Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
File: JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft (raw, json)
Hash identifier: mHzwKV2hWkZfP1n4lT0gQ7JvbSqB2Eg3UWoO65KfUE4=
Subject key identifier: 95:2D:AB:99:E2:2F:76:92:F8:CD:0F:2C:DA:7F:E8:F6:B9:EA:48:19
Authority key identifier: 24:A9:D8:4C:6D:16:C0:83:09:3C:33:71:B4:57:5D:36:EF:44:8F:E4
Certificate issuer: /CN=24a9d84c6d16c083093c3371b4575d36ef448fe4
Certificate serial: 0199FC8F1AD689260E923052E7B06113238E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
Manifest number: 0A94
Signing time: Sun 19 Oct 2025 13:01:00 +0000
Manifest this update: Sun 19 Oct 2025 13:01:00 +0000
Manifest next update: Mon 20 Oct 2025 13:01:00 +0000
Files and hashes: 1: JKnYTG0WwIMJPDNxtFddNu9Ej-Q.crl (hash: nG3ZdekvWOwAO2C6OenRIUXqPbqrkWrc3re58AfQnGk=)
2: sEY4t-bPe6btAR7wv3UJWwU-X2E.roa (hash: aU4yEzDR1E1BJAYcSFYYldSWQZ2ELBxfjYhJldcUrMM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:1a:d6:89:26:0e:92:30:52:e7:b0:61:13:23:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24a9d84c6d16c083093c3371b4575d36ef448fe4
Validity
Not Before: Oct 19 13:01:00 2025 GMT
Not After : Oct 20 13:01:00 2025 GMT
Subject: CN=952dab99e22f7692f8cd0f2cda7fe8f6b9ea4819
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:d2:b0:4f:ed:6b:55:cd:9e:43:df:d6:10:e3:
e3:a2:19:ff:27:5b:f3:e0:30:e4:49:c3:15:cc:03:
fa:58:87:c4:ca:8e:ab:96:81:7b:2b:c5:42:83:d3:
a4:98:4e:7c:d7:93:a4:6b:aa:5a:b8:b1:99:da:2f:
4d:35:33:3e:2b:32:6f:da:88:0e:8c:fc:ef:01:62:
03:dd:5e:b2:2b:59:43:75:6d:b7:21:0f:84:42:bc:
c8:06:be:b0:e0:c5:08:4f:73:5d:ce:ef:65:40:20:
39:93:a4:5e:16:37:d3:de:42:ef:50:23:09:a5:ae:
fd:58:af:de:98:99:93:e6:a4:63:72:56:3e:8a:e9:
63:e5:0c:c2:a8:59:4a:62:d6:74:0e:9b:03:ee:d1:
50:1d:c2:d4:d1:e8:08:67:fa:cc:86:1c:da:59:2b:
df:ae:4e:51:5d:88:04:c0:bd:f9:2a:aa:34:2f:e6:
a9:3c:c3:18:6e:ca:f7:e5:bc:b3:82:33:eb:5b:ca:
d2:e2:70:bb:66:1e:aa:62:c0:4e:be:99:ae:9f:fe:
34:19:d1:be:3d:9f:60:c7:08:97:f2:0e:db:a8:80:
16:68:6d:09:ca:58:34:5f:09:cc:df:81:6e:69:70:
36:00:76:84:7d:2e:1e:11:c2:0b:03:19:40:d0:8e:
23:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:2D:AB:99:E2:2F:76:92:F8:CD:0F:2C:DA:7F:E8:F6:B9:EA:48:19
X509v3 Authority Key Identifier:
keyid:24:A9:D8:4C:6D:16:C0:83:09:3C:33:71:B4:57:5D:36:EF:44:8F:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:a8:9f:2e:ac:54:bd:20:e9:c8:0f:0e:4e:0f:d4:5c:6e:69:
61:90:8a:39:aa:6b:61:09:85:51:98:f0:1b:56:83:0d:d9:88:
bc:e3:c5:48:bd:5c:ef:c1:bf:cc:c1:34:02:0a:4a:97:87:b0:
47:c8:79:2d:55:46:90:e5:eb:6b:ce:9e:bf:4d:11:83:4a:cd:
a7:4e:3f:c9:f1:da:70:55:19:cb:45:3e:bb:38:b8:27:0b:a4:
0f:12:3e:b6:b1:30:57:51:ff:4c:bb:a2:cf:69:3d:2f:9f:4a:
ab:2b:01:c8:79:5c:63:4e:c4:a2:8a:6a:12:b2:cc:c7:a8:ac:
8a:1e:45:3c:38:58:c7:d1:3d:18:80:a2:6b:0c:84:7f:30:83:
37:b0:1b:f3:1d:60:17:02:f9:93:f6:5f:02:e8:52:26:bd:13:
fc:29:f5:93:91:4e:cd:df:b7:ba:d1:88:30:b0:8b:f2:33:f6:
6b:2d:7a:29:24:53:45:3a:0d:53:f1:69:56:14:46:a5:ae:49:
02:53:43:1d:f9:c9:e9:0e:3a:57:98:6c:49:01:b2:5c:16:c0:
24:72:3a:7b:7e:8d:c6:26:cc:58:68:69:31:3f:9d:b7:94:db:
94:67:2c:c2:37:0e:d8:59:0c:60:b9:af:c4:ed:df:6e:05:5e:
f1:1e:36:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:42:10 2025 by rpki-client