Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.mft
File: jbNHdLAZeShP2edU_qaPo8YXg9A.mft (raw, json)
Hash identifier: Ih6KmnAZVzNwYrWxvxbun8nLc3phCj/VOYTHeweeFRs=
Subject key identifier: 8F:A5:EF:30:3C:0B:6A:40:9B:BC:DE:04:9F:AF:9E:B7:8A:10:D9:AA
Authority key identifier: 8D:B3:47:74:B0:19:79:28:4F:D9:E7:54:FE:A6:8F:A3:C6:17:83:D0
Certificate issuer: /CN=8db34774b01979284fd9e754fea68fa3c61783d0
Certificate serial: 0198D5BC071FA8FE84F59EF22D5B77221880
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.mft
Manifest number: 168C
Signing time: Sat 23 Aug 2025 07:02:06 +0000
Manifest this update: Sat 23 Aug 2025 07:02:06 +0000
Manifest next update: Sun 24 Aug 2025 07:02:06 +0000
Files and hashes: 1: 4xDjMGoR5cxZD0TEt45OTNLuzZ4.roa (hash: aWtnbMWrytraTfwmFZQXH9y0uPlTO0CdQ7LWoLXK164=)
2: J8HqZbweBSBfotj9M3AMH0o24CY.roa (hash: KkFoXwUHnXFgQiJUTdylT6bFXV0tnmXRuocNWtuhH7k=)
3: aXs8DBYHqH16kFI25mAmO1bJxx4.roa (hash: d1LoCC9lmf7ZBBsN52kpeKsNgpbykeADMERL6qdd4Bg=)
4: jbNHdLAZeShP2edU_qaPo8YXg9A.crl (hash: pnAQ6HerkmuLF3bh9+BhiFJYpPBsVwm00m5fOX9ZYlc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.mft
rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:07:1f:a8:fe:84:f5:9e:f2:2d:5b:77:22:18:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8db34774b01979284fd9e754fea68fa3c61783d0
Validity
Not Before: Aug 23 07:02:06 2025 GMT
Not After : Aug 24 07:02:06 2025 GMT
Subject: CN=8fa5ef303c0b6a409bbcde049faf9eb78a10d9aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:f3:04:46:c2:8f:c0:0d:c1:86:e5:c6:f7:dc:
f1:4e:d9:15:a1:8d:c4:51:99:45:70:97:b0:3b:be:
cc:03:34:b0:51:f3:41:2d:16:29:0b:b5:14:4a:5a:
b3:4f:51:1e:5a:e1:cc:79:f4:ef:bc:ac:26:81:aa:
f5:48:27:a2:05:0c:ea:9a:ef:d0:b1:5d:93:c9:a2:
5d:62:ce:1e:46:e0:6a:e2:0d:29:bd:06:10:94:46:
59:d4:2f:96:9a:79:45:92:5c:67:d3:53:2b:14:a9:
91:70:68:1b:95:1d:2d:d1:01:35:1a:d3:96:e8:80:
42:68:7e:a5:16:ea:65:81:8a:35:61:89:c4:36:50:
62:4e:1e:c6:e7:97:9b:3e:10:c6:b4:7c:1e:29:54:
a3:db:81:66:c7:f9:b4:37:25:52:42:ba:14:1c:c1:
51:98:fa:16:93:7c:ac:58:45:9e:2c:bf:ee:53:67:
1a:06:79:09:ce:b3:5a:43:8c:4a:61:71:c3:ca:68:
a8:48:cc:e6:83:c7:e5:71:9c:ac:99:69:9a:0d:9e:
a6:4c:73:da:d1:04:17:4d:bd:52:f0:1b:ca:a6:eb:
04:8e:2b:bc:87:2a:d4:12:78:69:5d:23:24:84:53:
75:13:bd:fc:02:2d:7b:8e:d6:af:d1:11:64:17:b1:
bb:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:A5:EF:30:3C:0B:6A:40:9B:BC:DE:04:9F:AF:9E:B7:8A:10:D9:AA
X509v3 Authority Key Identifier:
keyid:8D:B3:47:74:B0:19:79:28:4F:D9:E7:54:FE:A6:8F:A3:C6:17:83:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:0c:a6:5e:d6:7d:d1:e1:cb:4b:6e:43:96:dc:52:23:9f:89:
15:6e:dc:a6:4d:52:29:8a:a3:b3:9e:10:1c:b1:7f:24:82:35:
2a:d7:6d:e6:00:69:a3:80:9f:2a:81:69:36:68:a2:51:2d:b0:
33:d5:8d:29:1c:c0:d3:56:84:06:d4:1c:ac:4c:7c:12:00:9f:
a0:df:50:ee:5f:71:8a:2d:3a:70:6d:4e:56:ba:02:c4:0d:b7:
e3:15:23:37:15:b5:69:a0:4d:93:61:e5:00:3d:62:b8:47:78:
d8:90:38:ad:4c:32:5a:25:78:01:36:4d:a6:95:46:28:bc:5c:
55:bb:74:a7:de:fc:a9:6a:6b:3a:a9:d5:83:71:a9:5e:ce:11:
75:f6:2b:d5:e9:9e:5d:cb:d2:5b:34:88:68:63:5e:9c:48:71:
e0:e7:3f:a8:5d:2f:c9:61:59:91:91:dc:e6:40:98:fc:db:e9:
77:e2:e8:2d:db:3a:3a:90:c8:4d:ec:d3:9f:12:9a:b1:69:b6:
c0:37:12:5f:fc:79:a4:c0:44:87:bb:25:b2:4e:61:71:d4:5a:
aa:3d:75:a8:98:aa:88:df:0f:e6:ec:2e:0f:e1:f4:69:98:36:
14:be:99:51:32:1f:7a:5c:1d:da:bc:c7:00:c6:57:a4:80:08:
3d:b8:e8:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:49:27 2025 by rpki-client