Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/89fe5b-4fda-4d04-99b4-f49764ff48ea/1/JLyY3e79tWGqaeynNJBg2EBZ4ZI.mft
File: JLyY3e79tWGqaeynNJBg2EBZ4ZI.mft (raw, json)
Hash identifier: duKCSGaQVzmSOYRPRPVET3rpPHIAwpvc0NkrYJquEPY=
Subject key identifier: 37:D1:9A:8B:A7:85:DE:A5:CD:5D:03:D5:D8:EB:43:7B:AC:02:DD:5C
Authority key identifier: 24:BC:98:DD:EE:FD:B5:61:AA:69:EC:A7:34:90:60:D8:40:59:E1:92
Certificate issuer: /CN=24bc98ddeefdb561aa69eca7349060d84059e192
Certificate serial: 0198D6983F5C48435D4A0E364FBE14A77F74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JLyY3e79tWGqaeynNJBg2EBZ4ZI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/89fe5b-4fda-4d04-99b4-f49764ff48ea/1/JLyY3e79tWGqaeynNJBg2EBZ4ZI.mft
Manifest number: 04D8
Signing time: Sat 23 Aug 2025 11:02:38 +0000
Manifest this update: Sat 23 Aug 2025 11:02:38 +0000
Manifest next update: Sun 24 Aug 2025 11:02:38 +0000
Files and hashes: 1: 9XlHb8rJg-OmDPMs6N_TKhkkHb8.roa (hash: cpk83kEdrOWJJYVKeP1fpe20g1cPT7sKTkIKvw0KJjI=)
2: JLyY3e79tWGqaeynNJBg2EBZ4ZI.crl (hash: gv3vz7vB00Kx4UV0i2uTBVsXmL8y+tpgulVfkm0Xzuc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/89fe5b-4fda-4d04-99b4-f49764ff48ea/1/JLyY3e79tWGqaeynNJBg2EBZ4ZI.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/89fe5b-4fda-4d04-99b4-f49764ff48ea/1/JLyY3e79tWGqaeynNJBg2EBZ4ZI.mft
rsync://rpki.ripe.net/repository/DEFAULT/JLyY3e79tWGqaeynNJBg2EBZ4ZI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 11:02:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:98:3f:5c:48:43:5d:4a:0e:36:4f:be:14:a7:7f:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24bc98ddeefdb561aa69eca7349060d84059e192
Validity
Not Before: Aug 23 11:02:38 2025 GMT
Not After : Aug 24 11:02:38 2025 GMT
Subject: CN=37d19a8ba785dea5cd5d03d5d8eb437bac02dd5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:6d:59:d4:bc:45:14:52:99:c8:39:c4:9a:db:
f4:56:05:17:d0:5a:a7:93:5e:68:4b:6f:43:22:0c:
20:2a:90:68:fc:17:11:eb:7f:bd:20:97:fb:69:8e:
58:10:41:6f:33:8c:f2:ea:19:64:7f:2d:85:85:ba:
eb:28:36:4e:e9:c6:3f:30:34:a5:59:d6:32:63:5b:
9b:be:43:8f:7a:43:e0:7d:96:0e:47:03:13:cb:81:
6b:9d:81:80:eb:c5:fe:80:98:99:a7:11:21:6f:73:
6b:80:a8:02:13:f4:24:ac:60:8d:88:8e:6d:2c:03:
93:02:c0:e8:f3:f1:70:20:9b:af:b0:29:a1:75:e3:
66:d6:55:bc:1f:f0:df:cb:0d:dd:e0:92:bd:46:ec:
cc:98:46:4a:9a:27:6f:cc:76:01:ed:2d:be:10:c6:
7a:c0:fc:96:aa:52:e0:6e:02:db:7f:09:d8:72:67:
70:95:44:c4:d1:1e:e2:b7:3a:64:03:43:66:f0:d3:
2f:d1:9b:f7:f4:52:fa:86:19:18:bd:dd:d5:8e:d8:
c9:9e:07:e4:d5:7b:d8:32:25:66:e0:88:2c:dc:fe:
5c:f9:8f:b0:d1:8a:12:59:23:3b:cc:40:37:66:b6:
04:8e:0c:33:ed:81:94:f6:f1:62:4b:f2:a6:37:b1:
7f:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:D1:9A:8B:A7:85:DE:A5:CD:5D:03:D5:D8:EB:43:7B:AC:02:DD:5C
X509v3 Authority Key Identifier:
keyid:24:BC:98:DD:EE:FD:B5:61:AA:69:EC:A7:34:90:60:D8:40:59:E1:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JLyY3e79tWGqaeynNJBg2EBZ4ZI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/89fe5b-4fda-4d04-99b4-f49764ff48ea/1/JLyY3e79tWGqaeynNJBg2EBZ4ZI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/89fe5b-4fda-4d04-99b4-f49764ff48ea/1/JLyY3e79tWGqaeynNJBg2EBZ4ZI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:61:2d:4c:37:72:c5:59:7a:96:35:50:1b:82:bd:ba:53:5c:
fe:de:a2:ac:71:b5:27:8e:7f:b7:8d:5c:39:66:45:7b:6f:38:
b4:b6:e2:67:b6:6b:c6:cc:46:fb:e1:51:fd:72:95:6f:6f:58:
a4:67:b6:e7:90:f1:d9:02:68:7d:a5:af:5e:85:da:ef:91:d5:
3e:3b:c3:3e:22:ec:7b:9a:bd:d0:59:5c:01:f7:01:8b:0a:72:
b5:a4:19:0d:54:45:24:28:5c:ca:ee:51:25:e4:a1:b8:c0:4a:
8d:f7:26:4d:a8:a1:b6:b6:d7:3c:88:24:72:c6:56:b7:57:99:
dd:21:e8:31:18:72:9b:de:f3:5c:74:ac:84:9a:fc:e0:27:e5:
db:05:f3:ea:6c:4b:9a:f1:7d:66:f9:28:55:32:55:b5:b3:69:
f8:bc:53:9c:1a:94:60:d1:42:d6:77:91:5a:d6:27:70:53:7e:
1e:05:0c:4d:e0:39:8f:f1:5a:ae:b5:ed:d1:0b:3d:75:43:db:
c9:73:bb:09:c3:9a:63:c6:5c:e0:b3:78:47:53:d9:a4:f1:c2:
a5:53:5d:17:84:f5:87:2c:6c:07:9b:e2:7a:7f:99:f6:3c:01:
42:8f:57:dd:37:01:1e:d9:9c:2f:83:ac:bb:6b:cb:3b:ba:ec:
f3:1c:3c:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:28:23 2025 by rpki-client