Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/67e623-7945-409e-ad32-4618fbfa4c89/1/j07qcuRTHJKm4A708ZGmEn6VbS0.mft
File: j07qcuRTHJKm4A708ZGmEn6VbS0.mft (raw, json)
Hash identifier: PlV2Ja9X7sJVwAaeqCS4xEB4E0f1Hi36BWNDIVwrBnM=
Subject key identifier: 18:D4:AC:59:32:92:DA:DA:61:1E:48:C2:6A:F2:11:FF:90:ED:FE:91
Authority key identifier: 8F:4E:EA:72:E4:53:1C:92:A6:E0:0E:F4:F1:91:A6:12:7E:95:6D:2D
Certificate issuer: /CN=8f4eea72e4531c92a6e00ef4f191a6127e956d2d
Certificate serial: 0198D4729AD1493904AD72DA10EE4844C5A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j07qcuRTHJKm4A708ZGmEn6VbS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/67e623-7945-409e-ad32-4618fbfa4c89/1/j07qcuRTHJKm4A708ZGmEn6VbS0.mft
Manifest number: 0B00
Signing time: Sat 23 Aug 2025 01:02:17 +0000
Manifest this update: Sat 23 Aug 2025 01:02:17 +0000
Manifest next update: Sun 24 Aug 2025 01:02:17 +0000
Files and hashes: 1: j07qcuRTHJKm4A708ZGmEn6VbS0.crl (hash: XcOL+8jIGD7aTT3I2iGi4gfOtRLY9NuE4TyxoVji1Og=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/67e623-7945-409e-ad32-4618fbfa4c89/1/j07qcuRTHJKm4A708ZGmEn6VbS0.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/67e623-7945-409e-ad32-4618fbfa4c89/1/j07qcuRTHJKm4A708ZGmEn6VbS0.mft
rsync://rpki.ripe.net/repository/DEFAULT/j07qcuRTHJKm4A708ZGmEn6VbS0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:9a:d1:49:39:04:ad:72:da:10:ee:48:44:c5:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f4eea72e4531c92a6e00ef4f191a6127e956d2d
Validity
Not Before: Aug 23 01:02:17 2025 GMT
Not After : Aug 24 01:02:17 2025 GMT
Subject: CN=18d4ac593292dada611e48c26af211ff90edfe91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f4:e6:12:2e:cc:85:a6:3b:48:0b:e8:87:ca:
28:a9:5c:69:9a:43:34:2b:11:46:c8:77:ed:6a:49:
3b:df:f0:e8:4d:75:20:f7:28:15:73:d4:a1:66:ff:
c0:aa:8a:4c:01:74:16:00:6d:eb:7d:2f:9b:e5:41:
f6:a4:97:10:a0:a4:01:7b:9b:0e:95:71:bd:45:27:
5e:bf:56:76:5a:70:61:ad:5d:fc:03:44:78:c2:ef:
8d:49:e3:92:08:00:27:05:c1:3c:80:7d:70:d9:e2:
83:ac:af:db:c5:5a:e8:09:be:6f:f4:71:37:36:59:
29:08:f4:32:97:aa:51:12:1b:fd:df:a6:8a:60:1a:
a5:46:a9:c9:98:0c:cb:e0:37:16:e7:91:3c:86:ee:
6b:b0:63:39:be:13:37:9b:db:d7:ca:97:5e:24:c0:
7c:83:5d:9f:5e:9e:12:3b:3c:16:ac:c2:f8:02:a9:
a9:57:6d:55:03:f1:0e:cb:8b:d7:3d:b1:43:fe:a6:
e5:6c:40:a1:a6:40:15:ee:ed:8a:e4:10:06:2e:32:
c5:b2:b3:4f:db:08:cf:a5:18:04:f9:2d:60:ba:6b:
ed:2f:ad:63:fa:b2:8b:e1:9c:1e:cd:69:96:2d:8e:
b9:bb:d4:e5:92:07:a1:c5:42:b5:03:3b:6c:81:91:
54:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:D4:AC:59:32:92:DA:DA:61:1E:48:C2:6A:F2:11:FF:90:ED:FE:91
X509v3 Authority Key Identifier:
keyid:8F:4E:EA:72:E4:53:1C:92:A6:E0:0E:F4:F1:91:A6:12:7E:95:6D:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j07qcuRTHJKm4A708ZGmEn6VbS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/67e623-7945-409e-ad32-4618fbfa4c89/1/j07qcuRTHJKm4A708ZGmEn6VbS0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/67e623-7945-409e-ad32-4618fbfa4c89/1/j07qcuRTHJKm4A708ZGmEn6VbS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:f7:7a:51:65:de:97:67:8b:96:55:80:df:b5:80:8a:f4:53:
ef:13:40:8e:da:80:a1:c3:08:26:bd:bd:15:37:c0:57:e3:a8:
96:b6:fc:8f:8d:14:a8:0c:f4:0d:da:52:63:2a:06:89:6e:86:
73:38:1f:8d:18:4f:63:28:69:01:1b:ad:3b:9f:7a:e6:96:92:
9a:1b:79:dd:f9:e4:2b:0f:dd:5d:1c:0e:c2:3c:9b:c7:ce:39:
9d:22:52:53:3a:11:ab:79:a5:89:b8:0f:5e:4c:07:85:32:47:
3a:2c:7f:8a:e1:cb:bc:97:e3:96:3d:f1:e3:15:5c:79:62:eb:
38:8b:87:30:c1:e6:b1:23:14:b3:40:96:d3:52:17:41:03:41:
3e:09:a7:ac:a3:46:69:25:ca:ed:a0:d6:8d:4b:d0:ac:5c:c5:
9c:57:bd:a4:ae:3e:ba:e2:29:91:e5:fe:5b:57:8b:9b:fb:a0:
33:04:b4:60:ba:0a:04:5f:7d:fa:96:79:aa:3a:27:7f:87:64:
bd:df:01:f1:cc:4e:ff:d2:92:8a:c3:70:b3:3f:21:25:75:b4:
8c:e9:db:a7:13:af:a4:dd:02:90:54:59:f6:77:88:65:c9:15:
e5:29:69:36:b0:5e:0e:16:28:a1:8a:35:34:c6:0c:c7:9b:65:
62:df:b4:45
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUcprRSTkErXLaEO5IRMWiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhmNGVlYTcyZTQ1MzFjOTJhNmUwMGVmNGYxOTFhNjEyN2U5
NTZkMmQwHhcNMjUwODIzMDEwMjE3WhcNMjUwODI0MDEwMjE3WjAzMTEwLwYDVQQD
EygxOGQ0YWM1OTMyOTJkYWRhNjExZTQ4YzI2YWYyMTFmZjkwZWRmZTkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqfTmEi7MhaY7SAvoh8ooqVxpmkM0
KxFGyHftakk73/DoTXUg9ygVc9ShZv/AqopMAXQWAG3rfS+b5UH2pJcQoKQBe5sO
lXG9RSdev1Z2WnBhrV38A0R4wu+NSeOSCAAnBcE8gH1w2eKDrK/bxVroCb5v9HE3
NlkpCPQyl6pREhv936aKYBqlRqnJmAzL4DcW55E8hu5rsGM5vhM3m9vXypdeJMB8
g12fXp4SOzwWrML4AqmpV21VA/EOy4vXPbFD/qblbEChpkAV7u2K5BAGLjLFsrNP
2wjPpRgE+S1gumvtL61j+rKL4ZwezWmWLY65u9TlkgehxUK1AztsgZFUsQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBjUrFkyktraYR5IwmryEf+Q7f6RMB8GA1UdIwQY
MBaAFI9O6nLkUxySpuAO9PGRphJ+lW0tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvajA3cWN1UlRISkttNEE3MDhaR21FbjZWYlMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC82N2U2MjMtNzk0NS00MDllLWFkMzIt
NDYxOGZiZmE0Yzg5LzEvajA3cWN1UlRISkttNEE3MDhaR21FbjZWYlMwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC82N2U2MjMtNzk0NS00MDllLWFkMzItNDYxOGZiZmE0Yzg5
LzEvajA3cWN1UlRISkttNEE3MDhaR21FbjZWYlMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL/d6UWXe
l2eLllWA37WAivRT7xNAjtqAocMIJr29FTfAV+Oolrb8j40UqAz0DdpSYyoGiW6G
czgfjRhPYyhpARutO5965paSmht53fnkKw/dXRwOwjybx845nSJSUzoRq3mlibgP
XkwHhTJHOix/iuHLvJfjlj3x4xVceWLrOIuHMMHmsSMUs0CW01IXQQNBPgmnrKNG
aSXK7aDWjUvQrFzFnFe9pK4+uuIpkeX+W1eLm/ugMwS0YLoKBF99+pZ5qjonf4dk
vd8B8cxO/9KSisNwsz8hJXW0jOnbpxOvpN0CkFRZ9neIZckV5SlpNrBeDhYooYo1
NMYMx5tlYt+0RQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:32:29 2025 by rpki-client