Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.mft
File: jbNHdLAZeShP2edU_qaPo8YXg9A.mft (raw, json)
Hash identifier: Zhzf6UTmobwPgyDXwCd5J3YMhzKvjLYGzBpqkZU8P4A=
Subject key identifier: 8C:D5:8B:68:41:A5:E1:EA:0C:91:1A:29:2C:0C:2E:F1:E4:E9:C1:0D
Authority key identifier: 8D:B3:47:74:B0:19:79:28:4F:D9:E7:54:FE:A6:8F:A3:C6:17:83:D0
Certificate issuer: /CN=8db34774b01979284fd9e754fea68fa3c61783d0
Certificate serial: 0197B7EA2B58ADE1B55487BF5974AC6FDDD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.mft
Manifest number: 15F8
Signing time: Sat 28 Jun 2025 19:01:06 +0000
Manifest this update: Sat 28 Jun 2025 19:01:06 +0000
Manifest next update: Sun 29 Jun 2025 19:01:06 +0000
Files and hashes: 1: 4xDjMGoR5cxZD0TEt45OTNLuzZ4.roa (hash: aWtnbMWrytraTfwmFZQXH9y0uPlTO0CdQ7LWoLXK164=)
2: J8HqZbweBSBfotj9M3AMH0o24CY.roa (hash: KkFoXwUHnXFgQiJUTdylT6bFXV0tnmXRuocNWtuhH7k=)
3: aXs8DBYHqH16kFI25mAmO1bJxx4.roa (hash: d1LoCC9lmf7ZBBsN52kpeKsNgpbykeADMERL6qdd4Bg=)
4: jbNHdLAZeShP2edU_qaPo8YXg9A.crl (hash: N3uaO5p6ttPkR5A13DAslzFq2H3QnNe9bKACJAdHooQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.mft
rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:2b:58:ad:e1:b5:54:87:bf:59:74:ac:6f:dd:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8db34774b01979284fd9e754fea68fa3c61783d0
Validity
Not Before: Jun 28 19:01:06 2025 GMT
Not After : Jun 29 19:01:06 2025 GMT
Subject: CN=8cd58b6841a5e1ea0c911a292c0c2ef1e4e9c10d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:83:42:77:a3:a2:80:1e:10:3e:55:b0:70:06:
dc:74:f0:9c:7b:78:3c:0f:d0:81:27:44:a2:19:5d:
6a:9c:97:2b:43:4e:f6:90:1c:25:37:5c:d4:53:01:
81:46:a6:9b:05:6c:20:44:ac:d6:e3:98:25:34:77:
0d:e4:d6:e0:4e:24:0a:ba:6a:e4:e6:db:ba:c5:01:
d1:42:1f:02:1d:40:ac:30:22:0a:96:6f:3c:27:f7:
2d:a6:df:57:94:5d:79:8c:b3:df:d6:b7:eb:7b:84:
a2:82:a7:ab:f3:3f:25:86:d7:be:87:80:2a:67:12:
cc:45:d5:64:9a:5a:8d:28:1d:c3:ae:ff:94:96:90:
38:00:d2:93:dc:85:db:0e:68:6d:12:86:2b:c0:c1:
34:e4:61:a2:a5:ff:1a:d2:c1:7d:52:04:e2:df:d1:
75:76:a7:c2:0a:b0:60:cf:8a:0a:3c:70:4b:5b:d4:
cd:e2:bf:87:38:25:d8:16:36:23:e3:21:b2:b2:97:
16:34:aa:be:f1:85:ce:f4:8d:d7:5d:c9:b1:f5:ff:
82:4b:45:92:76:91:bc:13:6a:67:a8:77:5d:09:5f:
81:f0:d0:3e:2c:df:1c:36:09:3a:80:ab:0f:bf:33:
92:31:65:63:62:50:f7:55:a9:cb:2d:a4:3d:44:eb:
90:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:D5:8B:68:41:A5:E1:EA:0C:91:1A:29:2C:0C:2E:F1:E4:E9:C1:0D
X509v3 Authority Key Identifier:
keyid:8D:B3:47:74:B0:19:79:28:4F:D9:E7:54:FE:A6:8F:A3:C6:17:83:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:d0:1f:dc:4e:2d:c4:c8:29:ab:ef:e6:a5:52:1f:a5:71:91:
ab:17:1a:d3:48:14:b3:52:95:c2:c1:cd:03:7c:c8:e1:45:3f:
b7:27:11:d0:e6:ac:fd:32:d4:de:2a:b1:80:8d:da:e9:69:5f:
b5:d5:bd:3b:b4:81:89:cf:50:0a:53:c8:28:25:8a:eb:7f:cf:
b6:41:d6:42:7e:73:4d:cd:aa:b3:0d:b3:c5:c9:ed:b8:2b:6b:
84:1a:4e:70:c8:12:1b:21:d0:d7:06:c7:db:81:b8:e0:7c:55:
6d:9e:64:7e:4c:2b:ee:79:c3:3b:de:66:b1:18:60:99:c2:2e:
5d:70:00:b3:78:bc:27:81:e8:84:4e:4d:a4:de:4c:c8:b6:88:
ed:0d:f5:93:3c:ad:5e:98:34:fc:1f:c5:b1:c1:2a:87:91:1d:
7f:5a:9d:28:e8:73:31:03:03:c5:16:9c:a5:e0:b8:23:cc:3c:
19:31:00:99:d0:45:44:51:4f:5e:45:5f:d9:7f:8f:86:01:ef:
84:96:71:d3:5d:d2:c2:71:65:7c:bb:f6:5e:41:de:3d:71:9b:
5f:df:2f:c7:f3:1e:0c:98:a2:f6:10:5e:f0:c5:f7:9e:db:e0:
18:e1:04:0e:03:f8:67:f7:47:cc:56:9a:5d:34:dd:a0:93:9e:
03:b7:a7:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:33:16 2025 by rpki-client