Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/5a1cad-0c65-4800-8865-cca9df6e19e3/1/jmcNnjgoGVjuocw46s67vcM4HTY.mft
File: jmcNnjgoGVjuocw46s67vcM4HTY.mft (raw, json)
Hash identifier: U0b9nc3HTffsywu9ewEfa/+SphpFZk+YYx20go6MfHk=
Subject key identifier: 75:0E:51:EB:BA:66:98:29:EF:97:46:22:07:1F:F8:A6:05:84:49:4F
Authority key identifier: 8E:67:0D:9E:38:28:19:58:EE:A1:CC:38:EA:CE:BB:BD:C3:38:1D:36
Certificate issuer: /CN=8e670d9e38281958eea1cc38eacebbbdc3381d36
Certificate serial: 0198D660BA94FE969151A929ABC2156E4AED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jmcNnjgoGVjuocw46s67vcM4HTY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/5a1cad-0c65-4800-8865-cca9df6e19e3/1/jmcNnjgoGVjuocw46s67vcM4HTY.mft
Manifest number: 0B24
Signing time: Sat 23 Aug 2025 10:02:00 +0000
Manifest this update: Sat 23 Aug 2025 10:02:00 +0000
Manifest next update: Sun 24 Aug 2025 10:02:00 +0000
Files and hashes: 1: jmcNnjgoGVjuocw46s67vcM4HTY.crl (hash: b723xZcdk3Wg0A8YP4W6dAplU+/8bGInPOj+JxAko4c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/5a1cad-0c65-4800-8865-cca9df6e19e3/1/jmcNnjgoGVjuocw46s67vcM4HTY.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/5a1cad-0c65-4800-8865-cca9df6e19e3/1/jmcNnjgoGVjuocw46s67vcM4HTY.mft
rsync://rpki.ripe.net/repository/DEFAULT/jmcNnjgoGVjuocw46s67vcM4HTY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:ba:94:fe:96:91:51:a9:29:ab:c2:15:6e:4a:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e670d9e38281958eea1cc38eacebbbdc3381d36
Validity
Not Before: Aug 23 10:02:00 2025 GMT
Not After : Aug 24 10:02:00 2025 GMT
Subject: CN=750e51ebba669829ef974622071ff8a60584494f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:01:37:49:af:38:08:99:1b:69:ad:bf:3a:97:
c6:5d:c3:38:6b:21:93:24:55:73:61:fc:49:51:01:
5c:1c:6f:98:f3:8f:ae:56:a9:9a:0a:8f:8d:e0:4a:
e7:16:11:6a:7e:8e:bb:7f:7f:ee:2d:28:0f:ba:29:
69:8c:5b:55:06:71:eb:49:02:98:f6:dc:6d:e7:93:
16:81:01:74:6f:ee:20:df:fc:5a:95:98:9f:fb:4c:
1a:85:f2:6f:2e:10:4d:d0:d7:db:b6:19:5d:4f:bd:
15:49:2e:bc:18:9e:5f:2a:38:ad:1a:58:c0:64:bc:
88:b4:e5:56:a9:84:0b:3e:55:2b:6e:15:35:fe:df:
ac:c0:59:13:b9:47:29:93:ce:e6:4c:61:de:52:c3:
fb:8a:b3:0d:a2:db:57:48:c1:0a:45:01:ca:48:a3:
cc:fa:68:93:74:15:ec:33:b7:4a:cf:01:15:19:36:
55:6e:eb:5f:bf:42:95:93:3b:aa:5b:b1:1e:27:9c:
87:ea:0c:29:5a:24:b4:f8:a9:83:9f:26:91:cd:eb:
5c:4a:ff:84:84:85:7c:49:cd:cb:91:00:b6:1f:3b:
fb:03:55:90:75:3f:d3:69:c2:bd:43:e1:7b:0e:0e:
48:7b:66:58:e2:0a:5e:1f:e6:d7:71:27:ce:95:0a:
10:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:0E:51:EB:BA:66:98:29:EF:97:46:22:07:1F:F8:A6:05:84:49:4F
X509v3 Authority Key Identifier:
keyid:8E:67:0D:9E:38:28:19:58:EE:A1:CC:38:EA:CE:BB:BD:C3:38:1D:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jmcNnjgoGVjuocw46s67vcM4HTY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/5a1cad-0c65-4800-8865-cca9df6e19e3/1/jmcNnjgoGVjuocw46s67vcM4HTY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/5a1cad-0c65-4800-8865-cca9df6e19e3/1/jmcNnjgoGVjuocw46s67vcM4HTY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:3f:8a:28:bd:46:f2:55:62:de:78:56:60:46:27:72:07:15:
8d:05:4b:ba:4c:5e:9d:e3:59:71:6b:08:b0:82:00:e5:a6:10:
ee:c2:f2:30:63:89:75:0c:a2:a5:e3:74:70:bd:82:7b:66:76:
ca:7c:0e:7a:72:32:d5:90:03:87:c9:97:3c:be:57:a8:60:de:
5a:78:b8:eb:6b:93:39:ee:d2:7c:d2:9f:30:6a:55:a5:ff:ce:
d9:67:d3:ad:78:ea:00:0d:dc:20:fd:38:7a:03:92:95:2e:7c:
45:d9:79:59:03:d8:5f:ee:f7:cb:62:ab:72:c0:63:60:4c:75:
7d:94:f2:0e:a0:80:2e:63:6c:25:74:44:e2:36:95:7d:db:8d:
13:af:7d:b8:49:c3:0e:f0:64:13:3f:99:c0:de:18:2b:62:f3:
a8:5c:c9:02:38:df:06:fd:26:0b:90:2b:b3:76:aa:57:03:56:
28:c0:30:2d:6c:9b:42:bc:31:22:f6:0b:49:14:fb:25:ae:2e:
64:46:3e:8a:48:11:77:3d:a9:b8:ad:62:00:bd:13:4b:2e:81:
f0:a9:eb:58:c9:c3:a2:2a:69:fd:8c:17:5d:47:c4:ff:7b:63:
5b:b9:94:a8:91:b6:95:b0:c9:c7:30:49:00:67:9f:ca:3e:0e:
38:11:6c:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:29:14 2025 by rpki-client