Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/d9732b-4df9-45c6-a91e-c1149a01815f/1/JkXNQMgEm-mprn8DM2q9P-CCr7k.mft
File: JkXNQMgEm-mprn8DM2q9P-CCr7k.mft (raw, json)
Hash identifier: PnsRCbwk86tu81sTPOTgRj0VdhKgYr1ZgEI4HgbYmLM=
Subject key identifier: 69:3D:85:04:52:60:9C:5B:80:C4:07:4E:78:F4:C7:BE:67:78:C2:0A
Authority key identifier: 26:45:CD:40:C8:04:9B:E9:A9:AE:7F:03:33:6A:BD:3F:E0:82:AF:B9
Certificate issuer: /CN=2645cd40c8049be9a9ae7f03336abd3fe082afb9
Certificate serial: 0198D65FD8A434975AE5AE6CBC44786851CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JkXNQMgEm-mprn8DM2q9P-CCr7k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/d9732b-4df9-45c6-a91e-c1149a01815f/1/JkXNQMgEm-mprn8DM2q9P-CCr7k.mft
Manifest number: 1648
Signing time: Sat 23 Aug 2025 10:01:02 +0000
Manifest this update: Sat 23 Aug 2025 10:01:02 +0000
Manifest next update: Sun 24 Aug 2025 10:01:02 +0000
Files and hashes: 1: JkXNQMgEm-mprn8DM2q9P-CCr7k.crl (hash: GUIExul4dwRyyzCL7KiHPhAp3EoV64u8gzyAL0+KUWg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/d9732b-4df9-45c6-a91e-c1149a01815f/1/JkXNQMgEm-mprn8DM2q9P-CCr7k.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/d9732b-4df9-45c6-a91e-c1149a01815f/1/JkXNQMgEm-mprn8DM2q9P-CCr7k.mft
rsync://rpki.ripe.net/repository/DEFAULT/JkXNQMgEm-mprn8DM2q9P-CCr7k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:d8:a4:34:97:5a:e5:ae:6c:bc:44:78:68:51:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2645cd40c8049be9a9ae7f03336abd3fe082afb9
Validity
Not Before: Aug 23 10:01:02 2025 GMT
Not After : Aug 24 10:01:02 2025 GMT
Subject: CN=693d850452609c5b80c4074e78f4c7be6778c20a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:ce:09:89:4f:d9:ec:6a:ec:c8:a2:98:3d:3a:
8e:19:59:a8:9a:f2:70:1a:9b:c7:c5:b1:c6:a8:0b:
78:49:05:ff:6a:99:77:60:c8:26:c0:2f:6c:b4:b4:
d9:1e:9b:91:44:34:51:7f:97:0d:53:76:46:1c:4e:
d3:cc:0d:5f:2a:2e:67:3a:28:6f:9d:4a:27:98:1f:
29:20:3b:bc:e9:3e:00:1d:0f:15:8a:6c:85:c6:4a:
40:6d:44:ce:04:ee:8b:6f:59:a0:ed:c2:d3:67:8d:
f5:e4:28:76:dc:7a:fa:a8:34:39:5a:90:0e:26:2d:
ec:85:8e:50:ff:fa:b8:b2:fd:4f:18:c9:e0:e6:27:
1e:08:e0:44:71:3a:fe:bf:18:d6:70:fb:83:52:66:
c1:08:d5:67:61:34:de:7b:40:bc:7f:1e:b1:63:56:
be:72:06:d0:3a:d8:27:b1:0c:10:31:75:1d:f6:63:
c2:47:64:4d:c3:ba:bd:87:a4:a8:02:91:41:b0:82:
7e:24:ef:83:70:0c:37:a9:1f:8a:05:95:74:39:6c:
ac:c0:8c:b9:4b:9c:60:8e:b4:52:82:b4:05:e0:4c:
74:b8:88:99:aa:7d:b1:6e:85:a0:b3:63:a6:93:0e:
2f:5a:38:5d:7f:3c:e3:5a:e7:5e:5e:04:20:d4:d8:
32:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:3D:85:04:52:60:9C:5B:80:C4:07:4E:78:F4:C7:BE:67:78:C2:0A
X509v3 Authority Key Identifier:
keyid:26:45:CD:40:C8:04:9B:E9:A9:AE:7F:03:33:6A:BD:3F:E0:82:AF:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JkXNQMgEm-mprn8DM2q9P-CCr7k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/d9732b-4df9-45c6-a91e-c1149a01815f/1/JkXNQMgEm-mprn8DM2q9P-CCr7k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/d9732b-4df9-45c6-a91e-c1149a01815f/1/JkXNQMgEm-mprn8DM2q9P-CCr7k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:85:eb:cc:bb:94:48:ec:79:50:7e:ac:04:28:43:be:8a:76:
bb:47:07:98:28:89:ca:a6:68:30:3e:d6:f7:b9:5e:81:c6:9a:
e2:2a:bd:53:cf:38:2f:50:4e:7e:fd:d2:45:2f:0f:25:56:07:
e9:cb:22:37:17:c0:d4:a3:03:7c:0d:fd:55:3e:3a:8a:8c:5b:
5c:5c:22:0a:21:00:f4:8b:03:91:3d:05:66:74:d2:93:00:a4:
20:68:b6:b4:86:d0:2a:02:96:9a:28:89:d3:18:ea:34:44:1e:
79:5b:e7:39:1c:37:ac:1f:8f:e6:cd:e9:a3:5c:6b:82:e5:2e:
50:5f:73:9f:69:e3:2f:2e:94:1b:41:d4:47:bc:69:a1:77:00:
af:2c:66:e5:51:8f:38:79:68:f7:55:d8:ff:07:77:a3:0d:73:
da:84:1e:73:ab:0b:c2:43:bf:82:db:2b:16:e6:5e:5f:7f:b5:
b2:2c:14:73:05:43:1f:eb:1c:e5:5b:79:34:c8:f1:54:d7:ef:
3d:82:ca:6c:fc:2b:1a:09:e1:ca:3a:64:e0:53:59:21:e8:bb:
a5:84:7a:b4:a5:8b:53:9a:a9:8e:f6:5a:45:e2:f1:51:e8:78:
a7:c7:c7:40:3b:10:25:93:9b:10:a7:6a:16:b5:3d:8e:1b:96:
e5:81:67:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:05:17 2025 by rpki-client