Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/7a85c9-c58a-4f8e-83b1-7bafde4c4b24/1/jwrbomBJNHOMfJaSoLOrezCoK7I.mft
File: jwrbomBJNHOMfJaSoLOrezCoK7I.mft (raw, json)
Hash identifier: OtEIKWY+kWmPZ1P2t7NKYhecmGoC4RN1szBN/5jTxys=
Subject key identifier: 40:0F:83:3C:B9:B2:98:9C:D5:D7:11:59:F8:CA:2C:CD:DE:81:70:11
Authority key identifier: 8F:0A:DB:A2:60:49:34:73:8C:7C:96:92:A0:B3:AB:7B:30:A8:2B:B2
Certificate issuer: /CN=8f0adba2604934738c7c9692a0b3ab7b30a82bb2
Certificate serial: 0197B7459DB8B81D3C35E738FBDDB98BDBF2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jwrbomBJNHOMfJaSoLOrezCoK7I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/7a85c9-c58a-4f8e-83b1-7bafde4c4b24/1/jwrbomBJNHOMfJaSoLOrezCoK7I.mft
Manifest number: 0628
Signing time: Sat 28 Jun 2025 16:01:22 +0000
Manifest this update: Sat 28 Jun 2025 16:01:22 +0000
Manifest next update: Sun 29 Jun 2025 16:01:22 +0000
Files and hashes: 1: jwrbomBJNHOMfJaSoLOrezCoK7I.crl (hash: rpnPFypwQ4WKLkl/ZnQv35xCnQyeE/P/YXzOwBUo0c8=)
2: lHGrQ5ab4Wwh-Q0oJszTsf0BUdA.roa (hash: BJEIpPOdoxYjpK82/CR/sXoES/6zdTI5hZVWKdTDxHk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/7a85c9-c58a-4f8e-83b1-7bafde4c4b24/1/jwrbomBJNHOMfJaSoLOrezCoK7I.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/7a85c9-c58a-4f8e-83b1-7bafde4c4b24/1/jwrbomBJNHOMfJaSoLOrezCoK7I.mft
rsync://rpki.ripe.net/repository/DEFAULT/jwrbomBJNHOMfJaSoLOrezCoK7I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:9d:b8:b8:1d:3c:35:e7:38:fb:dd:b9:8b:db:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f0adba2604934738c7c9692a0b3ab7b30a82bb2
Validity
Not Before: Jun 28 16:01:22 2025 GMT
Not After : Jun 29 16:01:22 2025 GMT
Subject: CN=400f833cb9b2989cd5d71159f8ca2ccdde817011
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:6b:db:c9:6d:a5:36:d5:c5:48:96:d7:be:00:
af:81:91:23:31:5f:9f:cb:57:24:7c:38:8c:46:1c:
50:68:55:93:d8:ea:28:aa:ba:6e:72:84:b7:e2:94:
ee:f4:4a:2e:62:ba:b0:08:2e:57:c6:fe:af:f1:6c:
5c:2f:ab:15:8f:d3:ce:dd:89:70:17:f5:37:b2:72:
1f:d5:a0:c0:fd:d7:8e:66:06:6a:29:ea:83:d0:32:
ff:92:57:89:c3:31:af:38:ac:5f:ae:3e:d7:24:c1:
e0:4e:ac:af:3f:c1:28:e2:60:d7:6f:20:41:c9:62:
68:f9:27:e0:ad:ab:7a:06:77:fc:38:65:df:03:29:
9c:d9:0c:c9:00:86:0a:e5:24:b7:7f:29:da:11:9b:
47:94:ce:8a:1b:3d:58:55:18:b8:a0:b5:bc:28:fc:
5b:41:32:1b:f0:25:16:bf:8f:ab:fb:ee:cb:fb:8d:
1a:75:97:71:a5:5b:78:47:d6:4b:18:f7:df:87:90:
6b:9d:9c:61:77:56:1f:d8:cf:90:99:d5:4f:ef:c6:
b0:40:bf:f2:07:c1:fa:e4:f1:5b:6a:45:c4:73:81:
ec:d2:c3:db:e1:d4:e3:93:26:37:13:72:31:b2:57:
8c:42:db:7f:2a:d9:fc:28:9f:76:b9:df:95:3a:46:
40:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:0F:83:3C:B9:B2:98:9C:D5:D7:11:59:F8:CA:2C:CD:DE:81:70:11
X509v3 Authority Key Identifier:
keyid:8F:0A:DB:A2:60:49:34:73:8C:7C:96:92:A0:B3:AB:7B:30:A8:2B:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jwrbomBJNHOMfJaSoLOrezCoK7I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/7a85c9-c58a-4f8e-83b1-7bafde4c4b24/1/jwrbomBJNHOMfJaSoLOrezCoK7I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/7a85c9-c58a-4f8e-83b1-7bafde4c4b24/1/jwrbomBJNHOMfJaSoLOrezCoK7I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:07:5b:0f:48:b0:ea:c3:97:ce:76:4a:e2:37:b1:47:81:a5:
b6:82:85:20:e2:07:15:d9:bc:81:29:5a:92:3d:3c:54:9d:10:
c9:a0:b5:5e:45:6f:93:b6:86:00:57:a0:39:b7:64:7f:1d:58:
61:5b:04:e9:e4:00:3e:58:9d:06:98:11:ed:14:cc:8e:f2:61:
4f:af:00:65:e5:b6:99:ee:c9:37:76:a7:62:27:d4:06:84:07:
ef:af:d0:95:07:3f:c1:35:70:eb:27:75:c4:78:cb:49:3d:58:
2b:23:4f:33:de:68:12:d3:ea:f1:c3:be:5b:dc:f4:bb:81:78:
30:ff:26:0b:17:93:2a:36:90:99:84:a3:b9:a1:fc:42:30:d4:
f2:f4:67:67:ea:03:b2:e9:f8:16:ec:07:f1:e4:20:68:05:55:
f3:5c:44:30:2d:18:bb:0f:af:85:e9:2e:50:de:68:d9:1d:0f:
98:02:ee:a3:75:2d:e8:ca:56:5d:22:fa:b9:9e:b2:30:ff:18:
fa:52:49:da:97:e5:0e:ce:80:0c:13:c1:b7:88:1b:0d:4c:d5:
26:49:7c:6b:7c:47:a7:d6:02:85:13:c2:56:a9:5a:37:17:61:
52:30:2f:f0:9c:17:60:f6:8c:db:f1:76:36:72:71:e0:b2:48:
2d:05:65:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:40:29 2025 by rpki-client