Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
File: JY8HU8Azwa8JGGbQlCZFEmlspos.mft (raw, json)
Hash identifier: jXc8VES3s22s+IB/bN0REPSSPbryC7Uvv8SnNilak6w=
Subject key identifier: A4:A4:9D:CB:A0:39:81:61:73:D1:81:95:F1:B1:5E:9C:DA:38:2F:5C
Authority key identifier: 25:8F:07:53:C0:33:C1:AF:09:18:66:D0:94:26:45:12:69:6C:A6:8B
Certificate issuer: /CN=258f0753c033c1af091866d094264512696ca68b
Certificate serial: 0196A2092781B8F4900199467DFE1DDAC277
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
Manifest number: 0871
Signing time: Mon 05 May 2025 20:00:30 +0000
Manifest this update: Mon 05 May 2025 20:00:30 +0000
Manifest next update: Tue 06 May 2025 20:00:30 +0000
Files and hashes: 1: BQh7QT9BX7cTqXjHHhGh4E0jau4.roa (hash: ji+6a8qXV045VZtKjEfl6cGy7fTl7ME8scmY2gpWI2s=)
2: JY8HU8Azwa8JGGbQlCZFEmlspos.crl (hash: FToB0ZSVxnC/imJsyu+KwviXXvzcRgIewmk7bW5yvvk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 18:19:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a2:09:27:81:b8:f4:90:01:99:46:7d:fe:1d:da:c2:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=258f0753c033c1af091866d094264512696ca68b
Validity
Not Before: May 5 20:00:30 2025 GMT
Not After : May 6 20:00:30 2025 GMT
Subject: CN=a4a49dcba039816173d18195f1b15e9cda382f5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:f4:54:a8:77:f2:1b:57:2f:ce:80:81:d5:5b:
dd:ab:2f:94:fb:7b:ae:39:a0:3f:5b:de:72:f2:0b:
5f:f4:0a:b3:4a:f2:1c:e5:de:87:0a:a5:84:e2:6f:
69:9e:39:85:b0:3b:bd:6d:1e:c9:2e:ca:7d:66:75:
16:aa:42:2e:e1:33:2f:1c:2d:b3:3d:fa:37:4f:9d:
60:ea:3f:4c:22:da:28:17:28:05:89:21:aa:9a:fb:
89:b6:0c:4c:ae:7c:1f:41:17:38:ba:52:6c:18:70:
a2:0c:40:47:e0:36:51:38:0d:fe:38:16:8e:7f:da:
d3:d2:34:b6:bc:e7:74:9e:e2:d9:40:16:b9:5e:6e:
bf:a4:3f:af:f0:88:9b:6f:f1:18:43:95:39:4f:14:
94:c1:50:04:52:ae:d1:3b:64:b5:bb:4b:d5:ef:8c:
eb:eb:0f:06:78:d6:46:37:bd:26:b0:42:ff:9b:0d:
e4:5a:30:4e:34:c0:c0:36:14:78:e1:18:da:08:14:
a7:09:31:01:7d:02:94:2e:ad:27:b1:6e:bc:0e:bf:
b5:5d:f0:02:51:e6:b7:64:e2:0e:26:29:a1:c4:0e:
3c:73:fb:eb:c9:88:f5:60:c5:73:73:9b:0e:75:62:
ca:32:b6:09:5d:81:fa:53:52:9f:2b:d4:3b:56:cf:
c2:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:A4:9D:CB:A0:39:81:61:73:D1:81:95:F1:B1:5E:9C:DA:38:2F:5C
X509v3 Authority Key Identifier:
keyid:25:8F:07:53:C0:33:C1:AF:09:18:66:D0:94:26:45:12:69:6C:A6:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:82:19:11:b6:88:17:87:ac:df:4a:e1:8e:13:4b:34:06:e3:
c7:6b:e5:63:a5:cb:7d:d1:83:09:7d:f0:12:d9:9e:fe:9a:b0:
a9:bb:a4:bd:9c:f1:63:8f:b5:b4:ff:6e:8f:bc:81:fd:bf:12:
7f:f2:63:05:b3:06:fb:76:62:3a:5b:6d:d3:58:3a:f5:44:71:
88:98:a0:ca:06:53:02:01:66:a4:06:0e:72:93:24:71:f1:3f:
84:95:07:bf:93:8f:6c:10:64:d1:fc:2c:d1:29:c3:01:ae:2e:
f2:24:f7:34:eb:17:7f:6a:71:b6:f4:43:f1:9a:2d:d5:25:bf:
3a:da:a8:1f:89:39:11:eb:05:42:0b:db:41:1f:9d:da:3f:07:
ab:e8:d4:ef:7f:83:03:ea:09:f6:ea:fb:7a:0a:86:e7:18:9c:
2d:07:33:8c:d6:ea:28:12:e6:c6:38:46:f3:6d:99:35:50:f3:
3a:e0:73:3c:36:7b:57:a8:45:0a:ef:3a:f9:6e:0e:e5:17:f0:
e5:df:fa:eb:39:fb:a9:d5:ae:c4:55:01:6a:94:2e:8a:41:65:
0f:c7:8a:49:09:33:d2:19:45:c9:32:35:a7:d3:28:19:3c:84:
eb:ef:d2:68:15:8d:56:16:85:a9:3d:73:58:7f:5b:00:7d:05:
ef:cd:df:1a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaiCSeBuPSQAZlGff4d2sJ3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI1OGYwNzUzYzAzM2MxYWYwOTE4NjZkMDk0MjY0NTEyNjk2
Y2E2OGIwHhcNMjUwNTA1MjAwMDMwWhcNMjUwNTA2MjAwMDMwWjAzMTEwLwYDVQQD
EyhhNGE0OWRjYmEwMzk4MTYxNzNkMTgxOTVmMWIxNWU5Y2RhMzgyZjVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv/RUqHfyG1cvzoCB1Vvdqy+U+3uu
OaA/W95y8gtf9AqzSvIc5d6HCqWE4m9pnjmFsDu9bR7JLsp9ZnUWqkIu4TMvHC2z
Pfo3T51g6j9MItooFygFiSGqmvuJtgxMrnwfQRc4ulJsGHCiDEBH4DZROA3+OBaO
f9rT0jS2vOd0nuLZQBa5Xm6/pD+v8Iibb/EYQ5U5TxSUwVAEUq7RO2S1u0vV74zr
6w8GeNZGN70msEL/mw3kWjBONMDANhR44RjaCBSnCTEBfQKULq0nsW68Dr+1XfAC
Uea3ZOIOJimhxA48c/vryYj1YMVzc5sOdWLKMrYJXYH6U1KfK9Q7Vs/CuwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKSkncugOYFhc9GBlfGxXpzaOC9cMB8GA1UdIwQY
MBaAFCWPB1PAM8GvCRhm0JQmRRJpbKaLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSlk4SFU4QXp3YThKR0diUWxDWkZFbWxzcG9zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC8zYmFlODctODJlYi00NTFmLTgwNDQt
MmMyZjBkMjRmOTM2LzEvSlk4SFU4QXp3YThKR0diUWxDWkZFbWxzcG9zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC8zYmFlODctODJlYi00NTFmLTgwNDQtMmMyZjBkMjRmOTM2
LzEvSlk4SFU4QXp3YThKR0diUWxDWkZFbWxzcG9zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJoIZEbaI
F4es30rhjhNLNAbjx2vlY6XLfdGDCX3wEtme/pqwqbukvZzxY4+1tP9uj7yB/b8S
f/JjBbMG+3ZiOltt01g69URxiJigygZTAgFmpAYOcpMkcfE/hJUHv5OPbBBk0fws
0SnDAa4u8iT3NOsXf2pxtvRD8Zot1SW/OtqoH4k5EesFQgvbQR+d2j8Hq+jU73+D
A+oJ9ur7egqG5xicLQczjNbqKBLmxjhG822ZNVDzOuBzPDZ7V6hFCu86+W4O5Rfw
5d/66zn7qdWuxFUBapQuikFlD8eKSQkz0hlFyTI1p9MoGTyE6+/SaBWNVhaFqT1z
WH9bAH0F783fGg==
-----END CERTIFICATE-----
Generated at Tue May 6 01:50:49 2025 by rpki-client