Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
File: JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft (raw, json)
Hash identifier: 9Y4wMMIja69954X00y27Eno8o8NF36IyErKViPXcYmI=
Subject key identifier: 16:8A:63:68:C6:79:E2:73:4F:69:68:D8:21:40:A8:97:50:E3:44:7D
Authority key identifier: 24:E1:C5:11:0E:0E:90:30:2E:47:01:2F:F5:C8:23:03:A4:66:1A:DE
Certificate issuer: /CN=24e1c5110e0e90302e47012ff5c82303a4661ade
Certificate serial: 0199FCFD31AF4BF8BF4A2F0B2FA717C7DA12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
Manifest number: 04E1
Signing time: Sun 19 Oct 2025 15:01:15 +0000
Manifest this update: Sun 19 Oct 2025 15:01:15 +0000
Manifest next update: Mon 20 Oct 2025 15:01:15 +0000
Files and hashes: 1: JOHFEQ4OkDAuRwEv9cgjA6RmGt4.crl (hash: yNYjEWJ9Dmk0d7y/Nc2SzceHB4grrUaHLhyMwr7dQtY=)
2: Q9WbsU5WLEBh2f38P2PGkPWP_HU.roa (hash: WTO6N136wAT9bdE+8AHFBftVkmxQHl/oBzZ0du4NvZs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
rsync://rpki.ripe.net/repository/DEFAULT/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:31:af:4b:f8:bf:4a:2f:0b:2f:a7:17:c7:da:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24e1c5110e0e90302e47012ff5c82303a4661ade
Validity
Not Before: Oct 19 15:01:15 2025 GMT
Not After : Oct 20 15:01:15 2025 GMT
Subject: CN=168a6368c679e2734f6968d82140a89750e3447d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ce:89:15:b1:5e:32:2a:6f:af:47:b0:c7:b0:
af:fb:fd:01:87:16:f4:c7:48:eb:27:b0:a9:31:c5:
72:29:cb:8d:2c:a6:cd:45:93:60:39:69:ab:81:6d:
59:09:53:a2:e1:79:3c:6a:7d:ef:ba:b4:17:8d:02:
46:bf:24:06:34:70:1f:20:1c:76:90:46:b1:0d:e3:
a2:a9:40:9f:8f:77:c5:10:7f:d4:0c:85:c2:94:fd:
7d:10:1b:83:55:09:cf:f1:eb:94:97:50:0b:54:36:
6b:d5:b7:8b:ab:73:ec:3a:4a:28:be:43:50:54:a3:
35:a9:e8:81:b0:97:06:72:cd:ec:28:2b:c2:69:09:
f9:57:aa:5e:69:f8:97:c8:d6:3c:66:c7:b7:dc:ec:
aa:87:a3:a9:8a:7d:92:2e:c9:82:52:a1:1c:40:20:
c0:fc:db:46:8c:de:db:14:ad:99:f6:bb:db:32:64:
03:5f:40:ef:31:4f:94:3f:b6:5e:27:87:6e:06:4b:
b2:94:e3:60:04:6f:01:48:24:f7:f2:a1:46:88:5a:
be:8b:b5:6e:88:e8:50:57:fe:76:09:f8:69:90:87:
bc:66:3f:fc:3e:ba:0e:60:b5:93:5c:11:aa:79:ae:
6e:02:a2:04:67:fe:44:2d:70:52:4c:66:b4:7f:23:
a0:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:8A:63:68:C6:79:E2:73:4F:69:68:D8:21:40:A8:97:50:E3:44:7D
X509v3 Authority Key Identifier:
keyid:24:E1:C5:11:0E:0E:90:30:2E:47:01:2F:F5:C8:23:03:A4:66:1A:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d0:96:29:60:5c:67:b4:ef:bb:09:ec:d5:ed:0c:f2:27:ef:49:
67:28:20:4e:ff:f9:19:64:73:75:ff:83:53:4f:07:98:fc:32:
9e:9f:ea:1f:35:78:50:7c:b8:2a:b0:84:d1:30:ca:73:cf:d2:
1f:6e:5a:5c:3c:51:91:65:67:2d:b6:0e:7c:4b:f7:4c:63:b2:
6d:b4:32:bc:05:6f:b4:7b:13:98:93:f2:3c:be:74:b2:1b:26:
23:7e:3f:d6:2c:64:dc:18:dd:ef:ed:0e:df:40:58:3c:5f:61:
5e:b9:90:92:d8:3a:c2:aa:17:1a:0d:1b:59:91:11:94:63:34:
f3:d6:0a:f2:75:38:fe:f6:ca:09:99:d7:83:b0:b4:d6:ff:e0:
1a:67:0c:19:ed:e8:a8:34:62:9c:f0:b7:a0:15:7d:a2:69:12:
d1:ca:f1:c5:f1:d2:d4:bc:f1:48:00:ae:20:3e:be:28:91:b1:
0a:1e:51:f4:b8:40:eb:02:82:01:cd:c2:6b:5d:bf:69:ae:d9:
0a:34:43:1f:d4:5c:7c:24:d1:a2:4e:fc:32:3f:1f:2c:30:ab:
50:1e:47:4a:45:9e:ec:6e:95:4d:fc:96:d6:f8:cd:48:bc:47:
07:bd:2e:b0:d6:cb:ba:48:e3:c2:a3:f9:3c:83:7e:7c:18:87:
9e:38:d7:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:06:48 2025 by rpki-client