Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.mft
File: JY9ajila0de0ih4RlYeQBStXolM.mft (raw, json)
Hash identifier: eLpPTDIEeox8SJyU93pWwatX25cImw/+66eYjUA34DI=
Subject key identifier: 8F:65:E5:0E:A8:AB:A1:1C:E7:21:D8:4E:F2:C9:0A:A0:E4:4C:53:06
Authority key identifier: 25:8F:5A:8E:29:5A:D1:D7:B4:8A:1E:11:95:87:90:05:2B:57:A2:53
Certificate issuer: /CN=258f5a8e295ad1d7b48a1e11958790052b57a253
Certificate serial: 0199FD6B18B1388E38CE4190576BE1ACF86B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JY9ajila0de0ih4RlYeQBStXolM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.mft
Manifest number: 163A
Signing time: Sun 19 Oct 2025 17:01:18 +0000
Manifest this update: Sun 19 Oct 2025 17:01:18 +0000
Manifest next update: Mon 20 Oct 2025 17:01:18 +0000
Files and hashes: 1: HL0tpswU2gQezd0-x9ZWDdfR-RY.roa (hash: NAIPlF1KgdG7sggbmAwv2GRB6aTgtE/arOeqKYJF690=)
2: JY9ajila0de0ih4RlYeQBStXolM.crl (hash: iU7Y7k/FVm4B68NcB3y6mUTQ7TcY5CCGFe5VZbkgvC8=)
3: X5-jl_Od0mEO_dSg7rALYkevjoQ.roa (hash: xqc4fnPLjvYYKZxEv5pbNLPSZEhrMf7SnWN3fQ6sCO8=)
4: ljF5u-YRkQFhR1-JzkqgY4rX8fg.roa (hash: yARJg/r5KzAJTCBC6Aa8YbBreZ5SqvZOXFrSvclMQ38=)
5: s_QDIrLshBQNlu6RPwCemGYvy74.roa (hash: 6Y18bq+vtApdDZHTDEQgo5JwDFt4pJR0lVY1yqjzjsk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.mft
rsync://rpki.ripe.net/repository/DEFAULT/JY9ajila0de0ih4RlYeQBStXolM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6b:18:b1:38:8e:38:ce:41:90:57:6b:e1:ac:f8:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=258f5a8e295ad1d7b48a1e11958790052b57a253
Validity
Not Before: Oct 19 17:01:18 2025 GMT
Not After : Oct 20 17:01:18 2025 GMT
Subject: CN=8f65e50ea8aba11ce721d84ef2c90aa0e44c5306
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:99:cc:45:f7:45:82:57:f9:27:a9:ad:ae:a2:
25:88:f4:32:bb:9b:51:6d:c2:2b:b1:24:93:a7:67:
7c:b5:81:d3:37:28:f1:49:00:09:61:f4:3d:a4:5a:
82:50:51:2e:b1:9e:b3:54:8b:1c:8d:06:12:cc:21:
96:c6:24:94:c6:19:d1:1a:2b:7d:ef:b9:3e:bf:bd:
73:49:3e:91:74:10:7a:45:59:9b:ae:9f:e7:34:5e:
ab:73:06:1f:6a:24:45:46:c1:79:4e:2a:78:28:5c:
f3:84:0b:7f:b4:c7:ed:e5:dc:19:06:04:a1:dc:79:
c8:d9:bc:4d:0f:b5:97:37:b8:d7:a9:8f:81:17:bd:
92:72:3e:42:a1:26:92:6b:a0:be:68:83:91:2f:45:
9e:1b:6c:32:4f:d0:07:fd:75:26:25:5c:12:c1:5e:
ca:76:c3:ae:90:f3:c6:9f:f2:05:75:84:e6:f6:f5:
e2:2b:8a:9e:20:22:b4:93:c5:09:48:de:81:2f:16:
33:60:c1:5f:f3:ac:6c:18:03:95:65:72:79:b7:3c:
9a:4d:64:b9:dc:fa:36:df:83:0b:ce:ee:78:0c:e1:
00:2d:c4:da:5d:7f:3e:30:f1:3b:fd:b1:8f:b9:9f:
f1:12:b7:ae:c5:eb:c6:8a:f8:5f:15:87:49:15:7d:
27:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:65:E5:0E:A8:AB:A1:1C:E7:21:D8:4E:F2:C9:0A:A0:E4:4C:53:06
X509v3 Authority Key Identifier:
keyid:25:8F:5A:8E:29:5A:D1:D7:B4:8A:1E:11:95:87:90:05:2B:57:A2:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JY9ajila0de0ih4RlYeQBStXolM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:2c:a0:fe:09:0d:c6:1f:2f:0e:3f:04:20:df:b4:10:43:83:
89:e3:f1:2f:70:a0:40:63:86:b5:83:a1:b9:61:f6:d5:f3:9e:
fc:67:09:09:81:51:c4:d8:94:b1:10:a4:e8:69:39:a0:d4:60:
e8:a0:b7:04:ed:3b:94:53:29:30:56:08:0a:18:87:69:38:db:
6c:95:32:c7:80:b9:0a:40:f6:79:68:e1:39:fc:f8:9a:a1:64:
ed:a2:bc:b0:32:78:c2:22:7d:81:73:84:20:b6:43:8b:09:f5:
43:87:ae:e7:0c:c3:81:a3:fe:ec:09:17:de:99:69:78:47:05:
f7:9a:67:46:b6:d8:b6:b8:2f:3d:bc:e7:cc:87:17:f9:3b:1d:
67:bf:54:58:83:52:27:08:d7:06:f0:f7:e4:9e:8a:57:88:fa:
b5:1e:3f:19:df:d6:5e:10:bc:10:83:2f:aa:07:2e:3c:81:54:
a2:79:89:f5:8b:53:60:65:f1:95:ea:4c:d3:15:9f:cd:e6:81:
c9:dc:26:00:2c:41:38:01:b8:10:19:3a:1e:37:71:c5:49:f4:
d9:cf:d8:92:7b:83:70:0c:48:df:0b:d6:ec:ce:09:d1:eb:c5:
73:1d:95:3c:02:89:7c:e8:a8:8a:32:61:ed:34:12:a4:40:36:
47:b4:0f:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:59:35 2025 by rpki-client