Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/jTUmuzG54wxJBF9DaMYC7pi-wBo.mft
File: jTUmuzG54wxJBF9DaMYC7pi-wBo.mft (raw, json)
Hash identifier: rsObWEGPlRVRV004I1q3VTxLRPG0dtdTbzUJOgPndrk=
Subject key identifier: C1:14:A7:4C:8A:93:C9:2E:05:BF:97:5F:E1:2D:C3:48:6B:24:5E:36
Authority key identifier: 8D:35:26:BB:31:B9:E3:0C:49:04:5F:43:68:C6:02:EE:98:BE:C0:1A
Certificate issuer: /CN=8d3526bb31b9e30c49045f4368c602ee98bec01a
Certificate serial: 0199FC215645861DE7D3564BB5BD292674BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jTUmuzG54wxJBF9DaMYC7pi-wBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/jTUmuzG54wxJBF9DaMYC7pi-wBo.mft
Manifest number: 0430
Signing time: Sun 19 Oct 2025 11:01:07 +0000
Manifest this update: Sun 19 Oct 2025 11:01:07 +0000
Manifest next update: Mon 20 Oct 2025 11:01:07 +0000
Files and hashes: 1: e6xoJBVIfdJmiKe2nJgRQGtQ5ww.roa (hash: JfuVzsuhmGpnCucojoUfItSJOnwkZRw4nitsAmYaRLg=)
2: jTUmuzG54wxJBF9DaMYC7pi-wBo.crl (hash: KSNqGBJnc5D75u5U7NmkvlXvGhd63QAqng9FY2CBVI8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/jTUmuzG54wxJBF9DaMYC7pi-wBo.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/jTUmuzG54wxJBF9DaMYC7pi-wBo.mft
rsync://rpki.ripe.net/repository/DEFAULT/jTUmuzG54wxJBF9DaMYC7pi-wBo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:56:45:86:1d:e7:d3:56:4b:b5:bd:29:26:74:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d3526bb31b9e30c49045f4368c602ee98bec01a
Validity
Not Before: Oct 19 11:01:07 2025 GMT
Not After : Oct 20 11:01:07 2025 GMT
Subject: CN=c114a74c8a93c92e05bf975fe12dc3486b245e36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:99:50:13:46:ca:82:12:a8:ed:39:63:1f:ff:
f0:4c:98:48:34:23:82:d6:bb:72:c6:54:fd:3e:fa:
fc:0a:9c:4f:1d:03:f8:f4:07:69:70:6f:1d:e0:fb:
b3:4e:8d:3e:ed:1f:7f:c9:b8:6e:99:46:91:6d:b7:
19:d9:43:0d:08:92:eb:36:5a:89:21:9d:d3:4d:20:
b8:c8:fc:a9:bf:f1:9a:2a:53:b4:0e:d2:5a:9a:03:
10:95:14:7c:4c:34:60:07:41:f0:09:7c:57:87:96:
bb:15:f6:49:da:9d:5b:53:3d:02:c5:13:3b:db:f2:
09:e8:11:cf:42:25:91:0d:57:14:85:d3:9e:c4:93:
4e:ca:d4:4c:9d:13:61:f9:6b:4f:84:20:e3:f4:11:
2f:28:cb:51:d7:c0:ef:f4:7b:a5:4d:7b:f3:4f:6c:
d1:8e:6d:4a:2e:69:65:2a:3a:6a:da:27:97:07:64:
ef:b5:4e:9e:37:bd:3e:d4:cc:ab:01:de:b4:f2:2a:
c3:e1:7e:51:79:5e:1d:de:0e:a3:90:16:28:b1:11:
61:c4:5f:14:df:4b:0a:e7:11:20:a0:d5:0a:ae:c7:
7a:bd:0e:32:0c:d9:1d:a9:4c:73:72:32:d8:3d:e9:
76:ee:14:79:08:54:e3:ac:ef:75:66:c6:78:d4:07:
70:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:14:A7:4C:8A:93:C9:2E:05:BF:97:5F:E1:2D:C3:48:6B:24:5E:36
X509v3 Authority Key Identifier:
keyid:8D:35:26:BB:31:B9:E3:0C:49:04:5F:43:68:C6:02:EE:98:BE:C0:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jTUmuzG54wxJBF9DaMYC7pi-wBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/jTUmuzG54wxJBF9DaMYC7pi-wBo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/jTUmuzG54wxJBF9DaMYC7pi-wBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:7b:ae:77:6f:4d:5b:85:03:ed:30:04:73:53:9a:c5:04:af:
21:cc:05:5e:f1:7b:74:01:28:7b:27:a4:87:41:f7:56:ba:3e:
b8:5a:1c:bf:a2:b8:1c:f2:68:88:ae:16:e6:03:c0:a9:9a:4f:
4c:c4:be:82:e5:7c:5d:a6:f8:d0:e6:5e:fe:d0:68:fc:99:d9:
71:35:5b:97:be:f2:73:a0:d9:63:c2:7a:39:b9:dc:03:38:e3:
f7:fd:0a:33:9b:6f:46:96:f3:9a:39:8b:e3:f9:d1:3d:e0:82:
67:fb:51:2f:22:91:fd:c1:d9:bf:2d:91:ea:ba:9b:74:e3:ab:
ae:d9:f9:a7:c9:c1:8b:59:b0:c2:9d:f4:5f:ee:df:96:52:27:
8a:5e:a2:f6:1d:91:0d:65:49:8f:b9:2f:21:26:3c:16:ac:a4:
9f:2f:df:24:e4:37:d9:18:26:77:60:ce:36:f8:d4:59:1a:ea:
32:78:60:85:69:47:84:27:72:f8:54:23:77:11:4a:7f:af:82:
0c:1a:e4:cf:7e:b0:d4:1a:36:64:c2:2c:cc:f2:c1:f7:61:53:
a1:71:8e:ff:d0:05:3f:85:6c:7c:6c:aa:24:b3:f8:ca:e6:95:
eb:c2:5a:18:b5:58:a5:50:58:29:95:3a:15:ea:6b:c1:ce:4f:
ee:0f:5f:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:10:03 2025 by rpki-client