Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/95df81-fc9e-4c5f-bb43-ffb028f0a02f/1/JAy7mUeWHigo2EdLysoem5FVZWA.mft
File: JAy7mUeWHigo2EdLysoem5FVZWA.mft (raw, json)
Hash identifier: kmhvXDfQpkw19wKw/q1Mk8VN1dyvObk/qZMhlMGVAuE=
Subject key identifier: 02:BC:29:3E:DC:E5:61:F0:C7:49:BD:4E:28:92:75:34:03:48:33:B7
Authority key identifier: 24:0C:BB:99:47:96:1E:28:28:D8:47:4B:CA:CA:1E:9B:91:55:65:60
Certificate issuer: /CN=240cbb9947961e2828d8474bcaca1e9b91556560
Certificate serial: 0199FEEB9E44DEACD796C214A51FA3E38E48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JAy7mUeWHigo2EdLysoem5FVZWA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/95df81-fc9e-4c5f-bb43-ffb028f0a02f/1/JAy7mUeWHigo2EdLysoem5FVZWA.mft
Manifest number: 141F
Signing time: Mon 20 Oct 2025 00:01:18 +0000
Manifest this update: Mon 20 Oct 2025 00:01:18 +0000
Manifest next update: Tue 21 Oct 2025 00:01:18 +0000
Files and hashes: 1: JAy7mUeWHigo2EdLysoem5FVZWA.crl (hash: Dq4pL2rNUF1LjuUVZAGTh14hQNA7VFYApMwZHLlHxH8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/95df81-fc9e-4c5f-bb43-ffb028f0a02f/1/JAy7mUeWHigo2EdLysoem5FVZWA.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/95df81-fc9e-4c5f-bb43-ffb028f0a02f/1/JAy7mUeWHigo2EdLysoem5FVZWA.mft
rsync://rpki.ripe.net/repository/DEFAULT/JAy7mUeWHigo2EdLysoem5FVZWA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:eb:9e:44:de:ac:d7:96:c2:14:a5:1f:a3:e3:8e:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=240cbb9947961e2828d8474bcaca1e9b91556560
Validity
Not Before: Oct 20 00:01:18 2025 GMT
Not After : Oct 21 00:01:18 2025 GMT
Subject: CN=02bc293edce561f0c749bd4e28927534034833b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e5:02:ea:32:f0:61:85:8b:02:3c:61:1f:ce:
39:40:d0:70:69:99:20:15:6f:dc:84:c2:5a:ee:f5:
fc:d5:08:1e:ca:6a:94:a7:b0:a8:88:52:2d:8d:cf:
a3:95:5b:8c:42:6d:c7:7b:6e:c2:8c:17:c4:ef:91:
d9:ca:8c:c1:24:5c:ec:ba:2c:1f:46:55:84:64:fb:
b4:34:2a:65:da:90:dc:09:4b:98:dc:ca:65:9a:f5:
71:ec:4c:65:8b:3a:a1:2b:25:5e:cc:eb:58:2d:1d:
db:30:94:dc:bf:3c:f8:f2:6f:77:32:1d:bd:c7:37:
ce:85:4c:fe:16:97:b3:15:d6:44:fc:f2:e1:0d:bf:
82:7c:49:20:c3:b2:f6:eb:84:55:26:68:65:ef:95:
c4:9f:cb:c3:b9:77:98:b4:57:f3:15:a4:3e:5d:80:
cb:7a:67:36:bb:b6:04:7a:81:a9:ff:5d:66:c2:80:
1c:07:35:2b:8d:18:bd:0d:01:37:ba:b1:1e:c8:2f:
10:91:33:a3:c4:0d:3e:69:ec:29:cf:dc:43:15:6c:
c5:ca:a4:26:f7:27:57:2b:b7:3c:e3:89:6d:3a:e7:
87:33:e8:25:af:22:68:10:f4:0f:14:7e:f8:fb:fc:
ce:0f:55:5b:03:0b:c6:b5:40:dc:3d:26:69:b0:14:
52:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:BC:29:3E:DC:E5:61:F0:C7:49:BD:4E:28:92:75:34:03:48:33:B7
X509v3 Authority Key Identifier:
keyid:24:0C:BB:99:47:96:1E:28:28:D8:47:4B:CA:CA:1E:9B:91:55:65:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JAy7mUeWHigo2EdLysoem5FVZWA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/95df81-fc9e-4c5f-bb43-ffb028f0a02f/1/JAy7mUeWHigo2EdLysoem5FVZWA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/95df81-fc9e-4c5f-bb43-ffb028f0a02f/1/JAy7mUeWHigo2EdLysoem5FVZWA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:5a:3d:b4:26:8a:38:f0:91:d1:38:cb:46:cb:cf:9a:94:f9:
78:1a:26:9f:1b:04:ac:fa:58:ca:0f:96:64:e6:c0:44:7e:fc:
05:09:c9:71:8b:40:37:3c:9c:e3:ab:9f:80:f6:f3:ec:ff:56:
b7:6d:b8:65:25:58:c5:d7:65:c0:44:da:5a:0a:ae:a9:9f:cf:
63:37:38:f0:ce:a8:25:cf:0e:26:3f:b9:7b:db:95:2d:51:72:
4d:b5:58:0e:7a:75:ae:37:09:fc:b5:b7:04:a5:20:60:31:6e:
22:b0:d7:96:74:dd:7c:db:74:7d:4d:9d:1d:13:2b:83:68:41:
4f:27:e8:86:a6:13:20:0c:d0:02:6a:51:2d:58:94:5c:b9:97:
fd:36:f5:ad:fa:1c:e8:ac:a5:b3:72:05:de:1a:8a:00:34:66:
63:ab:82:54:dc:c5:42:6c:ff:fb:89:ad:04:cc:96:35:bb:53:
48:d3:c5:62:ff:91:c5:7e:11:3d:bc:e1:86:b2:b0:52:a0:eb:
3d:7d:28:03:e6:5c:70:1b:51:0e:2d:60:9d:29:33:38:08:d9:
4a:04:e3:c2:c0:ef:5c:a7:a4:44:a2:b5:ba:e7:5b:db:ae:17:
96:38:ae:93:53:9c:5d:95:83:bf:1b:bd:8e:6b:f4:5a:a8:d5:
7d:dc:25:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 02:52:11 2025 by rpki-client