Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/75025d-061a-4d96-a7d2-f589f8c032ca/1/JOlA2xkLaSzRsNWD7bbYw2ESRWk.mft
File: JOlA2xkLaSzRsNWD7bbYw2ESRWk.mft (raw, json)
Hash identifier: oVj2vmWUApnt/QAvpndJaE8DTDtumG/CunWdpYCLOXc=
Subject key identifier: A3:C1:5C:A6:BA:87:0D:CC:63:16:11:C9:77:FA:31:E5:C4:D5:3F:CD
Authority key identifier: 24:E9:40:DB:19:0B:69:2C:D1:B0:D5:83:ED:B6:D8:C3:61:12:45:69
Certificate issuer: /CN=24e940db190b692cd1b0d583edb6d8c361124569
Certificate serial: 0198D5F1C0C00693122DA0276BBB8AE4F3AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOlA2xkLaSzRsNWD7bbYw2ESRWk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/75025d-061a-4d96-a7d2-f589f8c032ca/1/JOlA2xkLaSzRsNWD7bbYw2ESRWk.mft
Manifest number: D8
Signing time: Sat 23 Aug 2025 08:00:47 +0000
Manifest this update: Sat 23 Aug 2025 08:00:47 +0000
Manifest next update: Sun 24 Aug 2025 08:00:47 +0000
Files and hashes: 1: JOlA2xkLaSzRsNWD7bbYw2ESRWk.crl (hash: heyy+fcC6CIu68JYGe3ZcOAGeO7sb/dUuO/sufRk9LM=)
2: NDyL4QmyZMdWfVseu9H3PyESraU.roa (hash: 2KgZJolbNaz+51AuiNXbaQEgEsCh7UoocaNukepjnzw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/75025d-061a-4d96-a7d2-f589f8c032ca/1/JOlA2xkLaSzRsNWD7bbYw2ESRWk.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/75025d-061a-4d96-a7d2-f589f8c032ca/1/JOlA2xkLaSzRsNWD7bbYw2ESRWk.mft
rsync://rpki.ripe.net/repository/DEFAULT/JOlA2xkLaSzRsNWD7bbYw2ESRWk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:c0:c0:06:93:12:2d:a0:27:6b:bb:8a:e4:f3:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24e940db190b692cd1b0d583edb6d8c361124569
Validity
Not Before: Aug 23 08:00:47 2025 GMT
Not After : Aug 24 08:00:47 2025 GMT
Subject: CN=a3c15ca6ba870dcc631611c977fa31e5c4d53fcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:2e:85:1c:11:aa:6f:5f:c5:6d:e9:c6:f6:0f:
88:4c:b8:da:07:ca:10:fe:87:dc:f8:6e:f2:9b:84:
37:21:9f:01:9e:fd:fb:7b:e5:88:02:39:68:e2:6a:
80:ce:31:e2:2f:4c:6a:3a:36:43:8d:48:3d:f4:ac:
df:13:79:ed:3c:77:fe:86:e0:70:c2:aa:dc:da:97:
27:1b:6b:f5:ab:98:d6:9c:41:e9:ad:a4:4c:ab:ec:
b4:c8:82:f7:3a:bc:15:6c:85:fb:97:2e:83:c0:af:
14:4f:7b:21:25:4a:b7:3f:5d:60:5e:e4:70:e7:a5:
e7:7f:ce:16:1c:cb:79:94:6d:67:b8:c7:90:90:53:
65:21:60:22:58:7a:87:0e:fa:97:89:11:6c:78:c9:
06:49:55:34:d2:c9:f8:73:85:20:7b:c8:c0:38:2c:
07:2e:96:fa:34:66:ae:8c:4c:a3:0e:11:2c:c7:a6:
3f:a4:77:f0:8f:22:90:9c:4c:1e:01:f2:74:e8:4c:
ed:fb:e8:58:00:c7:db:05:0b:cb:00:40:e9:df:49:
ca:ac:54:3e:ef:90:fb:66:1c:86:3a:6d:7b:11:d0:
44:66:32:32:d8:ad:d6:7c:8d:8d:1a:79:87:85:ca:
30:85:e7:51:6f:37:df:f7:07:55:9e:10:13:58:3d:
8f:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:C1:5C:A6:BA:87:0D:CC:63:16:11:C9:77:FA:31:E5:C4:D5:3F:CD
X509v3 Authority Key Identifier:
keyid:24:E9:40:DB:19:0B:69:2C:D1:B0:D5:83:ED:B6:D8:C3:61:12:45:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOlA2xkLaSzRsNWD7bbYw2ESRWk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/75025d-061a-4d96-a7d2-f589f8c032ca/1/JOlA2xkLaSzRsNWD7bbYw2ESRWk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/75025d-061a-4d96-a7d2-f589f8c032ca/1/JOlA2xkLaSzRsNWD7bbYw2ESRWk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:85:78:25:52:4c:7a:f2:bf:ea:f8:97:3b:44:85:f3:f7:26:
40:64:80:4d:d0:d8:8e:58:8b:c2:87:18:7c:ef:02:e8:00:28:
10:be:8c:3b:a6:82:27:d9:ad:52:83:1e:7a:04:07:3f:d1:9b:
15:af:6a:ea:74:5a:8b:a7:a6:3a:36:00:14:1f:48:d7:66:8d:
e0:ab:1e:13:27:51:d2:ce:12:74:1b:bd:dc:16:19:51:8b:1e:
cc:49:85:b9:15:6f:cf:4b:8e:b0:b9:33:c6:84:b6:b2:13:7a:
7b:ae:8a:3a:d2:94:11:a7:49:07:bc:34:c4:9d:59:9c:c0:e8:
80:dc:bd:f9:0c:65:75:06:5c:e6:a3:2e:39:b1:75:98:af:87:
19:6f:77:01:27:d3:5a:e3:22:dc:e3:0a:0a:17:08:23:8d:5e:
d5:cc:ed:89:11:87:b2:d1:c7:e8:c6:ce:95:e4:46:c2:0f:96:
7c:c5:0a:21:15:a8:46:72:26:b7:58:54:f9:84:b5:9b:8d:8a:
5b:d4:70:c6:e8:92:f1:d4:ba:7b:a9:9e:ed:98:7a:79:e2:54:
84:c1:be:2d:5e:28:f9:a9:90:ba:34:97:05:ef:e4:1e:83:0a:
75:54:9c:70:e6:1e:1a:58:a5:67:92:e4:9a:85:db:33:26:bf:
f9:63:ba:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:49:52 2025 by rpki-client