Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
File: jha95kqam7o_-hQ4oZesP5SYn68.mft (raw, json)
Hash identifier: ed5/sGfJw8av/8Y3utat/x1C7efALFPg+wX6wQ3k8+k=
Subject key identifier: 26:36:3A:C8:32:CB:C5:CC:A8:45:DA:DF:99:EA:A6:A8:54:86:60:37
Authority key identifier: 8E:16:BD:E6:4A:9A:9B:BA:3F:FA:14:38:A1:97:AC:3F:94:98:9F:AF
Certificate issuer: /CN=8e16bde64a9a9bba3ffa1438a197ac3f94989faf
Certificate serial: 0197C6B897C411A1A8137CB4E77837689D93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
Manifest number: 0951
Signing time: Tue 01 Jul 2025 16:01:15 +0000
Manifest this update: Tue 01 Jul 2025 16:01:15 +0000
Manifest next update: Wed 02 Jul 2025 16:01:15 +0000
Files and hashes: 1: jha95kqam7o_-hQ4oZesP5SYn68.crl (hash: SgJkl67HGBB27vnPCeBe/cKmG3aZYjSuhfqP1m5hVOU=)
2: lgcKgcRNJg401G2YURIZe_B5NuU.roa (hash: uy67hQlFG6+Rikv9aAochHvjUmoKf+eqiNInXnUkhzk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 16:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c6:b8:97:c4:11:a1:a8:13:7c:b4:e7:78:37:68:9d:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e16bde64a9a9bba3ffa1438a197ac3f94989faf
Validity
Not Before: Jul 1 16:01:15 2025 GMT
Not After : Jul 2 16:01:15 2025 GMT
Subject: CN=26363ac832cbc5cca845dadf99eaa6a854866037
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e0:ba:79:3b:c0:dc:d1:e0:80:8e:0f:ec:27:
11:67:bc:46:58:5b:ae:2a:69:a0:2d:be:d5:92:33:
0a:39:ee:68:04:84:05:48:0a:cd:de:77:c3:a5:e7:
c8:3f:d8:87:97:27:ab:21:1c:b4:fc:7d:fa:ca:b2:
a0:ac:d8:9e:d3:82:35:28:34:bd:44:cd:66:7f:d0:
c2:f6:b8:b2:11:e3:7c:1f:78:4c:af:a5:98:dd:e8:
3b:04:ba:ad:aa:55:c6:f8:52:b5:f7:01:28:af:86:
57:c6:dc:f8:f1:e0:a9:e3:b6:1e:da:66:bc:a7:1c:
8a:bb:39:ce:2c:43:37:eb:a7:ff:f5:30:ae:36:4c:
29:34:ad:a6:35:1b:17:96:02:cc:ca:87:60:c2:49:
3c:70:35:43:e2:f7:e6:61:93:7e:cd:f8:f1:c1:bc:
2d:5f:36:26:e8:de:f6:89:2a:94:05:40:e2:5d:37:
62:e4:bf:41:22:04:a4:aa:5f:08:38:d0:8d:2d:9c:
3b:54:59:67:bd:c5:76:79:85:5c:31:b5:c9:4d:ab:
85:5e:e7:19:f7:a6:6c:5e:4a:4c:90:f6:3c:fc:0d:
66:c8:1b:43:a8:3e:cf:da:19:8d:0f:0f:bf:3f:ad:
df:d8:7f:f3:95:d8:9e:66:38:bc:15:8f:27:4e:f8:
0a:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:36:3A:C8:32:CB:C5:CC:A8:45:DA:DF:99:EA:A6:A8:54:86:60:37
X509v3 Authority Key Identifier:
keyid:8E:16:BD:E6:4A:9A:9B:BA:3F:FA:14:38:A1:97:AC:3F:94:98:9F:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:6a:04:02:e8:18:c7:ba:01:ff:e1:4e:e2:00:d6:d0:36:43:
1e:a8:0a:f6:44:21:75:df:30:53:1c:20:65:d9:b2:0f:36:4b:
88:27:77:48:66:97:bf:8e:c3:f8:41:1f:d5:77:0a:f0:bb:f3:
7a:2a:f9:40:04:28:2c:89:50:96:df:c9:ef:d7:15:f5:d4:cb:
24:52:8c:5a:e1:fd:ed:2c:ee:25:81:2d:11:f7:0c:04:ae:6e:
4f:6d:72:f9:4b:5a:b2:b3:f4:78:3d:83:5b:6c:9f:f7:53:e1:
6f:9b:c5:c5:fd:bd:95:99:85:f7:63:8e:8f:7b:49:e0:bd:8e:
b8:bf:62:0d:8b:75:25:b9:9b:6e:6f:fb:ac:c2:c9:6a:00:38:
df:06:b7:f0:06:eb:76:e7:bd:a3:4b:e2:c8:b2:e8:b4:39:a5:
68:b7:38:a0:82:7a:34:0c:13:77:5f:1d:68:e1:39:52:1f:02:
9a:72:7b:7e:2f:be:a4:f4:86:d4:54:46:a6:8a:ae:1e:fb:bb:
39:42:43:63:7c:66:40:16:4d:33:8c:e8:66:95:88:75:f7:d2:
37:b5:bd:de:cc:26:a9:f1:12:9e:7b:8f:97:68:65:bf:6b:0f:
d3:f1:7a:bd:c2:69:bc:a0:50:df:1a:0f:3f:a1:85:94:92:8a:
13:9a:d5:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 18:42:08 2025 by rpki-client