Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/7a85c9-c58a-4f8e-83b1-7bafde4c4b24/1/jwrbomBJNHOMfJaSoLOrezCoK7I.mft
File: jwrbomBJNHOMfJaSoLOrezCoK7I.mft (raw, json)
Hash identifier: kZhc9K6gS6ru56yes7XFpqe72e9FQX5P1JDfOt7pX3U=
Subject key identifier: 67:70:DE:A8:B9:BB:06:78:65:C6:FB:32:29:17:2A:63:70:3D:5B:1A
Authority key identifier: 8F:0A:DB:A2:60:49:34:73:8C:7C:96:92:A0:B3:AB:7B:30:A8:2B:B2
Certificate issuer: /CN=8f0adba2604934738c7c9692a0b3ab7b30a82bb2
Certificate serial: 0198D516119AE2A8C43969D01D069C6895FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jwrbomBJNHOMfJaSoLOrezCoK7I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/7a85c9-c58a-4f8e-83b1-7bafde4c4b24/1/jwrbomBJNHOMfJaSoLOrezCoK7I.mft
Manifest number: 06BC
Signing time: Sat 23 Aug 2025 04:00:49 +0000
Manifest this update: Sat 23 Aug 2025 04:00:49 +0000
Manifest next update: Sun 24 Aug 2025 04:00:49 +0000
Files and hashes: 1: jwrbomBJNHOMfJaSoLOrezCoK7I.crl (hash: 9T8JDPkEIxfE3fMVOEHTtg7q5mAcE3GlflEiNvTvg+Q=)
2: lHGrQ5ab4Wwh-Q0oJszTsf0BUdA.roa (hash: BJEIpPOdoxYjpK82/CR/sXoES/6zdTI5hZVWKdTDxHk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/7a85c9-c58a-4f8e-83b1-7bafde4c4b24/1/jwrbomBJNHOMfJaSoLOrezCoK7I.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/7a85c9-c58a-4f8e-83b1-7bafde4c4b24/1/jwrbomBJNHOMfJaSoLOrezCoK7I.mft
rsync://rpki.ripe.net/repository/DEFAULT/jwrbomBJNHOMfJaSoLOrezCoK7I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:16:11:9a:e2:a8:c4:39:69:d0:1d:06:9c:68:95:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f0adba2604934738c7c9692a0b3ab7b30a82bb2
Validity
Not Before: Aug 23 04:00:49 2025 GMT
Not After : Aug 24 04:00:49 2025 GMT
Subject: CN=6770dea8b9bb067865c6fb3229172a63703d5b1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:9b:f3:22:e0:dc:99:56:54:fe:68:bc:7c:c9:
6d:d4:d8:aa:e7:f0:d7:2f:24:78:c4:40:f9:17:08:
64:be:14:b7:9d:6d:ad:ad:b2:5c:b5:c4:7a:7e:d3:
18:fe:65:57:8c:d4:37:7b:92:22:40:89:55:ff:bf:
cf:ff:7b:1f:ba:a5:64:44:64:c3:48:7a:eb:a3:2d:
62:71:77:01:5f:ea:29:d4:ae:92:fb:a5:95:0e:11:
7d:62:fc:23:c8:a1:f5:37:03:68:cd:c5:3c:33:15:
f1:a2:76:36:2c:b8:20:e4:19:f8:5e:20:2d:13:94:
d4:a0:ea:82:ed:0b:fd:15:ea:88:ed:a1:15:d4:80:
93:b7:52:8a:5d:f6:80:88:15:a1:7b:f3:6c:7f:d4:
47:ce:56:50:22:0c:dd:e4:03:15:e7:d2:07:84:e6:
8d:31:e1:99:07:45:f2:32:64:e4:80:bb:3f:b9:07:
a7:3e:bd:c9:b5:5f:24:91:3e:f2:d9:f0:1e:c0:e7:
c4:50:52:5b:c0:65:c7:8b:0a:ba:38:25:64:d4:f1:
5d:82:0e:47:8d:90:b0:bb:20:37:44:50:5d:fd:3c:
ad:7c:0f:04:bd:ae:9b:5d:f7:27:69:1c:3b:9d:57:
5d:34:53:93:34:a5:96:13:44:73:67:ab:df:bb:07:
63:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:70:DE:A8:B9:BB:06:78:65:C6:FB:32:29:17:2A:63:70:3D:5B:1A
X509v3 Authority Key Identifier:
keyid:8F:0A:DB:A2:60:49:34:73:8C:7C:96:92:A0:B3:AB:7B:30:A8:2B:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jwrbomBJNHOMfJaSoLOrezCoK7I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/7a85c9-c58a-4f8e-83b1-7bafde4c4b24/1/jwrbomBJNHOMfJaSoLOrezCoK7I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/7a85c9-c58a-4f8e-83b1-7bafde4c4b24/1/jwrbomBJNHOMfJaSoLOrezCoK7I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:62:5a:71:1a:e7:d3:35:a3:b4:80:d2:3b:e2:85:15:9d:d6:
63:1d:75:50:bb:47:ba:0c:9a:27:13:3a:d8:17:b7:e2:57:e1:
87:9f:c1:0e:69:e0:2f:db:e9:6a:23:b6:8b:48:7a:2e:36:ee:
39:b3:e3:0c:a3:87:20:5e:15:6a:83:4c:45:e7:ab:f1:5c:22:
fb:d3:34:16:06:8a:43:df:b2:c7:f7:73:93:0a:66:b9:ad:a2:
28:d7:43:22:17:be:77:f8:47:79:ae:ba:5c:15:66:32:76:17:
b6:5c:af:2d:a1:f6:c7:50:c9:ac:48:f6:19:d3:41:c4:06:1a:
c3:de:f7:45:1e:c3:3d:77:3b:c0:7c:1b:7c:88:9f:a3:e6:b9:
76:b7:fc:ef:6f:38:d5:de:8e:60:ff:2b:3f:dd:92:4d:59:17:
be:a6:3c:94:f0:3b:b7:17:73:ef:c7:38:05:6a:cf:c9:8a:20:
50:9e:49:97:b3:a5:04:66:39:5e:a5:98:db:f3:5f:00:27:af:
2f:dc:97:24:76:cb:9b:22:22:28:24:27:86:36:f6:53:d5:8a:
1f:2e:9a:b7:6c:b1:1f:b6:07:b7:33:00:f5:83:8d:2f:d7:28:
46:22:ef:31:b6:e8:ba:93:1f:2c:ae:76:fb:2f:ac:15:70:33:
9b:ec:00:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:03:26 2025 by rpki-client