Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
File: JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft (raw, json)
Hash identifier: DgCA8/B5wAaAVaN4VwRSgC6q1G0bgwKfNcIONkpOFQY=
Subject key identifier: 13:77:3B:F9:64:FB:98:E3:C6:AA:A5:07:03:19:08:FF:B3:33:6C:34
Authority key identifier: 24:A9:D8:4C:6D:16:C0:83:09:3C:33:71:B4:57:5D:36:EF:44:8F:E4
Certificate issuer: /CN=24a9d84c6d16c083093c3371b4575d36ef448fe4
Certificate serial: 0197B745A394BE936C70E9C3CD56C007531A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
Manifest number: 0967
Signing time: Sat 28 Jun 2025 16:01:23 +0000
Manifest this update: Sat 28 Jun 2025 16:01:23 +0000
Manifest next update: Sun 29 Jun 2025 16:01:23 +0000
Files and hashes: 1: JKnYTG0WwIMJPDNxtFddNu9Ej-Q.crl (hash: o1sJs1QkqZ9f9CNHcC76o/zYKhQ8Zw58Yu9OlNd2VHg=)
2: sEY4t-bPe6btAR7wv3UJWwU-X2E.roa (hash: aU4yEzDR1E1BJAYcSFYYldSWQZ2ELBxfjYhJldcUrMM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:a3:94:be:93:6c:70:e9:c3:cd:56:c0:07:53:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24a9d84c6d16c083093c3371b4575d36ef448fe4
Validity
Not Before: Jun 28 16:01:23 2025 GMT
Not After : Jun 29 16:01:23 2025 GMT
Subject: CN=13773bf964fb98e3c6aaa507031908ffb3336c34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:d8:9a:d2:65:e2:2b:38:2c:a1:f8:f3:98:78:
0c:1f:bd:d6:34:c5:ca:d4:ee:ee:ff:9a:73:a8:c4:
eb:6c:7c:2e:a3:ec:03:42:23:c2:6e:5d:cc:d7:e8:
92:d5:2f:b6:64:55:78:1c:5a:3c:6e:ac:62:d4:28:
d7:90:a9:a0:80:a6:2d:18:0f:e8:0c:e1:ab:ef:bf:
c2:52:bb:86:f3:9d:43:f0:84:9a:9e:bf:9d:98:ec:
9a:6b:b5:a6:09:1a:76:2d:85:ba:e3:a6:db:d5:59:
17:03:55:83:68:f1:45:6c:fb:a5:ba:81:04:f7:17:
a7:9c:d3:ec:e0:00:fc:5d:28:0a:ae:2c:46:69:bf:
0d:3d:00:ab:41:5c:4b:2f:df:d6:be:b2:72:3a:7c:
24:b7:f2:17:3f:37:2a:f1:ae:2c:f7:f6:66:c1:61:
38:d2:70:72:b1:72:e1:d8:71:64:ad:3c:71:6f:ef:
6a:2f:dc:60:e6:b5:13:24:64:08:7c:97:ae:c8:cd:
57:14:fc:e0:3f:fe:ac:0f:19:20:1b:81:c3:13:1a:
38:15:dc:10:55:50:32:a3:56:b1:1b:80:d8:76:15:
e3:73:c5:cd:7f:7e:5c:af:75:5e:d1:be:08:cc:e9:
57:be:bf:cb:35:7a:3f:33:49:45:89:67:2a:9e:38:
1a:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:77:3B:F9:64:FB:98:E3:C6:AA:A5:07:03:19:08:FF:B3:33:6C:34
X509v3 Authority Key Identifier:
keyid:24:A9:D8:4C:6D:16:C0:83:09:3C:33:71:B4:57:5D:36:EF:44:8F:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:be:33:4e:78:f6:30:a7:17:1f:f3:e1:da:c0:f0:f6:02:f8:
f5:24:cb:26:6a:e1:c4:67:29:68:9f:96:a9:53:03:93:f7:73:
63:15:d0:89:63:c8:83:71:40:8b:3a:c8:4b:b9:9b:92:c3:30:
14:42:bf:c9:58:b1:f2:8b:a3:58:99:4e:e7:8c:9a:ed:19:9d:
60:13:05:82:a0:37:45:da:de:7a:e3:2e:b8:f8:92:14:aa:9b:
eb:71:54:c3:38:40:5d:41:63:31:64:98:24:fd:e9:f8:19:3f:
f0:e8:ae:89:99:77:e8:04:fc:e0:c7:4d:f8:00:b6:54:82:ad:
5f:36:b5:7c:12:bd:67:c0:4e:dd:28:7a:9f:76:49:85:63:04:
85:ad:fa:10:b3:ae:8b:f8:74:1e:3d:ca:46:ad:e5:de:2a:de:
6c:04:fc:dc:ce:b4:3d:72:f6:2d:6d:99:22:ec:d8:29:c7:dd:
5c:f4:d0:52:5a:a6:b2:9b:d4:df:e4:ae:77:3c:4b:07:4e:00:
14:29:50:15:04:b7:10:74:8a:37:05:68:2a:0a:11:e0:f4:36:
84:4f:4f:ab:28:af:37:88:4d:c9:82:18:eb:89:31:7b:8b:86:
a9:15:eb:ea:9d:a4:d3:fd:e3:10:b1:ed:6d:27:8a:ed:fb:a2:
83:70:bb:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:52:25 2025 by rpki-client