Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/7a85c9-c58a-4f8e-83b1-7bafde4c4b24/1/jwrbomBJNHOMfJaSoLOrezCoK7I.mft
File: jwrbomBJNHOMfJaSoLOrezCoK7I.mft (raw, json)
Hash identifier: liut58FQ7Ddoznlztg1pxz3C6aMifi/bW43y40v3ekg=
Subject key identifier: 89:73:A6:5F:CD:D2:5B:F0:D5:8B:B4:76:B1:37:11:60:0D:C7:7B:51
Authority key identifier: 8F:0A:DB:A2:60:49:34:73:8C:7C:96:92:A0:B3:AB:7B:30:A8:2B:B2
Certificate issuer: /CN=8f0adba2604934738c7c9692a0b3ab7b30a82bb2
Certificate serial: 0196A12D9E750330AB758DCE5FFE9403AB44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jwrbomBJNHOMfJaSoLOrezCoK7I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/7a85c9-c58a-4f8e-83b1-7bafde4c4b24/1/jwrbomBJNHOMfJaSoLOrezCoK7I.mft
Manifest number: 0598
Signing time: Mon 05 May 2025 16:00:43 +0000
Manifest this update: Mon 05 May 2025 16:00:43 +0000
Manifest next update: Tue 06 May 2025 16:00:43 +0000
Files and hashes: 1: jwrbomBJNHOMfJaSoLOrezCoK7I.crl (hash: 4RBZLx11ZtkTDCCB+9yML6ZiTOC3K2kAVfUEeK8AyMU=)
2: lHGrQ5ab4Wwh-Q0oJszTsf0BUdA.roa (hash: BJEIpPOdoxYjpK82/CR/sXoES/6zdTI5hZVWKdTDxHk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/7a85c9-c58a-4f8e-83b1-7bafde4c4b24/1/jwrbomBJNHOMfJaSoLOrezCoK7I.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/7a85c9-c58a-4f8e-83b1-7bafde4c4b24/1/jwrbomBJNHOMfJaSoLOrezCoK7I.mft
rsync://rpki.ripe.net/repository/DEFAULT/jwrbomBJNHOMfJaSoLOrezCoK7I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 16:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a1:2d:9e:75:03:30:ab:75:8d:ce:5f:fe:94:03:ab:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f0adba2604934738c7c9692a0b3ab7b30a82bb2
Validity
Not Before: May 5 16:00:43 2025 GMT
Not After : May 6 16:00:43 2025 GMT
Subject: CN=8973a65fcdd25bf0d58bb476b13711600dc77b51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:80:48:2d:c6:3b:4f:07:65:11:b6:45:a0:fe:
01:da:20:f6:ed:db:4f:62:81:a7:d2:b3:6d:cd:0e:
f0:ed:c5:61:ad:3c:3f:ad:b8:56:48:1e:ad:e5:cc:
2e:6b:5f:ec:05:56:89:5c:87:a4:1a:b0:8f:69:a5:
a6:e9:ed:55:18:ea:ce:0f:3f:1b:af:85:69:30:28:
63:d4:4c:c1:01:d2:bd:7c:01:63:a5:61:2d:09:55:
6e:a2:e8:31:66:34:85:51:b6:4c:f5:fa:0e:2e:63:
ee:30:c0:7d:9f:11:43:04:93:9f:76:68:80:b7:28:
d4:67:6d:38:f3:47:9b:cd:9a:a7:96:b7:c7:5c:03:
24:30:0a:a6:02:1b:e4:9d:3b:c8:61:7f:94:1b:13:
d7:66:17:0d:13:d6:f2:47:e1:32:ca:1c:c0:cf:b9:
25:f5:a0:f0:a0:3c:c9:e6:76:71:f2:3a:4c:85:17:
dc:50:06:a2:ab:1a:d0:69:79:c6:9e:83:09:9d:fb:
03:81:62:74:f9:ed:a9:10:f0:e2:ec:1a:2c:73:b0:
42:dd:57:4a:bb:49:c4:a5:de:cd:c8:70:85:5d:17:
8f:69:12:a9:22:e1:f7:b0:62:28:a1:97:0b:3b:50:
3b:f8:0d:c5:49:83:6c:65:45:23:ab:89:ed:bf:a4:
71:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:73:A6:5F:CD:D2:5B:F0:D5:8B:B4:76:B1:37:11:60:0D:C7:7B:51
X509v3 Authority Key Identifier:
keyid:8F:0A:DB:A2:60:49:34:73:8C:7C:96:92:A0:B3:AB:7B:30:A8:2B:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jwrbomBJNHOMfJaSoLOrezCoK7I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/7a85c9-c58a-4f8e-83b1-7bafde4c4b24/1/jwrbomBJNHOMfJaSoLOrezCoK7I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/7a85c9-c58a-4f8e-83b1-7bafde4c4b24/1/jwrbomBJNHOMfJaSoLOrezCoK7I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:ba:d9:d1:1b:72:52:59:73:12:0d:c3:08:29:44:13:b7:a0:
25:31:a2:50:ee:32:ce:5d:4d:95:64:a4:ca:6b:06:06:49:db:
7e:43:5b:aa:37:0b:8a:b3:fe:39:9b:87:69:1f:f9:58:08:ec:
3c:53:d0:7b:0b:2d:98:73:1c:c2:3c:da:a0:a0:2e:85:0b:e0:
50:57:26:47:1b:8b:bd:4b:6e:4c:8b:d0:04:63:62:8f:3e:d1:
98:60:e9:7e:5b:24:0e:fc:9f:0c:ec:52:4d:6e:cd:cd:c3:f0:
a8:6f:0f:66:58:a9:5d:ae:c9:ad:68:93:07:ec:a5:8f:45:fb:
54:83:7d:2d:c1:d7:ad:cd:9e:d9:45:f7:1b:b9:16:45:94:4c:
1c:14:38:2b:de:a6:ce:5d:eb:fc:93:3a:04:fb:4d:48:4b:8d:
c8:aa:b5:63:c8:89:cf:15:af:06:0e:7c:db:7d:7c:86:c7:4b:
12:0a:8d:93:b4:e9:8d:11:3c:fa:05:4b:78:50:5b:ba:3b:7d:
eb:5c:af:a2:20:a6:df:89:a1:08:7e:f8:7b:54:00:86:49:e2:
15:dc:a2:c7:da:1c:db:32:f1:d8:1d:05:f0:cf:08:99:e9:b5:
8e:0a:4d:69:b6:85:70:85:9e:06:6d:e2:eb:93:6a:b6:15:00:
32:f1:dd:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 00:13:06 2025 by rpki-client