Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
File: JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft (raw, json)
Hash identifier: eHx2axt4cn8JYVhO4ZhzpuTSfyT4wFR2vUquJzHKgtQ=
Subject key identifier: C5:DB:5A:6B:E4:30:13:BB:EE:A7:D2:EC:BD:95:4E:EB:A9:7B:29:3D
Authority key identifier: 24:A9:D8:4C:6D:16:C0:83:09:3C:33:71:B4:57:5D:36:EF:44:8F:E4
Certificate issuer: /CN=24a9d84c6d16c083093c3371b4575d36ef448fe4
Certificate serial: 0198D515622EEE0BDC93E6F7759571E93CE5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
Manifest number: 09FB
Signing time: Sat 23 Aug 2025 04:00:04 +0000
Manifest this update: Sat 23 Aug 2025 04:00:04 +0000
Manifest next update: Sun 24 Aug 2025 04:00:04 +0000
Files and hashes: 1: JKnYTG0WwIMJPDNxtFddNu9Ej-Q.crl (hash: AgRGbzUggtqdvIUNC/i0WfOKdvujVqYaV3fRZ1m4Nq8=)
2: sEY4t-bPe6btAR7wv3UJWwU-X2E.roa (hash: aU4yEzDR1E1BJAYcSFYYldSWQZ2ELBxfjYhJldcUrMM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:62:2e:ee:0b:dc:93:e6:f7:75:95:71:e9:3c:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24a9d84c6d16c083093c3371b4575d36ef448fe4
Validity
Not Before: Aug 23 04:00:04 2025 GMT
Not After : Aug 24 04:00:04 2025 GMT
Subject: CN=c5db5a6be43013bbeea7d2ecbd954eeba97b293d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ea:63:e3:f6:e1:cd:66:06:8d:c6:bd:76:f3:
58:1f:4f:84:61:93:de:9f:89:24:3b:3f:39:fd:5a:
fe:8d:f8:a7:6a:8f:b9:74:50:6b:2c:62:ef:bf:05:
28:12:ae:62:04:83:e2:01:85:b7:7c:51:af:e3:7d:
97:fa:12:1b:67:39:32:82:37:9f:ce:34:61:96:52:
ce:3a:ed:5d:59:eb:c8:00:f3:2f:46:1e:ea:7f:f8:
ea:54:40:f3:14:00:7c:50:0b:02:36:1e:e2:3e:da:
c1:65:f8:e3:1f:f0:15:6f:44:3b:82:ef:9b:bc:34:
5d:80:c1:d1:d0:c2:75:4c:ff:35:51:fb:2f:26:38:
ca:d1:af:93:58:3f:13:36:5e:f7:70:0a:41:71:e2:
c3:b9:b0:00:6f:35:64:81:cb:75:c9:98:e5:85:c2:
8b:d7:71:9f:39:a0:15:fa:84:f9:8f:9c:eb:dc:7b:
61:94:d4:1c:82:a4:a4:d4:56:48:55:77:3a:75:a2:
a0:25:0d:99:f3:14:d9:35:2f:52:cc:86:ef:f9:05:
3e:8b:a5:64:24:99:8d:7b:96:79:91:9d:d4:8c:eb:
13:85:83:08:9a:2e:ed:ae:36:e8:17:58:98:3a:36:
53:99:55:c4:dc:ab:c5:ae:76:80:1c:f7:4d:44:aa:
4f:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:DB:5A:6B:E4:30:13:BB:EE:A7:D2:EC:BD:95:4E:EB:A9:7B:29:3D
X509v3 Authority Key Identifier:
keyid:24:A9:D8:4C:6D:16:C0:83:09:3C:33:71:B4:57:5D:36:EF:44:8F:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:15:a1:ad:d1:51:95:55:ca:69:fa:68:a3:94:80:6c:97:0e:
c6:ff:2c:d5:a6:d2:c9:f4:6b:02:2b:87:bc:58:9e:e1:4d:ba:
14:05:88:aa:d1:71:30:ec:52:3b:2f:0d:e2:35:c0:dc:4b:bd:
8f:b9:51:1c:59:7c:e8:c2:03:cf:66:ea:b9:1d:0b:4a:7a:1e:
90:e1:fe:93:0f:cc:14:36:0e:52:3b:30:e7:ef:90:13:c4:63:
77:a2:5a:18:fb:1c:31:f1:ae:ae:c0:68:ab:fa:ce:b2:25:64:
a0:5c:b5:e0:85:f9:d8:ed:8b:49:c1:31:75:3f:66:99:fe:34:
69:b8:4d:f6:1d:cf:ee:96:fd:68:dd:3c:d7:41:dd:06:0f:cb:
37:55:d4:af:7b:ac:25:5d:c7:3e:77:ba:4d:70:56:39:42:7e:
6e:69:e6:e9:cb:52:42:f7:bd:98:5d:56:b3:a1:7c:db:a9:42:
4c:48:18:82:a1:b9:f2:e0:3c:0f:db:d2:71:23:32:2b:48:bd:
58:8e:a1:4a:e5:90:50:75:4c:1c:7f:76:fd:0e:9e:74:11:f4:
a6:bc:b1:35:b5:c4:96:87:c6:6b:77:00:32:b2:73:95:42:a7:
b8:41:a7:06:5b:27:6b:ef:93:a0:70:e4:f4:b8:1b:d7:80:79:
83:45:38:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:39:34 2025 by rpki-client