Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/75025d-061a-4d96-a7d2-f589f8c032ca/1/JOlA2xkLaSzRsNWD7bbYw2ESRWk.mft
File: JOlA2xkLaSzRsNWD7bbYw2ESRWk.mft (raw, json)
Hash identifier: LfYNkHjmNsIW8oc8j3spx1wfjMrK5cN1RttowB8v1/o=
Subject key identifier: 54:6D:58:C9:3F:48:11:0A:B4:90:C6:DF:A3:C5:95:5E:3B:95:1E:39
Authority key identifier: 24:E9:40:DB:19:0B:69:2C:D1:B0:D5:83:ED:B6:D8:C3:61:12:45:69
Certificate issuer: /CN=24e940db190b692cd1b0d583edb6d8c361124569
Certificate serial: 0197BA0F84AF71F727D139A03F20A8119FE5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOlA2xkLaSzRsNWD7bbYw2ESRWk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/75025d-061a-4d96-a7d2-f589f8c032ca/1/JOlA2xkLaSzRsNWD7bbYw2ESRWk.mft
Manifest number: 45
Signing time: Sun 29 Jun 2025 05:01:08 +0000
Manifest this update: Sun 29 Jun 2025 05:01:08 +0000
Manifest next update: Mon 30 Jun 2025 05:01:08 +0000
Files and hashes: 1: JOlA2xkLaSzRsNWD7bbYw2ESRWk.crl (hash: RGEDOVcKSkqy050nkjE/xt+BZcmRV8kso+42TbeOFQ0=)
2: NDyL4QmyZMdWfVseu9H3PyESraU.roa (hash: 2KgZJolbNaz+51AuiNXbaQEgEsCh7UoocaNukepjnzw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/75025d-061a-4d96-a7d2-f589f8c032ca/1/JOlA2xkLaSzRsNWD7bbYw2ESRWk.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/75025d-061a-4d96-a7d2-f589f8c032ca/1/JOlA2xkLaSzRsNWD7bbYw2ESRWk.mft
rsync://rpki.ripe.net/repository/DEFAULT/JOlA2xkLaSzRsNWD7bbYw2ESRWk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ba:0f:84:af:71:f7:27:d1:39:a0:3f:20:a8:11:9f:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24e940db190b692cd1b0d583edb6d8c361124569
Validity
Not Before: Jun 29 05:01:08 2025 GMT
Not After : Jun 30 05:01:08 2025 GMT
Subject: CN=546d58c93f48110ab490c6dfa3c5955e3b951e39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:90:68:df:9e:8d:fe:03:ec:b2:08:1a:7a:19:
6c:d8:fd:0c:ed:2b:0f:5a:c2:50:3e:0b:fe:63:6f:
d3:85:0c:84:82:44:02:47:85:26:cd:d1:38:51:5b:
cc:a7:90:07:20:07:6e:52:ca:c3:7d:42:8a:59:51:
6a:91:21:a6:25:72:4f:5f:75:ad:52:f7:27:f1:b7:
ce:8d:4a:8f:f6:48:45:f8:cb:d3:a1:41:fb:91:af:
79:cb:fc:c6:88:09:42:92:cd:43:a2:ae:3b:d7:47:
f9:99:dd:81:47:52:57:7d:eb:b7:ff:f3:19:c6:44:
19:18:d1:24:22:cf:07:82:15:d4:e0:81:32:d3:01:
47:bf:a1:d2:49:57:ac:d5:15:b9:a6:94:b6:4e:e5:
a7:83:fd:55:96:48:da:9b:fb:03:42:40:0f:e6:45:
59:cb:db:19:c2:90:57:bb:b0:c1:d1:aa:f2:a0:74:
dc:39:55:01:77:7a:2d:4b:40:29:67:60:3c:f1:fd:
66:f7:6c:a9:b8:9f:98:2f:fc:ff:61:5d:88:b3:d5:
b6:b8:b4:e0:c5:ed:05:15:8b:fe:fa:0c:a8:8d:27:
58:46:6b:a7:0c:07:3e:bb:3a:8b:d4:14:05:aa:e6:
54:b3:3f:9d:17:30:43:66:5e:70:81:44:f4:e7:f8:
87:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:6D:58:C9:3F:48:11:0A:B4:90:C6:DF:A3:C5:95:5E:3B:95:1E:39
X509v3 Authority Key Identifier:
keyid:24:E9:40:DB:19:0B:69:2C:D1:B0:D5:83:ED:B6:D8:C3:61:12:45:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOlA2xkLaSzRsNWD7bbYw2ESRWk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/75025d-061a-4d96-a7d2-f589f8c032ca/1/JOlA2xkLaSzRsNWD7bbYw2ESRWk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/75025d-061a-4d96-a7d2-f589f8c032ca/1/JOlA2xkLaSzRsNWD7bbYw2ESRWk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:42:e6:97:db:25:39:96:23:2a:36:62:a9:db:5c:9d:24:08:
4d:18:8f:d9:07:b3:ba:5e:89:b3:f6:de:24:7d:69:bf:ac:36:
81:47:7b:87:8c:1c:5b:f3:e7:63:08:fc:c6:9c:5c:bf:c4:37:
99:1f:2f:3e:25:90:c6:79:53:35:66:d9:01:a5:01:c2:df:b8:
10:a2:37:50:32:2d:e0:ab:57:fa:78:6a:be:b6:bc:e2:7d:c6:
cc:bf:b7:f4:5b:5f:6d:1a:80:3f:63:b8:c2:9e:cc:17:b2:82:
4c:79:72:de:83:e1:b3:f3:0c:09:18:5c:c0:1b:54:6f:45:39:
ab:7b:60:e2:f7:06:e4:2e:5c:5d:23:47:e9:fc:ce:cc:4f:b9:
0d:d9:b2:25:a5:55:47:2c:4c:00:43:2f:d8:60:52:9a:dd:56:
d2:ab:5d:80:58:b7:cb:00:b1:a3:aa:9c:82:c7:af:c0:28:77:
4d:f3:2c:1e:10:4d:3a:b7:cd:b2:cc:ed:ac:a3:90:76:31:e3:
2f:0d:fc:6e:6d:17:76:09:86:7e:0f:bc:9c:ed:b3:8a:8c:33:
29:a9:64:46:69:c9:f2:86:32:02:82:4a:29:fb:a2:67:ee:6f:
bb:f9:4e:81:49:08:b9:94:f3:c0:24:c1:de:93:6c:c8:1a:0b:
eb:ab:63:1e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe6D4Svcfcn0TmgPyCoEZ/lMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI0ZTk0MGRiMTkwYjY5MmNkMWIwZDU4M2VkYjZkOGMzNjEx
MjQ1NjkwHhcNMjUwNjI5MDUwMTA4WhcNMjUwNjMwMDUwMTA4WjAzMTEwLwYDVQQD
Eyg1NDZkNThjOTNmNDgxMTBhYjQ5MGM2ZGZhM2M1OTU1ZTNiOTUxZTM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0ZBo356N/gPssggaehls2P0M7SsP
WsJQPgv+Y2/ThQyEgkQCR4UmzdE4UVvMp5AHIAduUsrDfUKKWVFqkSGmJXJPX3Wt
Uvcn8bfOjUqP9khF+MvToUH7ka95y/zGiAlCks1Doq4710f5md2BR1JXfeu3//MZ
xkQZGNEkIs8HghXU4IEy0wFHv6HSSVes1RW5ppS2TuWng/1Vlkjam/sDQkAP5kVZ
y9sZwpBXu7DB0aryoHTcOVUBd3otS0ApZ2A88f1m92ypuJ+YL/z/YV2Is9W2uLTg
xe0FFYv++gyojSdYRmunDAc+uzqL1BQFquZUsz+dFzBDZl5wgUT05/iHAQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFRtWMk/SBEKtJDG36PFlV47lR45MB8GA1UdIwQY
MBaAFCTpQNsZC2ks0bDVg+222MNhEkVpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSk9sQTJ4a0xhU3pSc05XRDdiYll3MkVTUldrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi83NTAyNWQtMDYxYS00ZDk2LWE3ZDIt
ZjU4OWY4YzAzMmNhLzEvSk9sQTJ4a0xhU3pSc05XRDdiYll3MkVTUldrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi83NTAyNWQtMDYxYS00ZDk2LWE3ZDItZjU4OWY4YzAzMmNh
LzEvSk9sQTJ4a0xhU3pSc05XRDdiYll3MkVTUldrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOkLml9sl
OZYjKjZiqdtcnSQITRiP2Qezul6Js/beJH1pv6w2gUd7h4wcW/PnYwj8xpxcv8Q3
mR8vPiWQxnlTNWbZAaUBwt+4EKI3UDIt4KtX+nhqvra84n3GzL+39FtfbRqAP2O4
wp7MF7KCTHly3oPhs/MMCRhcwBtUb0U5q3tg4vcG5C5cXSNH6fzOzE+5DdmyJaVV
RyxMAEMv2GBSmt1W0qtdgFi3ywCxo6qcgsevwCh3TfMsHhBNOrfNssztrKOQdjHj
Lw38bm0XdgmGfg+8nO2ziowzKalkRmnJ8oYyAoJKKfuiZ+5vu/lOgUkIuZTzwCTB
3pNsyBoL66tjHg==
-----END CERTIFICATE-----
Generated at Sun Jun 29 10:20:14 2025 by rpki-client