
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/0d14d0-be8b-4170-9fd8-07cd4a061c80/1/JkQpgYmVnJWm1KdLdU9JlqWltlw.mft
File: JkQpgYmVnJWm1KdLdU9JlqWltlw.mft (raw, json)
Hash identifier: d8qVHB5Ff/akjIyaj36NWlSDyUShyRyQEKjXnVhCbS8=
Subject key identifier: A9:D1:BA:BA:D3:46:8D:20:C4:64:7A:6F:38:2F:7A:32:60:DF:37:A1
Authority key identifier: 26:44:29:81:89:95:9C:95:A6:D4:A7:4B:75:4F:49:96:A5:A5:B6:5C
Certificate issuer: /CN=2644298189959c95a6d4a74b754f4996a5a5b65c
Certificate serial: 0198D65FF9CEFCC6635962BA03DB6961BCA7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JkQpgYmVnJWm1KdLdU9JlqWltlw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/0d14d0-be8b-4170-9fd8-07cd4a061c80/1/JkQpgYmVnJWm1KdLdU9JlqWltlw.mft
Manifest number: 1646
Signing time: Sat 23 Aug 2025 10:01:10 +0000
Manifest this update: Sat 23 Aug 2025 10:01:10 +0000
Manifest next update: Sun 24 Aug 2025 10:01:10 +0000
Files and hashes: 1: JkQpgYmVnJWm1KdLdU9JlqWltlw.crl (hash: Z+7+bnm4z31b1hvVK5UyWRbdL1I7yFOv5AL+hU/D9t0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/0d14d0-be8b-4170-9fd8-07cd4a061c80/1/JkQpgYmVnJWm1KdLdU9JlqWltlw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/0d14d0-be8b-4170-9fd8-07cd4a061c80/1/JkQpgYmVnJWm1KdLdU9JlqWltlw.mft
rsync://rpki.ripe.net/repository/DEFAULT/JkQpgYmVnJWm1KdLdU9JlqWltlw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:f9:ce:fc:c6:63:59:62:ba:03:db:69:61:bc:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2644298189959c95a6d4a74b754f4996a5a5b65c
Validity
Not Before: Aug 23 10:01:10 2025 GMT
Not After : Aug 24 10:01:10 2025 GMT
Subject: CN=a9d1babad3468d20c4647a6f382f7a3260df37a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:f2:56:ef:22:38:73:64:e9:87:65:05:57:4e:
73:4c:a3:33:05:21:f7:de:6d:75:11:ae:da:e7:ec:
1f:a1:14:07:45:9b:3d:cb:4e:ee:b6:86:fb:02:50:
2c:f8:93:c6:95:07:6d:0f:7e:7f:b8:7e:ae:e6:eb:
7f:c2:8d:da:34:69:8a:9f:84:93:e7:7f:ee:dd:31:
ad:1e:c4:b9:a4:55:0e:ca:03:d2:76:f5:5e:97:97:
75:04:00:a4:f6:79:da:b1:17:22:67:08:9c:75:1a:
3a:7a:d4:f6:c2:a4:8a:7a:d0:ce:ef:04:70:36:45:
03:43:cb:98:8d:ab:3f:ae:2f:1e:37:f6:e1:2a:1e:
08:55:b3:d3:ee:45:41:b6:59:74:5d:84:2b:1c:ae:
ce:ac:4a:a7:6b:0a:06:d9:92:a2:55:32:da:20:9b:
f2:30:04:81:66:5a:37:54:e6:8e:6e:01:d0:d1:8a:
5b:18:d0:e5:90:38:32:d8:17:3d:6e:f3:59:79:b7:
4f:f6:3c:b0:8d:d5:6a:33:1d:6f:92:4f:73:f4:10:
f8:7f:8f:03:9e:cb:6d:e5:e1:b1:49:02:46:ad:cc:
38:18:66:5c:30:c8:af:b2:32:ee:91:c7:61:cc:b7:
e3:8b:2e:a3:15:dd:79:09:45:92:49:41:38:17:47:
74:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:D1:BA:BA:D3:46:8D:20:C4:64:7A:6F:38:2F:7A:32:60:DF:37:A1
X509v3 Authority Key Identifier:
keyid:26:44:29:81:89:95:9C:95:A6:D4:A7:4B:75:4F:49:96:A5:A5:B6:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JkQpgYmVnJWm1KdLdU9JlqWltlw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/0d14d0-be8b-4170-9fd8-07cd4a061c80/1/JkQpgYmVnJWm1KdLdU9JlqWltlw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/0d14d0-be8b-4170-9fd8-07cd4a061c80/1/JkQpgYmVnJWm1KdLdU9JlqWltlw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:34:f6:8c:e5:54:4c:20:b5:4e:55:cf:c0:69:a1:47:3c:f6:
aa:1f:cd:fe:47:65:6c:f9:aa:0e:8b:33:3b:d8:bf:67:0f:ec:
d4:bf:d9:5b:87:6f:40:94:db:3f:d7:fe:86:be:64:2a:94:72:
10:5d:0c:25:b5:d3:1e:3e:15:f1:97:28:be:bb:a9:53:8d:54:
d5:0a:cc:2e:2c:0d:6a:c0:2d:f8:4b:5a:11:fa:3d:b3:a6:7c:
1a:2e:03:75:1d:e0:38:e4:db:0a:2c:30:10:68:92:4e:70:9f:
82:6f:19:5e:6a:2a:98:62:ae:34:07:b0:7d:16:f5:ee:2b:09:
01:f3:a5:a3:0a:58:57:17:fe:12:52:de:bf:4e:90:83:fb:73:
30:ff:d7:70:fa:e0:16:52:3c:16:77:b6:f6:00:4f:c7:93:c3:
14:94:ff:96:c6:a5:7a:44:96:7e:06:83:f0:4e:24:69:52:95:
22:7e:91:81:cc:45:9b:e7:7b:6b:e6:50:96:03:bc:c6:3e:e5:
ef:f4:22:3d:f1:6f:00:27:55:a7:5a:5d:18:05:49:e9:41:ab:
cc:a1:ed:48:41:67:e6:31:bf:8a:e4:39:24:a1:de:08:24:11:
cb:d1:77:a4:1a:19:4c:75:a1:3e:8d:18:2b:e4:6d:b7:4b:82:
79:1f:74:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:01:20 2025 by rpki-client