Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
File: JY8HU8Azwa8JGGbQlCZFEmlspos.mft (raw, json)
Hash identifier: Sa6tnnkrR9/Y74SLMOMiOWcbhZeATKbLRN6R0Ialnjw=
Subject key identifier: 6B:D7:9E:5E:A7:67:6A:EA:15:01:41:9F:AD:46:14:2A:50:CC:C5:91
Authority key identifier: 25:8F:07:53:C0:33:C1:AF:09:18:66:D0:94:26:45:12:69:6C:A6:8B
Certificate issuer: /CN=258f0753c033c1af091866d094264512696ca68b
Certificate serial: 0197B632AC1070E648F59A2DBA87BC41E581
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
Manifest number: 0900
Signing time: Sat 28 Jun 2025 11:01:03 +0000
Manifest this update: Sat 28 Jun 2025 11:01:03 +0000
Manifest next update: Sun 29 Jun 2025 11:01:03 +0000
Files and hashes: 1: BQh7QT9BX7cTqXjHHhGh4E0jau4.roa (hash: ji+6a8qXV045VZtKjEfl6cGy7fTl7ME8scmY2gpWI2s=)
2: JY8HU8Azwa8JGGbQlCZFEmlspos.crl (hash: +IZow5BYrJoZmsXwya53pU0L8loJGozeeAdhKMPY1ZA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:32:ac:10:70:e6:48:f5:9a:2d:ba:87:bc:41:e5:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=258f0753c033c1af091866d094264512696ca68b
Validity
Not Before: Jun 28 11:01:03 2025 GMT
Not After : Jun 29 11:01:03 2025 GMT
Subject: CN=6bd79e5ea7676aea1501419fad46142a50ccc591
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:73:d3:ac:8f:93:a6:90:17:f7:77:ad:08:c2:
37:7e:7a:32:b2:2b:0d:07:57:d7:e1:5b:a6:5b:8b:
78:7a:d7:7e:a2:60:02:59:c5:ed:ad:ba:42:70:f6:
1b:b2:00:fa:e8:4f:84:ca:26:44:30:15:11:4f:2d:
78:61:59:60:fb:5d:6f:90:9c:d6:4a:48:a0:fd:57:
41:fe:8c:95:ae:36:46:a3:c8:a6:6d:f8:c8:30:99:
fd:9a:b0:89:90:28:41:20:79:8e:8a:92:55:98:73:
a7:34:dc:33:03:b9:21:42:e1:a3:ee:76:29:16:24:
15:57:bb:40:e8:28:c6:b0:b3:aa:81:84:f8:0f:80:
21:8f:97:52:fe:84:21:43:07:e4:76:21:17:e5:84:
17:6c:6e:8c:dd:16:6e:1e:9e:80:d7:7e:35:92:92:
60:f1:f7:1e:b5:a4:55:cf:95:09:1c:bc:11:21:bc:
43:d8:02:10:9d:6e:3b:ee:79:b4:de:7d:11:bb:33:
bc:e0:81:d0:66:b1:9e:64:1a:39:e2:60:1e:30:de:
69:c6:d4:62:1c:6e:22:63:30:a9:11:22:c9:57:d8:
ba:dd:57:09:8e:e9:a5:81:20:32:eb:c5:5a:10:54:
67:16:0f:fe:9a:76:c6:a4:ca:c4:ff:d9:c3:55:43:
0e:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:D7:9E:5E:A7:67:6A:EA:15:01:41:9F:AD:46:14:2A:50:CC:C5:91
X509v3 Authority Key Identifier:
keyid:25:8F:07:53:C0:33:C1:AF:09:18:66:D0:94:26:45:12:69:6C:A6:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:3a:59:06:12:a6:48:71:5b:9b:7f:00:88:56:65:9f:b8:e8:
2d:ef:71:09:e9:a4:d9:42:1a:ca:1d:d2:5e:45:d3:20:03:24:
ae:be:f1:4a:cd:d8:7e:39:8f:30:13:09:4e:d5:3a:e8:00:62:
b9:24:34:2a:af:ac:84:b7:09:05:08:06:95:e5:f0:60:ea:e4:
e9:27:8b:f3:17:f7:26:21:9a:e6:79:cd:28:34:7b:29:0e:f8:
34:18:32:a4:f7:f7:40:75:77:7e:04:d2:85:aa:54:f7:7d:3f:
0f:82:02:4e:83:d3:36:7b:b0:5e:a8:c4:5e:76:ed:63:ff:88:
ba:93:a2:f9:f5:4e:60:8b:d1:7c:1d:54:bf:75:70:df:d8:88:
cc:ec:e6:ba:c0:5a:22:b2:50:0a:f9:de:fa:20:d8:b8:79:2b:
6d:34:6e:81:5e:40:bc:af:6f:d1:2e:7f:68:a3:e3:32:d1:2f:
3d:e9:26:c3:9a:e1:14:df:47:5e:e0:46:bf:39:f6:c9:68:67:
55:a5:3a:33:43:a1:29:6b:3d:83:11:ef:e7:69:24:1a:be:fe:
2c:48:dd:04:86:5a:0b:4e:d0:47:54:13:ae:4d:fc:af:31:03:
98:61:e4:88:d8:80:28:fe:ef:81:5b:d9:22:7e:82:46:64:ea:
c0:28:a8:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 18:54:49 2025 by rpki-client