Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/jTUmuzG54wxJBF9DaMYC7pi-wBo.mft
File: jTUmuzG54wxJBF9DaMYC7pi-wBo.mft (raw, json)
Hash identifier: cpDU0cPjhXRrHHD6yeLAm1emzFcqhB3K8Z/hsAkiZ4M=
Subject key identifier: 49:A9:60:D9:03:A4:88:BF:9C:A1:E3:8F:8E:6C:EF:D6:AE:1F:05:72
Authority key identifier: 8D:35:26:BB:31:B9:E3:0C:49:04:5F:43:68:C6:02:EE:98:BE:C0:1A
Certificate issuer: /CN=8d3526bb31b9e30c49045f4368c602ee98bec01a
Certificate serial: 0197C07F283A683F6D7BCC45FE353DE574B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jTUmuzG54wxJBF9DaMYC7pi-wBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/jTUmuzG54wxJBF9DaMYC7pi-wBo.mft
Manifest number: 0308
Signing time: Mon 30 Jun 2025 11:00:48 +0000
Manifest this update: Mon 30 Jun 2025 11:00:48 +0000
Manifest next update: Tue 01 Jul 2025 11:00:48 +0000
Files and hashes: 1: e6xoJBVIfdJmiKe2nJgRQGtQ5ww.roa (hash: JfuVzsuhmGpnCucojoUfItSJOnwkZRw4nitsAmYaRLg=)
2: jTUmuzG54wxJBF9DaMYC7pi-wBo.crl (hash: SEH+NWBBcDRl4K7+MKgLLzlErcNTO1M1JFUOGnBTCzc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/jTUmuzG54wxJBF9DaMYC7pi-wBo.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/jTUmuzG54wxJBF9DaMYC7pi-wBo.mft
rsync://rpki.ripe.net/repository/DEFAULT/jTUmuzG54wxJBF9DaMYC7pi-wBo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 01 Jul 2025 07:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c0:7f:28:3a:68:3f:6d:7b:cc:45:fe:35:3d:e5:74:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d3526bb31b9e30c49045f4368c602ee98bec01a
Validity
Not Before: Jun 30 11:00:48 2025 GMT
Not After : Jul 1 11:00:48 2025 GMT
Subject: CN=49a960d903a488bf9ca1e38f8e6cefd6ae1f0572
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:f1:2c:11:d1:5f:3a:e5:b7:17:9f:ef:8d:ad:
fe:d6:28:5a:3a:5e:68:36:88:b9:ae:12:c2:1a:97:
d1:ac:e3:80:82:86:ae:03:26:e6:2e:51:27:98:3c:
e8:d7:4b:ad:c1:91:89:4d:62:fb:0d:40:c7:e1:22:
48:0d:24:55:4c:f2:09:73:54:87:1c:30:36:31:2b:
3c:a4:c2:f2:83:ef:98:02:db:f6:cc:33:b7:c3:a2:
b5:bc:df:f1:7b:ea:c0:62:2e:b7:30:4f:37:38:0c:
0d:ec:98:1d:08:76:3c:c4:12:83:23:8d:69:64:e1:
21:0c:94:28:82:74:d4:06:df:31:c6:c8:b2:08:9f:
07:71:ad:a5:7e:a3:0a:5d:a0:fd:75:0a:4d:65:3a:
68:d6:64:c8:24:cb:68:0b:da:af:a5:4d:87:ee:6b:
48:8c:9f:bb:0e:5e:1f:e1:29:b9:26:1d:68:ca:c4:
86:27:87:72:f2:ad:4b:65:55:91:58:90:cc:9a:95:
83:78:48:8c:64:84:1b:ca:f8:a0:6f:68:57:aa:fd:
7d:ce:bf:ba:98:4d:ca:b4:90:6d:6d:f5:81:fb:e1:
ec:ee:19:fc:04:c1:3f:c7:95:4e:15:55:01:83:f6:
a4:ec:21:d4:54:07:72:0b:b5:1c:73:0d:f6:f8:f0:
51:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:A9:60:D9:03:A4:88:BF:9C:A1:E3:8F:8E:6C:EF:D6:AE:1F:05:72
X509v3 Authority Key Identifier:
keyid:8D:35:26:BB:31:B9:E3:0C:49:04:5F:43:68:C6:02:EE:98:BE:C0:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jTUmuzG54wxJBF9DaMYC7pi-wBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/jTUmuzG54wxJBF9DaMYC7pi-wBo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/jTUmuzG54wxJBF9DaMYC7pi-wBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:1c:9e:82:f3:df:8a:45:27:fa:43:a6:ac:da:bb:df:5e:3e:
34:db:a9:71:cb:2d:52:78:13:fb:81:df:69:1e:c4:44:de:32:
fd:10:26:cd:f4:b7:8d:b2:14:ba:24:5b:a5:ae:ce:9d:17:70:
e9:8d:92:66:af:88:85:fd:d3:64:b2:66:6a:47:af:0b:14:27:
90:f3:e4:87:22:db:4d:10:5f:c9:9d:d5:97:ad:c1:83:ad:62:
8e:db:15:d0:1d:e3:c0:12:45:93:ae:b6:c5:30:1a:0f:1e:83:
c9:71:8e:2c:85:65:46:d3:7c:00:ea:d8:59:0c:61:b4:a9:e0:
21:73:43:32:bb:2e:a8:11:91:07:e8:bb:c2:94:99:f4:7a:de:
c3:71:9a:9f:60:e8:ed:46:8c:4f:e2:5a:e6:ff:3b:61:76:78:
7c:c5:6d:98:5c:f7:d3:c8:2e:16:6f:60:3f:27:cf:25:cc:05:
1f:4e:56:27:5d:49:38:bd:50:d8:33:7b:2d:ae:31:c3:2a:27:
93:85:9b:87:af:c2:3a:3b:02:66:7b:6b:c0:f3:3c:1a:a8:54:
e9:5c:3b:69:cf:27:6c:de:61:34:4c:bd:ee:81:b2:6b:63:f3:
d8:42:ec:0f:fb:b4:1b:5a:46:86:7e:c0:96:a8:62:06:ec:82:
4e:d7:bd:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 30 14:57:29 2025 by rpki-client