a3:e0:7e:5b:78:26:3a:
c0:c2:bd:15:31:fc:17:2c:71:10:3a:c3:34:87:fb:
56:c4:a5:11:2b:5b:c1:60:82:09:97:fe:13:43:bc:
b9:df:b6:f4:1b:4e:e0:98:81:24:9b:ef:4f:b9:4f:
5a:c7:aa:85:6e:3c:9a:dd:ea:6d:01:9e:15:d4:65:
92:5b:d9:61:34:21:9a:32:05:81:14:4e:62:28:f3:
a3:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:6D:48:F9:F9:30:4C:C5:F1:DD:A1:F8:E4:AA:84:41:C2:E4:F9:B6
X509v3 Authority Key Identifier:
keyid:27:6C:EE:60:43:21:B0:F1:2B:CA:36:7B:54:C0:73:9A:A8:A5:F1:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J2zuYEMhsPEryjZ7VMBzmqil8To.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/a59955-86cf-4655-a1f8-258954b4fe5a/1/J2zuYEMhsPEryjZ7VMBzmqil8To.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/a59955-86cf-4655-a1f8-258954b4fe5a/1/J2zuYEMhsPEryjZ7VMBzmqil8To.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:22:7c:d2:43:fd:c1:cc:6b:23:98:57:f2:b9:4c:03:f8:43:
78:b5:49:0a:68:4a:8c:b9:33:bb:96:a9:14:f8:0f:ff:6b:ea:
01:01:b6:d9:74:a0:0a:ec:d6:4b:a7:2e:4f:e9:47:da:f2:a4:
c4:dd:7f:83:98:d6:34:a2:7a:38:16:a9:af:13:5f:dd:66:bf:
3b:73:fa:52:48:1a:af:f1:a8:b5:60:36:77:80:40:7b:1b:f3:
05:09:ac:14:f4:f5:59:d3:da:e0:0b:dd:d1:29:25:65:d3:d2:
3d:79:31:04:b9:9d:8b:59:b5:35:69:e9:2d:08:cb:01:cd:3c:
ff:86:48:89:9c:97:1e:c5:64:56:c8:b2:22:b9:19:1d:c6:23:
ec:cf:7b:d4:80:fc:96:e9:7c:9c:9f:f0:5f:a5:5a:bb:96:f4:
9d:53:84:08:ea:cf:50:a6:2d:56:07:fd:57:aa:35:bb:7a:9f:
01:9f:19:38:88:0e:51:de:31:85:df:5d:6f:f4:f6:84:70:e9:
b5:aa:8f:d9:d4:c2:42:1b:ac:19:bc:e1:fb:31:67:14:5a:9b:
af:70:72:5a:e1:41:0e:19:55:76:23:ba:fa:34:d4:fe:bf:de:
89:70:23:7b:08:ca:65:38:43:f6:48:ba:67:e1:de:cf:1c:61:
db:75:65:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 21:50:47 2025 by rpki-client