Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/b57081-e16f-47ce-bd98-dce128022ac4/1/JwBs1Oq8VbNskwifFND6bg-gzG0.mft
File: JwBs1Oq8VbNskwifFND6bg-gzG0.mft (raw, json)
Hash identifier: Oid+muHnbCif/+MSn7tFsQo/b3icWSdvhKHUx0Og4Ho=
Subject key identifier: 52:AD:00:9C:62:6B:6A:C5:AC:A8:E7:8E:72:A1:23:F0:EE:61:84:DA
Authority key identifier: 27:00:6C:D4:EA:BC:55:B3:6C:93:08:9F:14:D0:FA:6E:0F:A0:CC:6D
Certificate issuer: /CN=27006cd4eabc55b36c93089f14d0fa6e0fa0cc6d
Certificate serial: 0198D73B411087B4561B19AAB9CF20E37806
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JwBs1Oq8VbNskwifFND6bg-gzG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/b57081-e16f-47ce-bd98-dce128022ac4/1/JwBs1Oq8VbNskwifFND6bg-gzG0.mft
Manifest number: 114B
Signing time: Sat 23 Aug 2025 14:00:41 +0000
Manifest this update: Sat 23 Aug 2025 14:00:41 +0000
Manifest next update: Sun 24 Aug 2025 14:00:41 +0000
Files and hashes: 1: JwBs1Oq8VbNskwifFND6bg-gzG0.crl (hash: q7GlZm5gf85gvRNv9uE+zBr9KVXmhRuW3gudFTXnDe0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/b57081-e16f-47ce-bd98-dce128022ac4/1/JwBs1Oq8VbNskwifFND6bg-gzG0.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/b57081-e16f-47ce-bd98-dce128022ac4/1/JwBs1Oq8VbNskwifFND6bg-gzG0.mft
rsync://rpki.ripe.net/repository/DEFAULT/JwBs1Oq8VbNskwifFND6bg-gzG0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:3b:41:10:87:b4:56:1b:19:aa:b9:cf:20:e3:78:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27006cd4eabc55b36c93089f14d0fa6e0fa0cc6d
Validity
Not Before: Aug 23 14:00:41 2025 GMT
Not After : Aug 24 14:00:41 2025 GMT
Subject: CN=52ad009c626b6ac5aca8e78e72a123f0ee6184da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f4:48:26:d1:9f:b0:96:77:cf:75:15:3f:51:
2d:a3:0c:50:ea:b6:d1:ce:c8:10:de:fb:a6:88:11:
d9:2f:3c:19:fa:5c:79:6d:eb:eb:0c:b3:aa:7d:78:
99:d1:e3:2b:a0:41:0e:7c:90:d5:cb:17:6b:f1:09:
29:91:07:66:cb:df:84:9c:20:ec:a2:1a:97:3a:f9:
5d:97:af:88:f4:1e:db:01:33:a6:54:ff:16:14:f5:
83:99:2d:b6:8f:db:93:83:e4:14:9c:3b:ac:39:72:
21:a6:24:30:82:98:14:c9:02:86:c2:f3:87:bf:fb:
88:50:e7:f6:7a:9d:17:ec:37:03:a0:8b:bc:69:3b:
8c:5c:7c:69:eb:25:ee:2e:31:8d:31:59:3d:94:9f:
33:54:2f:92:79:61:58:e5:26:1c:40:0b:ef:f3:be:
de:b0:5c:68:0d:fc:cb:a3:cf:a8:b3:e2:38:79:77:
a1:f1:5a:4c:1a:01:97:2d:49:dc:e4:16:db:ab:31:
1e:01:20:9b:04:64:03:f2:c6:7f:f5:8f:08:df:fd:
58:4c:ad:48:7f:26:87:cd:1a:f9:06:e0:29:85:f5:
ca:9b:1a:27:1f:6c:b9:00:90:21:9c:12:c7:e3:62:
eb:c1:1d:5f:1b:a3:01:a2:aa:f2:3c:6b:22:45:9f:
61:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:AD:00:9C:62:6B:6A:C5:AC:A8:E7:8E:72:A1:23:F0:EE:61:84:DA
X509v3 Authority Key Identifier:
keyid:27:00:6C:D4:EA:BC:55:B3:6C:93:08:9F:14:D0:FA:6E:0F:A0:CC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JwBs1Oq8VbNskwifFND6bg-gzG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/b57081-e16f-47ce-bd98-dce128022ac4/1/JwBs1Oq8VbNskwifFND6bg-gzG0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/b57081-e16f-47ce-bd98-dce128022ac4/1/JwBs1Oq8VbNskwifFND6bg-gzG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:94:9d:c9:a9:c2:b7:12:c9:f6:34:25:4e:81:cb:81:28:be:
1a:07:dd:84:cc:7a:6a:dd:5e:93:e8:3c:8d:e3:a5:ec:d2:8b:
8a:89:e5:62:05:e2:fb:99:b8:2d:d2:c4:b5:de:2d:4e:30:96:
72:a7:df:d7:9a:6a:48:63:9c:14:bf:d6:b0:97:cb:dd:ec:4c:
3d:a6:32:51:b7:4e:a8:d5:2b:09:05:ef:e5:b2:92:7d:55:77:
9a:6b:73:4d:6f:c7:01:a8:07:09:4e:3e:4e:75:44:5f:69:c8:
a0:70:83:f2:aa:19:10:42:ef:59:0b:fe:f2:7f:0f:a9:9a:39:
74:e8:d1:f9:6c:a7:dc:b7:51:49:f2:87:a4:a9:fb:62:07:df:
66:8f:8f:b7:66:4f:31:dd:68:ba:b0:cc:c9:0e:ec:e4:18:37:
d7:4d:e4:8a:f0:0c:22:6b:c4:62:aa:6c:0b:92:73:f5:e8:8f:
f6:8f:c5:18:f5:ac:f6:1f:53:76:ca:87:eb:8b:97:5b:32:83:
6f:d5:fa:7b:2e:7c:f6:7e:d4:b2:67:02:b4:e3:51:96:0d:96:
90:e9:c8:63:52:ad:77:66:aa:3e:8b:f5:be:6e:5b:94:63:4e:
97:9b:50:b9:05:ec:0d:c3:40:b9:50:17:a1:8c:5f:1c:70:37:
0a:e2:49:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:20:23 2025 by rpki-client