Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/jTUmuzG54wxJBF9DaMYC7pi-wBo.mft
File: jTUmuzG54wxJBF9DaMYC7pi-wBo.mft (raw, json)
Hash identifier: EwSUlJsFXqH0FORX3cEQJwArMia3cBEkDKLcVBBduq8=
Subject key identifier: FB:20:9B:C6:99:32:B7:FC:C5:AA:0C:9C:24:9D:1E:AC:15:97:35:B7
Authority key identifier: 8D:35:26:BB:31:B9:E3:0C:49:04:5F:43:68:C6:02:EE:98:BE:C0:1A
Certificate issuer: /CN=8d3526bb31b9e30c49045f4368c602ee98bec01a
Certificate serial: 0196C382BFA177D180BB29FF20A2C37960C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jTUmuzG54wxJBF9DaMYC7pi-wBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/jTUmuzG54wxJBF9DaMYC7pi-wBo.mft
Manifest number: 0285
Signing time: Mon 12 May 2025 08:00:47 +0000
Manifest this update: Mon 12 May 2025 08:00:47 +0000
Manifest next update: Tue 13 May 2025 08:00:47 +0000
Files and hashes: 1: e6xoJBVIfdJmiKe2nJgRQGtQ5ww.roa (hash: JfuVzsuhmGpnCucojoUfItSJOnwkZRw4nitsAmYaRLg=)
2: jTUmuzG54wxJBF9DaMYC7pi-wBo.crl (hash: qorCW9GIXYasqQTI6Cms/QHNuBJKQHedpKZfAojjlYE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/jTUmuzG54wxJBF9DaMYC7pi-wBo.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/jTUmuzG54wxJBF9DaMYC7pi-wBo.mft
rsync://rpki.ripe.net/repository/DEFAULT/jTUmuzG54wxJBF9DaMYC7pi-wBo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:82:bf:a1:77:d1:80:bb:29:ff:20:a2:c3:79:60:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d3526bb31b9e30c49045f4368c602ee98bec01a
Validity
Not Before: May 12 08:00:47 2025 GMT
Not After : May 13 08:00:47 2025 GMT
Subject: CN=fb209bc69932b7fcc5aa0c9c249d1eac159735b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:a1:09:45:cc:f0:6b:fb:eb:44:03:2b:31:9c:
8f:55:42:eb:74:a3:34:fb:57:c9:d3:20:b2:7d:02:
0f:b5:19:0c:eb:a5:86:6f:af:ff:0e:ad:29:28:e6:
36:a9:3d:27:01:44:dd:a6:aa:40:39:06:48:36:b9:
de:0a:6c:80:07:44:28:74:d3:8d:19:c3:b7:80:97:
50:b3:81:31:6e:df:71:26:e0:8e:ad:cc:45:7f:01:
97:1b:e5:9a:46:f5:f8:e0:23:a6:ab:60:c9:97:4a:
f2:39:1e:15:80:79:e9:11:15:3f:0e:12:59:41:6c:
96:ad:2e:37:e1:80:4f:0c:28:82:98:c6:80:59:0f:
18:cc:47:a1:92:ea:27:64:c6:28:60:25:6f:e4:36:
81:ef:9a:57:b6:c2:d1:f9:d3:87:21:00:7b:b0:9c:
61:cc:4c:1d:c5:b7:a9:85:e9:85:c5:ae:ba:33:5b:
32:a3:68:05:37:9f:06:55:d2:98:6d:e9:e8:f4:6a:
9c:51:d0:e4:1e:7f:ea:29:cd:75:b9:b0:e2:6f:66:
64:7c:71:25:cc:13:87:4c:f3:bd:b3:ed:43:85:e1:
7e:2e:ba:d6:ff:2b:3b:3d:66:62:7a:04:ff:f1:87:
f2:ab:c8:89:ee:17:8c:26:7d:1a:4b:23:aa:a8:e4:
0e:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:20:9B:C6:99:32:B7:FC:C5:AA:0C:9C:24:9D:1E:AC:15:97:35:B7
X509v3 Authority Key Identifier:
keyid:8D:35:26:BB:31:B9:E3:0C:49:04:5F:43:68:C6:02:EE:98:BE:C0:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jTUmuzG54wxJBF9DaMYC7pi-wBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/jTUmuzG54wxJBF9DaMYC7pi-wBo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/jTUmuzG54wxJBF9DaMYC7pi-wBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:10:8f:2e:81:84:69:f0:8e:7b:90:6f:8f:19:fd:53:82:df:
e0:55:49:92:12:33:e3:06:df:71:b1:75:99:68:81:91:10:b0:
df:37:18:ce:b6:9c:f5:79:e1:2d:53:48:02:3d:92:2b:d2:80:
cc:06:d0:66:4d:a5:04:8e:3b:e5:61:04:94:37:02:07:e1:10:
82:9c:8c:3e:fa:78:52:b7:89:4d:44:da:b2:65:59:37:b9:df:
28:68:67:15:a2:66:82:d8:85:96:84:b3:37:89:cb:95:fd:34:
2b:f5:38:05:a2:ee:06:63:0f:1d:3a:c6:58:82:47:f9:03:5d:
d9:29:9b:bf:87:b8:c3:8e:47:43:0c:c6:26:b1:c9:f0:cf:3c:
7b:23:71:9b:2a:72:d8:bf:f8:87:37:8b:ba:4d:06:97:ae:df:
9e:14:c9:3c:12:71:e8:01:ed:c3:ab:b0:4c:56:e4:e6:c7:2e:
f6:78:01:cc:a1:5a:e3:31:cd:81:86:fc:8e:e7:cb:21:b6:0f:
08:27:d1:f0:f0:37:65:68:b3:d7:e8:76:6f:6b:59:d7:a5:7f:
a1:00:02:06:45:1a:4e:0d:a3:d2:4b:a9:02:a3:7d:86:20:31:
1e:02:5f:48:86:31:79:6e:53:b7:a7:b0:a2:c2:52:ae:1c:e0:
4c:db:6d:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 11:19:30 2025 by rpki-client