Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
File: JY8HU8Azwa8JGGbQlCZFEmlspos.mft (raw, json)
Hash identifier: WIAl8ukxhQq6Oh6aWpG8ByE0PkZh+dPD2PdRVaHoAXM=
Subject key identifier: B1:E5:F3:AB:FF:27:5C:CC:78:15:61:05:04:AA:09:6D:F4:48:80:B9
Authority key identifier: 25:8F:07:53:C0:33:C1:AF:09:18:66:D0:94:26:45:12:69:6C:A6:8B
Certificate issuer: /CN=258f0753c033c1af091866d094264512696ca68b
Certificate serial: 0198D7E0FC4450EDA41F76486960C7C75F45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
Manifest number: 0996
Signing time: Sat 23 Aug 2025 17:01:42 +0000
Manifest this update: Sat 23 Aug 2025 17:01:42 +0000
Manifest next update: Sun 24 Aug 2025 17:01:42 +0000
Files and hashes: 1: BQh7QT9BX7cTqXjHHhGh4E0jau4.roa (hash: ji+6a8qXV045VZtKjEfl6cGy7fTl7ME8scmY2gpWI2s=)
2: JY8HU8Azwa8JGGbQlCZFEmlspos.crl (hash: GAnvu/4TSCkkD+8CqVFB06bPu6qx4EqjRIPfK+P3Sl4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:e0:fc:44:50:ed:a4:1f:76:48:69:60:c7:c7:5f:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=258f0753c033c1af091866d094264512696ca68b
Validity
Not Before: Aug 23 17:01:42 2025 GMT
Not After : Aug 24 17:01:42 2025 GMT
Subject: CN=b1e5f3abff275ccc7815610504aa096df44880b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:88:ae:71:e4:a8:a3:95:b3:3e:77:36:a4:bb:
92:39:e4:2a:a6:37:0e:6d:21:38:8f:59:d8:ac:a0:
f6:ed:ce:55:23:14:a2:7c:56:b8:b6:96:12:4c:95:
fd:34:22:01:fd:51:90:67:1f:9f:3e:d4:dd:1f:97:
7c:f2:61:b6:24:11:bc:43:e8:0b:c9:26:fa:4f:5d:
64:75:a0:19:0e:b4:79:69:46:e6:55:d8:39:09:63:
11:82:f5:05:4b:27:62:f4:2e:5e:5c:5c:d1:c8:db:
5d:74:13:c4:1a:99:e0:e9:8d:fd:93:96:cd:e7:09:
a0:7b:5d:ef:12:ec:ae:8b:20:83:c6:59:0d:0f:bd:
1d:34:cb:a8:bd:f7:eb:c0:6f:bd:51:a2:c9:e3:56:
5f:20:b5:5c:0b:6d:ff:ed:83:67:7b:e1:e4:84:d5:
3a:83:d6:d0:99:67:5e:09:f9:e5:80:98:0f:5a:d8:
40:f8:f9:5c:c1:f6:1d:d4:95:52:f9:a9:47:4c:ce:
c6:96:e6:22:a6:7a:0a:22:5e:85:b8:d0:18:0a:44:
6a:b8:67:90:88:ef:4a:ac:04:fb:a7:23:11:26:e7:
a0:fb:f9:ea:5c:83:eb:99:7a:a8:7c:ca:19:ff:d8:
0d:09:8c:24:09:d3:f4:ec:44:46:50:1e:be:ee:db:
88:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:E5:F3:AB:FF:27:5C:CC:78:15:61:05:04:AA:09:6D:F4:48:80:B9
X509v3 Authority Key Identifier:
keyid:25:8F:07:53:C0:33:C1:AF:09:18:66:D0:94:26:45:12:69:6C:A6:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:4c:54:82:dd:74:b7:0b:d8:62:eb:51:d7:d4:ad:70:f8:bc:
21:38:43:04:2b:8f:82:15:0f:7b:c6:86:49:f8:27:5e:25:7c:
1c:38:61:4e:1d:29:06:d8:db:47:68:66:2a:bd:c3:df:1a:28:
3c:0f:12:93:1a:80:bc:df:c5:3a:ad:75:9a:96:86:ce:6f:cd:
0d:7d:3d:33:ea:f4:36:88:ab:70:af:61:46:4e:8b:83:bc:1c:
2e:74:0b:40:77:b4:36:85:6a:e4:60:7b:c8:68:f5:09:b5:75:
10:f8:9d:42:98:73:57:46:36:8a:8b:5c:81:48:91:91:15:c8:
63:98:42:39:d0:ce:aa:eb:7a:4e:d1:93:40:eb:1d:2a:3b:55:
cf:e9:36:79:79:f2:8f:3d:6f:29:e0:7d:93:a6:de:fb:fa:0b:
f0:57:30:e4:57:bf:55:a3:41:a4:4d:8c:42:cc:36:85:23:e1:
aa:4d:34:fe:7e:19:8d:d8:ef:d4:36:d0:78:e9:bd:cf:10:ae:
54:f8:df:c5:0c:69:bb:a3:9e:84:3d:c4:38:e6:55:1e:15:4d:
cb:a1:9e:03:8b:6c:bf:0d:bf:a4:e8:a8:44:83:90:ad:95:43:
2c:9f:85:6b:0d:e6:49:22:0f:e8:97:f2:a6:ed:a9:3a:9d:88:
5f:9d:44:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 00:38:50 2025 by rpki-client