Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
File: jha95kqam7o_-hQ4oZesP5SYn68.mft (raw, json)
Hash identifier: BGzyqz9TV+ZzRQcI96+rkrW7Vf/RA7iUIsBzGhOZ484=
Subject key identifier: FD:BD:E3:0D:73:71:32:EA:58:94:CD:23:1A:3D:56:88:32:1C:8D:04
Authority key identifier: 8E:16:BD:E6:4A:9A:9B:BA:3F:FA:14:38:A1:97:AC:3F:94:98:9F:AF
Certificate issuer: /CN=8e16bde64a9a9bba3ffa1438a197ac3f94989faf
Certificate serial: 0199FC8F94B56CC7A4108473EBF7DC178E28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
Manifest number: 0A76
Signing time: Sun 19 Oct 2025 13:01:32 +0000
Manifest this update: Sun 19 Oct 2025 13:01:32 +0000
Manifest next update: Mon 20 Oct 2025 13:01:32 +0000
Files and hashes: 1: jha95kqam7o_-hQ4oZesP5SYn68.crl (hash: i4YtC2sg8y+DvpMP6RwuCgkS47y2rhMl4WDULV8V3Qg=)
2: lgcKgcRNJg401G2YURIZe_B5NuU.roa (hash: uy67hQlFG6+Rikv9aAochHvjUmoKf+eqiNInXnUkhzk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:94:b5:6c:c7:a4:10:84:73:eb:f7:dc:17:8e:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e16bde64a9a9bba3ffa1438a197ac3f94989faf
Validity
Not Before: Oct 19 13:01:32 2025 GMT
Not After : Oct 20 13:01:32 2025 GMT
Subject: CN=fdbde30d737132ea5894cd231a3d5688321c8d04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:1a:2a:a6:0d:e9:83:21:79:59:74:e6:c1:61:
15:43:d3:5b:1b:85:0d:b3:f0:81:7c:3b:98:60:7b:
ca:d1:33:4a:fc:cc:f4:f7:b7:95:02:d1:ba:89:c4:
19:8b:eb:6f:b4:ca:aa:30:e3:41:63:76:e1:fd:07:
0b:dd:df:db:dc:f5:c1:08:fd:a7:c4:26:15:19:20:
6f:8b:43:dc:bc:99:33:92:99:57:aa:11:22:b9:b6:
35:0a:05:55:7b:e5:a5:5e:0e:06:4f:bb:58:b9:be:
7c:dc:1b:e8:e1:46:00:21:c8:e4:d2:17:f2:ac:74:
b1:7f:1f:24:14:4e:f9:94:11:72:d5:f3:1e:c5:96:
09:6d:b9:10:78:c4:2d:2f:e0:f6:bf:01:4e:f4:9b:
80:7f:85:77:7c:0f:c6:e3:53:51:b7:e8:8d:6c:ef:
72:66:ee:35:9c:d1:23:93:a8:66:6c:1c:57:45:82:
65:0a:f8:ee:7f:c3:c8:f4:b1:7b:1f:af:ad:a5:2d:
ee:87:69:fc:45:a0:11:34:a3:9d:83:c9:1f:e0:f7:
cd:fe:98:09:5a:87:6e:92:48:59:fd:16:9e:7a:b9:
59:f4:0c:bc:e5:2b:e0:8e:17:11:c7:ad:12:e0:e8:
13:0d:d9:e4:43:88:22:72:79:25:3b:a9:9b:28:db:
a0:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:BD:E3:0D:73:71:32:EA:58:94:CD:23:1A:3D:56:88:32:1C:8D:04
X509v3 Authority Key Identifier:
keyid:8E:16:BD:E6:4A:9A:9B:BA:3F:FA:14:38:A1:97:AC:3F:94:98:9F:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:a7:b0:4b:ed:31:a7:19:ab:c5:2b:72:9a:a4:f5:d2:36:7d:
1c:01:4a:fc:0d:5c:f2:6e:ab:18:9b:90:72:4f:2b:60:13:f0:
04:11:26:1c:d5:95:93:8d:01:ea:22:f0:95:c8:69:34:28:87:
32:c6:ee:6b:8c:a5:2b:ce:3c:74:aa:3a:9e:6a:90:67:e6:3c:
36:c0:c3:5f:f3:9d:33:a6:e8:d8:49:a6:cc:85:2b:46:8f:bc:
8f:7a:08:ee:5e:5e:89:77:bd:24:c2:1c:84:6e:f9:d1:1a:09:
51:b5:43:0e:c1:af:23:f8:21:c8:95:65:f0:46:88:fe:94:60:
de:93:36:39:b7:60:5f:dd:81:ef:82:7a:e2:d7:18:f8:10:13:
cf:06:a9:e0:e3:f4:99:b5:6f:21:cc:14:75:ea:c0:5a:77:66:
78:5d:5f:82:8c:5e:19:94:62:7a:75:cb:8e:e6:2a:b6:6b:8f:
05:3b:44:22:8e:91:fd:d2:a1:c1:24:fa:6d:91:dc:f3:f9:79:
75:c9:15:29:a3:2c:42:3f:5e:48:4c:10:08:91:ed:72:76:09:
e1:a8:d8:e8:b7:64:9a:1f:6b:20:85:10:91:58:07:2c:e0:29:
b2:49:8b:9f:1e:d4:d1:cb:60:32:24:23:e1:54:2e:ff:ad:7c:
99:e7:25:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:41:11 2025 by rpki-client