Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.mft
File: JY9ajila0de0ih4RlYeQBStXolM.mft (raw, json)
Hash identifier: OaSLIzPjVHfXLpMyg59rvEukcQjTwK6O3lh20YqxgBA=
Subject key identifier: D2:45:CC:55:4A:EC:CC:31:42:4A:7D:C2:87:08:AD:BD:35:5B:FE:BF
Authority key identifier: 25:8F:5A:8E:29:5A:D1:D7:B4:8A:1E:11:95:87:90:05:2B:57:A2:53
Certificate issuer: /CN=258f5a8e295ad1d7b48a1e11958790052b57a253
Certificate serial: 0198D5F169FD62706941925F73526E6D6BC6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JY9ajila0de0ih4RlYeQBStXolM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.mft
Manifest number: 15A1
Signing time: Sat 23 Aug 2025 08:00:24 +0000
Manifest this update: Sat 23 Aug 2025 08:00:24 +0000
Manifest next update: Sun 24 Aug 2025 08:00:24 +0000
Files and hashes: 1: HL0tpswU2gQezd0-x9ZWDdfR-RY.roa (hash: NAIPlF1KgdG7sggbmAwv2GRB6aTgtE/arOeqKYJF690=)
2: JY9ajila0de0ih4RlYeQBStXolM.crl (hash: eE2LKpeEkSX7ugeQGznwLHrMY3aXigy0Nvl3nOMAW7k=)
3: X5-jl_Od0mEO_dSg7rALYkevjoQ.roa (hash: xqc4fnPLjvYYKZxEv5pbNLPSZEhrMf7SnWN3fQ6sCO8=)
4: ljF5u-YRkQFhR1-JzkqgY4rX8fg.roa (hash: yARJg/r5KzAJTCBC6Aa8YbBreZ5SqvZOXFrSvclMQ38=)
5: s_QDIrLshBQNlu6RPwCemGYvy74.roa (hash: 6Y18bq+vtApdDZHTDEQgo5JwDFt4pJR0lVY1yqjzjsk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.mft
rsync://rpki.ripe.net/repository/DEFAULT/JY9ajila0de0ih4RlYeQBStXolM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:69:fd:62:70:69:41:92:5f:73:52:6e:6d:6b:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=258f5a8e295ad1d7b48a1e11958790052b57a253
Validity
Not Before: Aug 23 08:00:24 2025 GMT
Not After : Aug 24 08:00:24 2025 GMT
Subject: CN=d245cc554aeccc31424a7dc28708adbd355bfebf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:b9:3b:89:19:f2:6b:d5:67:af:1c:0c:a8:81:
4b:ca:27:b7:f7:94:f5:8e:23:55:68:47:2f:32:31:
56:f8:40:0e:b4:ee:06:06:4d:72:18:26:70:4f:3f:
38:56:39:00:b8:7f:08:e5:fe:5c:9c:40:71:01:72:
3a:18:51:2f:39:ed:6c:df:7d:c0:34:40:45:b6:ab:
d8:55:c0:b5:44:88:ac:4f:89:7d:5b:1b:e4:67:ad:
b2:e5:cc:8e:d9:1a:7d:53:d6:c0:74:47:cf:45:19:
02:a2:69:a4:ff:85:81:80:bc:75:1d:b0:4d:ce:44:
90:a9:8a:bb:98:2c:c2:5f:e7:88:ba:d0:13:27:35:
61:3a:10:13:75:51:a5:60:4f:ce:1c:df:cd:f5:bc:
99:e6:40:2a:bf:26:9a:2f:2e:dc:85:7e:84:4e:ec:
90:aa:f7:c3:d1:64:96:70:a9:78:48:c4:dc:cf:b7:
d3:ae:43:5c:78:f0:dd:74:96:a8:71:a9:88:98:f7:
62:ca:fb:6a:de:85:1f:fa:6a:1c:2d:2a:81:02:92:
68:1d:1f:a3:28:ae:49:86:91:38:40:8d:2d:7b:3b:
39:04:a7:c3:3d:b7:30:3d:a4:80:59:65:c6:41:6b:
71:d9:12:76:7c:a0:f3:f7:3b:a0:cc:5c:08:46:61:
3c:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:45:CC:55:4A:EC:CC:31:42:4A:7D:C2:87:08:AD:BD:35:5B:FE:BF
X509v3 Authority Key Identifier:
keyid:25:8F:5A:8E:29:5A:D1:D7:B4:8A:1E:11:95:87:90:05:2B:57:A2:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JY9ajila0de0ih4RlYeQBStXolM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:cb:c1:0c:69:5c:9d:15:2d:c0:6c:45:2a:1a:28:5f:99:80:
13:35:47:f0:2b:56:bd:f0:e4:26:35:4a:5e:8d:29:04:63:53:
40:36:3d:30:83:61:3f:69:25:c2:12:80:2c:a9:3d:cc:0d:4c:
9d:2f:d7:c1:30:c3:ec:ab:9b:b6:6a:0b:c8:5e:e8:04:5b:bf:
a3:66:6c:f9:b8:a5:08:d0:67:cf:80:04:fa:78:62:32:18:92:
0d:f5:f3:a3:f5:08:c1:1d:58:22:ff:81:69:7e:50:67:3d:79:
9e:2d:19:a2:c6:2a:6b:ec:17:9b:cb:f0:74:a1:93:dd:8c:01:
ca:de:57:cd:f6:7f:6d:75:45:f8:a2:e2:0d:12:d7:cf:43:6b:
09:14:31:a3:cf:0f:5e:72:f0:06:20:0a:4b:c3:d5:56:14:e6:
89:c2:ff:cf:cf:75:b2:17:52:48:d5:80:20:0f:3c:24:48:58:
f8:b7:b7:bd:fd:94:02:47:d2:f6:f4:2c:83:28:dd:df:fb:5d:
49:7d:ea:d8:84:ed:ca:55:a9:5b:0d:74:5b:cb:00:07:82:07:
ed:8d:4f:61:28:b2:16:51:6c:59:99:e1:4b:48:64:3f:f9:3c:
00:2b:12:56:19:56:6d:fa:3a:6b:38:c9:c8:e9:e5:6d:5e:06:
22:00:f4:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:39:01 2025 by rpki-client