Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/df9e2d-a033-40c0-a00f-e344fdb722a3/1/jzztMLKFLlUseDdGcAPxdepZ3nM.mft
File: jzztMLKFLlUseDdGcAPxdepZ3nM.mft (raw, json)
Hash identifier: q/zZLvcME1KBjmnM8jBsDki9D8V32ZCQfj8DgVYcnDA=
Subject key identifier: 85:9A:0A:CA:48:5E:B6:27:AC:53:88:69:D7:25:49:6D:5D:A9:4A:F4
Authority key identifier: 8F:3C:ED:30:B2:85:2E:55:2C:78:37:46:70:03:F1:75:EA:59:DE:73
Certificate issuer: /CN=8f3ced30b2852e552c7837467003f175ea59de73
Certificate serial: 0198D6CD1CF02957AB0C812D2BAD016A512B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzztMLKFLlUseDdGcAPxdepZ3nM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/df9e2d-a033-40c0-a00f-e344fdb722a3/1/jzztMLKFLlUseDdGcAPxdepZ3nM.mft
Manifest number: 0B52
Signing time: Sat 23 Aug 2025 12:00:23 +0000
Manifest this update: Sat 23 Aug 2025 12:00:23 +0000
Manifest next update: Sun 24 Aug 2025 12:00:23 +0000
Files and hashes: 1: jzztMLKFLlUseDdGcAPxdepZ3nM.crl (hash: LFj1tJrls1ftRSgZ2jT1NOrdDy7lfLmufkBshjltq50=)
2: zFUJjDGEsZJOucFbVCUxDXzsMU8.roa (hash: 2ZiCqHTVImshB2FLBBPRqOl/4XNJLXBYYXR20S0fJAg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/df9e2d-a033-40c0-a00f-e344fdb722a3/1/jzztMLKFLlUseDdGcAPxdepZ3nM.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/df9e2d-a033-40c0-a00f-e344fdb722a3/1/jzztMLKFLlUseDdGcAPxdepZ3nM.mft
rsync://rpki.ripe.net/repository/DEFAULT/jzztMLKFLlUseDdGcAPxdepZ3nM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:cd:1c:f0:29:57:ab:0c:81:2d:2b:ad:01:6a:51:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f3ced30b2852e552c7837467003f175ea59de73
Validity
Not Before: Aug 23 12:00:23 2025 GMT
Not After : Aug 24 12:00:23 2025 GMT
Subject: CN=859a0aca485eb627ac538869d725496d5da94af4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:4a:45:7a:f4:96:0e:b9:75:22:f6:e1:78:4b:
1b:fe:b5:63:c8:57:b5:22:0c:b3:39:7b:fb:74:33:
53:b4:3d:a7:1a:22:dd:5e:d7:23:5e:a3:24:9c:50:
5c:73:99:bf:5e:3f:60:d0:01:04:59:b9:f9:0f:18:
72:e3:44:7a:43:3f:26:c7:b2:39:48:5c:87:16:2e:
d8:3d:ae:b2:73:07:bd:de:e3:29:fa:2c:49:70:80:
b3:6c:00:d7:bc:0d:03:45:d8:1c:54:0c:4c:70:91:
07:b6:15:0a:59:67:27:cf:ae:36:b6:54:7b:f3:a1:
56:a5:02:b5:69:46:a4:9c:16:84:ce:b0:70:0b:29:
57:a1:1e:7a:78:ab:a6:fa:b1:4b:5c:80:0e:f6:94:
e1:a6:0f:3f:83:ba:9f:4b:9e:db:7e:f3:20:e0:f0:
d6:06:47:aa:16:96:1c:18:0e:b3:37:3f:af:32:ec:
96:73:77:b3:67:c4:4d:41:ab:e0:f0:98:79:b0:bf:
a9:01:e0:ed:e4:7a:3c:4d:07:0f:ba:0f:a9:98:19:
3c:36:7e:7d:b0:9a:5c:f8:d6:82:97:8e:99:53:2a:
c3:ca:3a:29:d9:8d:69:15:e3:5d:66:cb:95:03:8a:
02:32:04:65:6b:63:7a:54:52:87:a2:5c:ac:98:7e:
a9:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:9A:0A:CA:48:5E:B6:27:AC:53:88:69:D7:25:49:6D:5D:A9:4A:F4
X509v3 Authority Key Identifier:
keyid:8F:3C:ED:30:B2:85:2E:55:2C:78:37:46:70:03:F1:75:EA:59:DE:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzztMLKFLlUseDdGcAPxdepZ3nM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/df9e2d-a033-40c0-a00f-e344fdb722a3/1/jzztMLKFLlUseDdGcAPxdepZ3nM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/df9e2d-a033-40c0-a00f-e344fdb722a3/1/jzztMLKFLlUseDdGcAPxdepZ3nM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:13:a4:49:ef:d7:02:59:0a:1e:e3:1b:53:36:d8:d5:10:af:
fe:af:8a:12:97:b0:d2:40:b0:70:57:f2:88:b0:f1:cd:27:c5:
fd:4c:c0:74:2c:32:27:8d:5d:bc:0d:6a:a8:a7:8a:1f:43:c9:
f7:bc:a3:34:aa:fd:48:4a:ab:5b:33:21:e5:78:c2:f9:d8:4c:
9a:0f:4f:e7:3e:a9:ca:0c:50:bc:93:e8:7e:7e:93:fc:20:73:
e8:18:d2:dd:7e:e0:13:a9:27:5a:51:e1:f8:dd:78:82:4b:28:
f2:b8:31:d6:d1:f7:d5:25:4e:21:16:56:81:21:a0:71:fa:3d:
d8:25:aa:5d:ef:69:43:ca:8a:96:fc:ea:b1:d2:6f:b0:ab:e6:
d8:3d:85:26:d3:04:e7:7e:46:f6:fa:9a:69:65:95:e1:18:0d:
43:ed:fc:69:fd:95:2e:ba:bd:3b:de:c9:9e:b0:4f:07:90:e8:
da:2c:cb:a0:af:14:9a:02:11:d0:8b:08:70:0a:9c:a8:a2:6d:
69:ea:51:4b:fd:3b:19:d3:df:1a:14:b3:04:02:3b:2e:bb:2a:
49:d8:7d:3c:a9:51:5d:59:64:74:ae:cb:97:26:42:18:ba:de:
f4:18:e7:e9:e9:f0:9a:09:0a:88:48:eb:56:2b:8e:d8:1f:d8:
3c:04:ac:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 22:48:05 2025 by rpki-client