Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/89fe5b-4fda-4d04-99b4-f49764ff48ea/1/JLyY3e79tWGqaeynNJBg2EBZ4ZI.mft
File: JLyY3e79tWGqaeynNJBg2EBZ4ZI.mft (raw, json)
Hash identifier: SBRTvwGIoD7XIo7ml4HRe2x4+DiQhYLY7y1Aq1/oihU=
Subject key identifier: 30:C2:76:68:4B:60:38:B4:02:EC:3C:EC:01:DA:73:61:84:B8:8E:65
Authority key identifier: 24:BC:98:DD:EE:FD:B5:61:AA:69:EC:A7:34:90:60:D8:40:59:E1:92
Certificate issuer: /CN=24bc98ddeefdb561aa69eca7349060d84059e192
Certificate serial: 0197B8C59F06BDD5680B4B11E82AA2FC6E92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JLyY3e79tWGqaeynNJBg2EBZ4ZI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/89fe5b-4fda-4d04-99b4-f49764ff48ea/1/JLyY3e79tWGqaeynNJBg2EBZ4ZI.mft
Manifest number: 0444
Signing time: Sat 28 Jun 2025 23:00:48 +0000
Manifest this update: Sat 28 Jun 2025 23:00:48 +0000
Manifest next update: Sun 29 Jun 2025 23:00:48 +0000
Files and hashes: 1: 9XlHb8rJg-OmDPMs6N_TKhkkHb8.roa (hash: cpk83kEdrOWJJYVKeP1fpe20g1cPT7sKTkIKvw0KJjI=)
2: JLyY3e79tWGqaeynNJBg2EBZ4ZI.crl (hash: edLhajykc+P07z+tmY9AKJrhLggxWMDUMvNn8W03ukA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/89fe5b-4fda-4d04-99b4-f49764ff48ea/1/JLyY3e79tWGqaeynNJBg2EBZ4ZI.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/89fe5b-4fda-4d04-99b4-f49764ff48ea/1/JLyY3e79tWGqaeynNJBg2EBZ4ZI.mft
rsync://rpki.ripe.net/repository/DEFAULT/JLyY3e79tWGqaeynNJBg2EBZ4ZI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:c5:9f:06:bd:d5:68:0b:4b:11:e8:2a:a2:fc:6e:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24bc98ddeefdb561aa69eca7349060d84059e192
Validity
Not Before: Jun 28 23:00:48 2025 GMT
Not After : Jun 29 23:00:48 2025 GMT
Subject: CN=30c276684b6038b402ec3cec01da736184b88e65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:1e:72:68:3a:7d:b6:79:0a:e1:61:3d:37:eb:
54:08:bd:78:22:35:a5:8a:e7:f8:fa:89:df:1e:06:
0c:ce:71:bc:78:86:b8:24:f2:da:f1:7e:cc:b4:54:
26:2c:ec:9d:ae:d8:b7:59:15:2d:e6:a0:7e:82:13:
35:fb:68:75:ec:f3:ed:01:88:b8:bd:66:96:60:27:
90:81:4d:5a:9f:b7:bf:43:5a:5f:3d:bb:ba:d5:d1:
cd:c9:07:b6:3a:79:d4:13:e1:60:34:87:b9:c1:6b:
1e:2e:76:b3:ad:3e:11:ee:68:93:75:13:0a:21:83:
cc:3f:29:ec:af:cd:53:da:bc:23:da:e6:ec:72:75:
ab:20:8f:eb:50:cb:1b:79:f4:4e:c6:2a:c9:82:c7:
de:4a:0b:1d:33:37:2d:cd:97:c8:2a:fc:03:94:8a:
f6:1c:f8:f8:90:80:9a:a6:98:ae:c0:5e:a0:19:58:
1b:ea:a3:be:67:0a:3d:2f:60:3a:1c:db:3e:6b:31:
65:e4:3b:21:d0:36:51:2f:d2:43:21:b5:7f:d7:27:
ab:c0:a2:1c:28:c7:ef:8f:35:06:5b:5f:ff:98:81:
f4:1c:6d:18:c7:0a:f4:45:59:b0:6e:e7:fd:f1:53:
f1:9c:fc:fa:b2:0e:42:65:c5:76:e3:8c:1d:b4:c5:
79:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:C2:76:68:4B:60:38:B4:02:EC:3C:EC:01:DA:73:61:84:B8:8E:65
X509v3 Authority Key Identifier:
keyid:24:BC:98:DD:EE:FD:B5:61:AA:69:EC:A7:34:90:60:D8:40:59:E1:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JLyY3e79tWGqaeynNJBg2EBZ4ZI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/89fe5b-4fda-4d04-99b4-f49764ff48ea/1/JLyY3e79tWGqaeynNJBg2EBZ4ZI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/89fe5b-4fda-4d04-99b4-f49764ff48ea/1/JLyY3e79tWGqaeynNJBg2EBZ4ZI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:75:1e:3e:95:42:c9:22:8f:3f:a3:d9:cb:38:81:c8:82:af:
10:18:47:6f:49:ce:50:a0:76:38:af:d5:8b:39:99:06:1c:9c:
7e:3a:69:5a:83:71:68:59:71:57:35:12:37:a9:39:df:63:8a:
7e:65:77:f0:24:c7:1a:9b:b7:35:3b:dd:b8:19:97:d2:5c:a6:
00:67:ad:04:ab:5f:48:35:d0:07:52:86:10:73:dd:70:38:5b:
14:4d:8a:93:ad:56:26:4e:9a:cb:12:55:5c:ad:5a:8a:8b:87:
6f:a5:2e:cf:be:d0:92:10:ec:80:2d:fe:71:12:83:1d:26:1f:
ce:1d:f8:ec:0c:3e:a5:c6:b4:1a:d6:ae:cd:6e:0e:0c:cd:86:
0a:29:91:ef:cb:8d:cc:77:a5:9b:4e:d2:91:c2:e1:cc:ae:aa:
31:3b:84:d3:85:a5:65:48:8e:7c:24:bd:e2:57:b9:90:ee:7e:
f9:10:63:44:24:34:d8:0c:af:e0:80:76:c6:87:7e:3d:7a:e3:
81:96:1c:44:60:6d:ab:32:4e:3b:8e:d6:da:d1:e2:ee:fd:11:
7a:bb:40:bb:4f:72:fe:77:0e:06:96:41:39:75:31:49:65:fb:
a5:68:22:f7:5f:dc:06:6e:a4:ae:26:41:34:b4:8a:63:9b:11:
58:c0:36:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 04:07:04 2025 by rpki-client