Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.mft
File: jHFLbLK61OdjmoqicQKPWqG8asI.mft (raw, json)
Hash identifier: IBBNvUK5/3KzLEf38c0wcwmZSQIWEcK632wyzNAOXvU=
Subject key identifier: 62:2F:35:85:D9:EF:CD:4A:D1:37:23:C5:DD:61:86:72:20:3B:F4:0C
Authority key identifier: 8C:71:4B:6C:B2:BA:D4:E7:63:9A:8A:A2:71:02:8F:5A:A1:BC:6A:C2
Certificate issuer: /CN=8c714b6cb2bad4e7639a8aa271028f5aa1bc6ac2
Certificate serial: 0198D705B7C91D2A9B6D363A54B5AE742647
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jHFLbLK61OdjmoqicQKPWqG8asI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.mft
Manifest number: 05FC
Signing time: Sat 23 Aug 2025 13:02:12 +0000
Manifest this update: Sat 23 Aug 2025 13:02:12 +0000
Manifest next update: Sun 24 Aug 2025 13:02:12 +0000
Files and hashes: 1: 4SJUH7W4ejICjEKktk38NQNcB4Q.roa (hash: 2qwbbCMLxypAlAiGN2fpQYPHWTBbWd8fpkq/6FE+imI=)
2: jHFLbLK61OdjmoqicQKPWqG8asI.crl (hash: 2l8+L8aMC4iLgcxWK5tdQzJt50eNrGjT4yACC8M8ri8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.mft
rsync://rpki.ripe.net/repository/DEFAULT/jHFLbLK61OdjmoqicQKPWqG8asI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:05:b7:c9:1d:2a:9b:6d:36:3a:54:b5:ae:74:26:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c714b6cb2bad4e7639a8aa271028f5aa1bc6ac2
Validity
Not Before: Aug 23 13:02:12 2025 GMT
Not After : Aug 24 13:02:12 2025 GMT
Subject: CN=622f3585d9efcd4ad13723c5dd618672203bf40c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:6b:f8:16:64:7c:57:5b:78:f4:be:7e:28:16:
d1:27:0e:60:c2:a6:7a:64:57:a8:3c:02:81:50:34:
c9:40:e0:5c:09:4a:49:50:0a:2c:e0:5f:2d:c3:10:
f9:36:2a:8c:39:ef:7b:04:ef:1b:6a:bf:d0:25:7d:
a6:c4:98:3f:cc:39:7f:a0:83:59:22:60:c7:0f:52:
d2:2f:a6:2a:98:5e:99:8e:fa:9c:aa:4e:95:35:13:
44:6a:6c:9d:1d:4f:ff:fa:4c:e4:d7:5d:ac:92:42:
d3:29:a5:43:2a:9d:39:87:79:e3:fa:dd:d0:6b:50:
a2:86:26:b3:ab:73:a0:00:c3:5c:b6:67:4a:dc:55:
e7:e8:b4:92:11:f0:a0:21:3b:dc:30:86:00:f7:da:
12:cb:42:3c:3d:e6:21:7a:b2:a6:8c:df:08:53:7e:
06:dd:75:25:26:eb:c5:02:5e:f3:f6:85:a0:d1:3b:
26:22:2d:e7:2b:46:66:26:47:c4:32:b8:66:64:7b:
74:2f:d4:50:a1:6a:55:13:70:bc:1f:56:24:f6:ab:
30:e5:aa:83:ab:4e:46:2a:2b:fb:4d:85:a1:e2:73:
df:f9:6f:e6:43:44:9c:38:67:6a:3c:d4:36:f6:88:
8e:fe:b3:ae:4d:fb:cd:c3:ce:45:80:a5:f4:7f:6c:
6a:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:2F:35:85:D9:EF:CD:4A:D1:37:23:C5:DD:61:86:72:20:3B:F4:0C
X509v3 Authority Key Identifier:
keyid:8C:71:4B:6C:B2:BA:D4:E7:63:9A:8A:A2:71:02:8F:5A:A1:BC:6A:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jHFLbLK61OdjmoqicQKPWqG8asI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:04:8e:42:e1:de:ff:7f:8c:db:02:6a:2f:bb:b4:fc:0b:6e:
c0:35:17:bb:76:e9:63:3a:f7:57:a7:f4:bc:29:51:8a:44:56:
9c:e7:a0:9e:da:55:e1:e1:6f:4a:94:6a:42:0c:a4:37:58:b7:
84:5f:35:4e:63:61:60:65:da:df:3d:16:a6:16:bd:c9:da:69:
fc:6d:42:21:d3:b6:f4:8b:21:2f:eb:03:34:23:81:76:38:cf:
4e:53:87:3c:af:42:69:87:22:58:e2:a0:f1:77:5e:42:74:a5:
05:64:2e:01:be:2c:73:fa:c6:c8:33:1a:a7:7b:bf:0c:fc:18:
25:7a:ef:21:a3:ef:7c:f5:0a:b7:e0:f4:69:b6:34:2d:24:81:
4e:c7:7c:c7:6e:bd:31:22:c9:06:ec:01:db:a0:48:7d:3e:8d:
c1:12:48:f5:26:a9:36:38:b5:8b:33:4c:1a:03:87:a8:0d:0a:
30:44:5a:0f:f4:ec:77:82:96:11:23:4e:bf:d4:da:7e:2e:e9:
50:f5:fd:10:b7:c1:d2:ed:c4:49:41:63:70:98:41:fa:1a:26:
4f:9b:e3:71:83:cb:7c:3d:30:4c:a8:20:c4:d6:3c:82:da:29:
8b:63:f8:f3:db:b8:66:ca:fb:90:73:d4:e2:15:19:78:7f:a8:
95:c8:86:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:18:33 2025 by rpki-client