
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/75025d-061a-4d96-a7d2-f589f8c032ca/1/JOlA2xkLaSzRsNWD7bbYw2ESRWk.mft
File: JOlA2xkLaSzRsNWD7bbYw2ESRWk.mft (raw, json)
Hash identifier: 1Uom6Art2XkiyLQrSLFEetpYTZcF4XeOyeZNkLEf724=
Subject key identifier: AF:50:BB:82:2E:03:B3:D9:58:BD:EB:B0:7C:AC:B1:CC:26:27:15:7D
Authority key identifier: 24:E9:40:DB:19:0B:69:2C:D1:B0:D5:83:ED:B6:D8:C3:61:12:45:69
Certificate issuer: /CN=24e940db190b692cd1b0d583edb6d8c361124569
Certificate serial: 0199FB7CC0215F75FB5FD58571E740BCC87C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOlA2xkLaSzRsNWD7bbYw2ESRWk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/75025d-061a-4d96-a7d2-f589f8c032ca/1/JOlA2xkLaSzRsNWD7bbYw2ESRWk.mft
Manifest number: 0170
Signing time: Sun 19 Oct 2025 08:01:20 +0000
Manifest this update: Sun 19 Oct 2025 08:01:20 +0000
Manifest next update: Mon 20 Oct 2025 08:01:20 +0000
Files and hashes: 1: JOlA2xkLaSzRsNWD7bbYw2ESRWk.crl (hash: hraPwjL7Xvg/2H8WwH4jRwCpQcov4CK4qTF2RCPmy90=)
2: NDyL4QmyZMdWfVseu9H3PyESraU.roa (hash: 2KgZJolbNaz+51AuiNXbaQEgEsCh7UoocaNukepjnzw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/75025d-061a-4d96-a7d2-f589f8c032ca/1/JOlA2xkLaSzRsNWD7bbYw2ESRWk.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/75025d-061a-4d96-a7d2-f589f8c032ca/1/JOlA2xkLaSzRsNWD7bbYw2ESRWk.mft
rsync://rpki.ripe.net/repository/DEFAULT/JOlA2xkLaSzRsNWD7bbYw2ESRWk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:c0:21:5f:75:fb:5f:d5:85:71:e7:40:bc:c8:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24e940db190b692cd1b0d583edb6d8c361124569
Validity
Not Before: Oct 19 08:01:20 2025 GMT
Not After : Oct 20 08:01:20 2025 GMT
Subject: CN=af50bb822e03b3d958bdebb07cacb1cc2627157d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:32:2e:35:79:00:6c:22:c4:77:13:4d:c2:86:
b7:bc:e4:55:b1:c7:3d:1e:c9:83:df:86:01:1b:ae:
66:f5:69:7b:c4:00:ab:85:95:b7:85:40:2f:36:40:
86:df:ec:4b:53:7d:60:68:a6:cd:a4:b5:64:0c:8e:
86:7e:1d:ae:30:66:e6:97:f1:c4:5b:38:64:ac:1c:
f5:50:04:8c:a0:38:ab:e8:c9:47:14:d5:e4:77:5b:
aa:92:ec:f7:ec:f6:a2:46:c8:bf:14:76:08:d5:73:
45:d4:37:32:c9:5f:83:ad:dd:e3:83:05:99:20:92:
11:9d:52:49:dc:ef:5e:6a:7d:74:7f:31:d7:7f:a0:
a6:c9:22:b3:ce:9b:65:f9:ba:23:b8:65:c4:17:ea:
16:26:62:f6:87:61:ea:19:3d:fc:2b:f5:26:d4:6d:
b5:bf:9b:29:ab:01:59:5d:94:bd:5b:1f:77:42:02:
65:71:d6:32:dd:68:77:8d:d1:60:e8:7c:b1:9f:f1:
55:8f:3b:d9:52:ea:50:4a:c6:50:63:31:17:4e:7a:
e5:03:6e:cc:81:5a:a8:f8:47:63:ff:c5:63:4c:2d:
55:23:08:11:ec:49:0a:3c:aa:7d:2a:a2:5c:09:4c:
6d:cc:91:6c:43:90:b8:04:47:e1:a1:05:50:cf:47:
5f:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:50:BB:82:2E:03:B3:D9:58:BD:EB:B0:7C:AC:B1:CC:26:27:15:7D
X509v3 Authority Key Identifier:
keyid:24:E9:40:DB:19:0B:69:2C:D1:B0:D5:83:ED:B6:D8:C3:61:12:45:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOlA2xkLaSzRsNWD7bbYw2ESRWk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/75025d-061a-4d96-a7d2-f589f8c032ca/1/JOlA2xkLaSzRsNWD7bbYw2ESRWk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/75025d-061a-4d96-a7d2-f589f8c032ca/1/JOlA2xkLaSzRsNWD7bbYw2ESRWk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:41:66:64:16:2f:a1:1c:cf:f2:01:d7:c0:7e:49:19:1e:1d:
3e:14:a1:fd:93:51:29:1c:40:28:63:c9:c5:f3:00:09:01:ca:
72:2a:64:51:4e:2a:e8:52:95:8c:e6:cb:86:63:29:9a:db:10:
50:09:66:ab:1f:18:6b:af:fc:3e:a7:da:28:08:2f:33:a6:95:
d6:ab:05:3d:35:68:68:89:00:3d:25:34:f1:d5:3a:00:c8:b9:
d5:b1:54:9d:7c:c9:6d:46:6b:57:2e:0f:cf:e3:93:31:d4:c6:
2b:7e:f1:82:d3:21:83:df:6d:c6:b8:2c:0d:c8:a9:3a:f1:2d:
9f:f7:30:60:23:c0:2b:cd:7a:af:20:7c:8e:95:82:ec:9b:8b:
7d:d7:08:36:f8:33:d5:ce:7a:8e:21:e8:d1:5f:db:7b:6f:5a:
ba:f2:4e:12:66:03:08:7a:d4:30:5c:17:20:a9:b2:9f:4f:aa:
0e:9b:d4:6d:c5:d7:1a:3d:24:2e:2e:2f:58:0c:dc:3c:9a:38:
74:d0:77:59:8b:28:52:5e:ae:2e:2c:82:eb:19:f7:8a:4d:de:
2c:a0:12:f7:d5:9a:3f:51:6f:38:45:ea:76:87:f5:e9:71:ab:
46:df:72:a7:f8:61:15:46:a6:1c:1b:d8:53:fe:ba:ac:b3:27:
5d:eb:cf:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:19:28 2025 by rpki-client