Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.mft
File: jbNHdLAZeShP2edU_qaPo8YXg9A.mft (raw, json)
Hash identifier: UAQQ4ltSH+Hj+oG9TEwyVsnCfxyE3TCtd8u1YHl4uO4=
Subject key identifier: 1E:DE:20:0F:7D:64:59:9A:19:94:AC:1C:9B:80:F5:2A:16:B6:6B:9F
Authority key identifier: 8D:B3:47:74:B0:19:79:28:4F:D9:E7:54:FE:A6:8F:A3:C6:17:83:D0
Certificate issuer: /CN=8db34774b01979284fd9e754fea68fa3c61783d0
Certificate serial: 01969C3DB0D3F4DBE269967889E66B1AB5A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.mft
Manifest number: 1562
Signing time: Sun 04 May 2025 17:00:10 +0000
Manifest this update: Sun 04 May 2025 17:00:10 +0000
Manifest next update: Mon 05 May 2025 17:00:10 +0000
Files and hashes: 1: 4xDjMGoR5cxZD0TEt45OTNLuzZ4.roa (hash: aWtnbMWrytraTfwmFZQXH9y0uPlTO0CdQ7LWoLXK164=)
2: aXs8DBYHqH16kFI25mAmO1bJxx4.roa (hash: d1LoCC9lmf7ZBBsN52kpeKsNgpbykeADMERL6qdd4Bg=)
3: jbNHdLAZeShP2edU_qaPo8YXg9A.crl (hash: pwFadivrUoX/cj2Cq//Qj7WkuuG9qf74qfYvq+yPOL8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.mft
rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 17:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9c:3d:b0:d3:f4:db:e2:69:96:78:89:e6:6b:1a:b5:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8db34774b01979284fd9e754fea68fa3c61783d0
Validity
Not Before: May 4 17:00:10 2025 GMT
Not After : May 5 17:00:10 2025 GMT
Subject: CN=1ede200f7d64599a1994ac1c9b80f52a16b66b9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:4a:7f:83:36:50:fa:26:74:0a:6d:ec:9d:5a:
c7:2d:82:15:61:10:86:07:00:1c:a6:6e:e3:e4:e3:
49:56:3d:ed:fb:81:72:ac:5b:06:e5:78:10:52:4c:
ba:b8:a2:ae:c0:84:22:bb:3f:c4:a8:d8:cb:52:8b:
ca:66:2c:95:0f:11:1e:24:3d:ad:b4:94:5f:21:11:
97:3c:27:8b:c6:b5:bb:c9:a1:d0:1b:9d:f7:17:f4:
b3:b3:e7:33:d5:29:5c:33:01:ff:06:8f:3f:27:93:
bc:56:64:04:f5:1b:cd:38:47:46:ac:10:50:7d:b3:
45:13:18:4b:61:cc:ed:7c:a0:8b:16:1b:4e:fa:82:
f9:f0:c7:91:e7:01:d1:b2:4c:0c:af:b9:63:4f:b1:
26:77:25:92:3a:2e:2c:33:f8:6c:65:58:75:3d:f0:
ae:20:73:13:c4:50:2d:56:bf:b4:32:3e:e1:7e:a4:
31:b4:8a:53:05:a7:84:c3:8a:6f:c3:85:08:b4:ed:
d7:da:42:c0:b1:40:c9:74:0a:0c:4d:ed:77:8d:f5:
9b:99:b8:be:db:32:0c:7e:fd:03:4c:8e:15:df:b7:
28:43:66:fb:b2:55:fd:bc:ea:f4:6c:93:69:52:a7:
08:99:8c:26:c4:6e:9d:d6:1c:c9:4a:dc:97:f5:79:
63:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:DE:20:0F:7D:64:59:9A:19:94:AC:1C:9B:80:F5:2A:16:B6:6B:9F
X509v3 Authority Key Identifier:
keyid:8D:B3:47:74:B0:19:79:28:4F:D9:E7:54:FE:A6:8F:A3:C6:17:83:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:ca:3a:07:60:b9:4e:5f:5a:d4:05:b8:9b:83:3b:52:31:c0:
3c:ec:0c:a7:da:ca:8d:00:22:f3:02:33:f2:93:92:e3:8e:c3:
81:7d:7d:01:83:c5:a9:ea:82:90:d2:4e:96:4c:de:f9:42:bd:
e6:58:dd:50:83:7c:4c:83:4c:d6:b8:44:3a:68:d2:28:e7:19:
5d:c9:b0:65:41:73:ce:61:f5:5e:8f:8d:8e:e9:60:8b:69:c2:
53:66:75:7a:1d:ba:cb:16:1b:52:51:a3:00:7d:47:ac:01:ca:
51:70:a6:f9:20:70:b6:4b:82:a2:eb:b5:cc:4c:34:d2:3c:ab:
bf:50:e8:52:b6:4f:2e:5d:f0:69:5d:1c:69:34:ae:c2:8f:30:
d6:20:12:71:61:43:08:5e:e4:db:ca:86:82:ff:d0:1e:b5:80:
f2:cb:33:d6:d0:64:3f:60:09:38:67:ca:63:4d:00:3e:2f:59:
32:27:42:cf:e0:76:89:e6:90:78:a9:b8:17:ee:07:ad:35:fa:
30:fa:a8:92:f8:5d:29:2a:10:a7:34:f0:6a:c2:77:e9:a9:b4:
09:c4:93:88:ea:93:a3:9c:75:13:00:af:53:bd:a7:c5:6f:7f:
b3:07:ce:80:72:cf:aa:d2:e4:24:f0:b8:86:6d:9d:3e:ae:96:
c5:13:1f:c9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZacPbDT9NviaZZ4ieZrGrWhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhkYjM0Nzc0YjAxOTc5Mjg0ZmQ5ZTc1NGZlYTY4ZmEzYzYx
NzgzZDAwHhcNMjUwNTA0MTcwMDEwWhcNMjUwNTA1MTcwMDEwWjAzMTEwLwYDVQQD
EygxZWRlMjAwZjdkNjQ1OTlhMTk5NGFjMWM5YjgwZjUyYTE2YjY2YjlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxkp/gzZQ+iZ0Cm3snVrHLYIVYRCG
BwAcpm7j5ONJVj3t+4FyrFsG5XgQUky6uKKuwIQiuz/EqNjLUovKZiyVDxEeJD2t
tJRfIRGXPCeLxrW7yaHQG533F/Szs+cz1SlcMwH/Bo8/J5O8VmQE9RvNOEdGrBBQ
fbNFExhLYcztfKCLFhtO+oL58MeR5wHRskwMr7ljT7EmdyWSOi4sM/hsZVh1PfCu
IHMTxFAtVr+0Mj7hfqQxtIpTBaeEw4pvw4UItO3X2kLAsUDJdAoMTe13jfWbmbi+
2zIMfv0DTI4V37coQ2b7slX9vOr0bJNpUqcImYwmxG6d1hzJStyX9XljFwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB7eIA99ZFmaGZSsHJuA9SoWtmufMB8GA1UdIwQY
MBaAFI2zR3SwGXkoT9nnVP6mj6PGF4PQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvamJOSGRMQVplU2hQMmVkVV9xYVBvOFlYZzlBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy83MGE4ZjEtZDhlYi00MmI1LWJkZGIt
NjI2NTUyMWY2ZGY3LzEvamJOSGRMQVplU2hQMmVkVV9xYVBvOFlYZzlBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNy83MGE4ZjEtZDhlYi00MmI1LWJkZGItNjI2NTUyMWY2ZGY3
LzEvamJOSGRMQVplU2hQMmVkVV9xYVBvOFlYZzlBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD8o6B2C5
Tl9a1AW4m4M7UjHAPOwMp9rKjQAi8wIz8pOS447DgX19AYPFqeqCkNJOlkze+UK9
5ljdUIN8TINM1rhEOmjSKOcZXcmwZUFzzmH1Xo+Njulgi2nCU2Z1eh26yxYbUlGj
AH1HrAHKUXCm+SBwtkuCouu1zEw00jyrv1DoUrZPLl3waV0caTSuwo8w1iAScWFD
CF7k28qGgv/QHrWA8ssz1tBkP2AJOGfKY00APi9ZMidCz+B2ieaQeKm4F+4HrTX6
MPqokvhdKSoQpzTwasJ36am0CcSTiOqTo5x1EwCvU72nxW9/swfOgHLPqtLkJPC4
hm2dPq6WxRMfyQ==
-----END CERTIFICATE-----
Generated at Mon May 5 03:46:18 2025 by rpki-client