Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
File: jha95kqam7o_-hQ4oZesP5SYn68.mft (raw, json)
Hash identifier: vK8OytDf+C9ySjRJiZ8Lf45is6mXPXKvJ+Cc7rO7UOk=
Subject key identifier: E6:B6:FB:D7:5C:FB:07:0A:99:2B:F7:F9:F8:D2:EC:52:42:37:80:0F
Authority key identifier: 8E:16:BD:E6:4A:9A:9B:BA:3F:FA:14:38:A1:97:AC:3F:94:98:9F:AF
Certificate issuer: /CN=8e16bde64a9a9bba3ffa1438a197ac3f94989faf
Certificate serial: 0198D515952A4E96FED546E02E6F617727F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
Manifest number: 09DD
Signing time: Sat 23 Aug 2025 04:00:18 +0000
Manifest this update: Sat 23 Aug 2025 04:00:18 +0000
Manifest next update: Sun 24 Aug 2025 04:00:18 +0000
Files and hashes: 1: jha95kqam7o_-hQ4oZesP5SYn68.crl (hash: jVRTWTJbcZpcpwcCghngSS67NPwIDUFG5oDUmIqpQtE=)
2: lgcKgcRNJg401G2YURIZe_B5NuU.roa (hash: uy67hQlFG6+Rikv9aAochHvjUmoKf+eqiNInXnUkhzk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:95:2a:4e:96:fe:d5:46:e0:2e:6f:61:77:27:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e16bde64a9a9bba3ffa1438a197ac3f94989faf
Validity
Not Before: Aug 23 04:00:18 2025 GMT
Not After : Aug 24 04:00:18 2025 GMT
Subject: CN=e6b6fbd75cfb070a992bf7f9f8d2ec524237800f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:f3:3f:00:72:d3:d8:c2:58:64:e6:60:99:91:
2c:0f:f7:03:c9:98:71:6c:02:55:1e:7d:b9:5a:51:
eb:40:cd:3b:31:c8:bb:db:a8:0b:8f:37:ce:f1:7b:
a8:e8:2d:ee:58:d2:b0:7d:1a:ef:3b:96:8e:6b:a0:
f6:d1:e1:ee:c1:c4:df:29:94:c4:1c:63:2e:8f:2e:
e3:0b:df:a3:a1:7c:ad:ba:12:1d:ba:d0:f9:79:13:
35:a5:b6:b2:72:91:e3:0b:7a:52:5e:bf:44:9f:8c:
db:8d:39:1a:c1:0c:05:e8:6b:c8:e9:55:87:28:42:
bb:5e:ea:19:0f:ea:02:a6:4b:aa:c1:60:7f:ee:ba:
55:69:80:65:98:6f:56:e5:6f:05:91:44:b4:17:8a:
76:7b:e5:ef:a3:a4:26:20:7c:3b:16:5f:23:58:55:
17:64:d2:91:83:e1:1a:9b:66:f3:33:9f:a2:51:ba:
44:82:d8:9c:6c:4e:bc:9e:a2:9f:35:3c:7f:3f:1f:
d5:da:61:ab:be:5a:ac:28:84:fc:b0:01:9b:95:40:
3f:f8:5e:e7:b0:53:34:2f:90:f3:f6:8f:fe:cc:b6:
13:6f:ca:8e:44:8c:a0:13:e4:99:dc:c7:70:f7:ad:
b2:d3:f6:ec:f5:7f:71:cb:6b:9e:5d:eb:fb:c4:ee:
4f:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:B6:FB:D7:5C:FB:07:0A:99:2B:F7:F9:F8:D2:EC:52:42:37:80:0F
X509v3 Authority Key Identifier:
keyid:8E:16:BD:E6:4A:9A:9B:BA:3F:FA:14:38:A1:97:AC:3F:94:98:9F:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:13:45:2b:70:32:06:67:fc:17:45:f3:b4:54:68:0f:1e:17:
a7:d3:76:f8:64:6c:76:de:37:8c:e5:c4:66:83:5e:08:6c:30:
df:05:7b:3e:fa:e3:98:19:0a:45:5b:2e:e1:38:f3:c6:b5:98:
a7:b4:f6:0c:51:f6:8a:c8:ab:38:3d:ec:1f:be:65:cf:c9:e4:
7c:7d:71:ca:6f:64:0e:7a:3a:61:10:df:e2:70:2e:aa:5a:f9:
5f:87:c8:97:8a:49:c8:39:2b:ab:39:01:9c:2c:ce:ba:10:7e:
ff:90:11:a8:73:06:e5:62:4c:88:21:f2:43:48:a7:b4:47:90:
3a:7d:8a:e6:4d:1d:76:d0:69:19:30:4b:7c:38:17:5d:ea:56:
77:26:3b:06:c1:78:9b:98:e1:c7:a9:a9:fb:a6:09:69:23:08:
b6:f8:95:01:0a:bd:81:76:4b:5c:d0:f3:45:e0:7d:4b:13:3d:
db:b4:76:a0:47:be:be:7c:2c:98:6e:69:1e:fc:eb:9a:04:4a:
88:95:f3:bb:14:06:de:84:1f:a1:5f:f8:ab:1b:fa:76:9f:90:
01:b2:1b:6c:14:3d:5c:dc:dc:ea:17:13:c5:e5:82:26:1a:02:
35:7a:a9:49:e3:6e:72:73:01:78:1e:53:8a:ea:e4:ad:8a:89:
1e:40:be:1d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVFZUqTpb+1UbgLm9hdyf1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhlMTZiZGU2NGE5YTliYmEzZmZhMTQzOGExOTdhYzNmOTQ5
ODlmYWYwHhcNMjUwODIzMDQwMDE4WhcNMjUwODI0MDQwMDE4WjAzMTEwLwYDVQQD
EyhlNmI2ZmJkNzVjZmIwNzBhOTkyYmY3ZjlmOGQyZWM1MjQyMzc4MDBmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2fM/AHLT2MJYZOZgmZEsD/cDyZhx
bAJVHn25WlHrQM07Mci726gLjzfO8Xuo6C3uWNKwfRrvO5aOa6D20eHuwcTfKZTE
HGMujy7jC9+joXytuhIdutD5eRM1pbaycpHjC3pSXr9En4zbjTkawQwF6GvI6VWH
KEK7XuoZD+oCpkuqwWB/7rpVaYBlmG9W5W8FkUS0F4p2e+Xvo6QmIHw7Fl8jWFUX
ZNKRg+Eam2bzM5+iUbpEgticbE68nqKfNTx/Px/V2mGrvlqsKIT8sAGblUA/+F7n
sFM0L5Dz9o/+zLYTb8qORIygE+SZ3Mdw962y0/bs9X9xy2ueXev7xO5PDQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOa2+9dc+wcKmSv3+fjS7FJCN4APMB8GA1UdIwQY
MBaAFI4WveZKmpu6P/oUOKGXrD+UmJ+vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvamhhOTVrcWFtN29fLWhRNG9aZXNQNVNZbjY4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZS8zOWFiMmUtZmVlYi00YTBlLTg3NDAt
NDUyOTZjMzJmMGEzLzEvamhhOTVrcWFtN29fLWhRNG9aZXNQNVNZbjY4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZS8zOWFiMmUtZmVlYi00YTBlLTg3NDAtNDUyOTZjMzJmMGEz
LzEvamhhOTVrcWFtN29fLWhRNG9aZXNQNVNZbjY4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlRNFK3Ay
Bmf8F0XztFRoDx4Xp9N2+GRsdt43jOXEZoNeCGww3wV7PvrjmBkKRVsu4TjzxrWY
p7T2DFH2isirOD3sH75lz8nkfH1xym9kDno6YRDf4nAuqlr5X4fIl4pJyDkrqzkB
nCzOuhB+/5ARqHMG5WJMiCHyQ0intEeQOn2K5k0ddtBpGTBLfDgXXepWdyY7BsF4
m5jhx6mp+6YJaSMItviVAQq9gXZLXNDzReB9SxM927R2oEe+vnwsmG5pHvzrmgRK
iJXzuxQG3oQfoV/4qxv6dp+QAbIbbBQ9XNzc6hcTxeWCJhoCNXqpSeNucnMBeB5T
iurkrYqJHkC+HQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:28:36 2025 by rpki-client