Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
File: JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft (raw, json)
Hash identifier: TGrOiKEMwfDDq4+Dql1hv5/ilR9QW7PoGTtdRqr+uVk=
Subject key identifier: CB:5C:4E:4E:33:CC:30:2A:FE:AD:F4:AC:18:C6:C9:6B:79:35:59:B1
Authority key identifier: 24:E1:C5:11:0E:0E:90:30:2E:47:01:2F:F5:C8:23:03:A4:66:1A:DE
Certificate issuer: /CN=24e1c5110e0e90302e47012ff5c82303a4661ade
Certificate serial: 0196C83B15A8DE50699824BB6B0B204ABD6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
Manifest number: 0338
Signing time: Tue 13 May 2025 06:00:37 +0000
Manifest this update: Tue 13 May 2025 06:00:37 +0000
Manifest next update: Wed 14 May 2025 06:00:37 +0000
Files and hashes: 1: JOHFEQ4OkDAuRwEv9cgjA6RmGt4.crl (hash: zX3nO69Dj58aVBytl09UAsyp/B+xe5zyfOceliUGaCE=)
2: Q9WbsU5WLEBh2f38P2PGkPWP_HU.roa (hash: WTO6N136wAT9bdE+8AHFBftVkmxQHl/oBzZ0du4NvZs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
rsync://rpki.ripe.net/repository/DEFAULT/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 06:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c8:3b:15:a8:de:50:69:98:24:bb:6b:0b:20:4a:bd:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24e1c5110e0e90302e47012ff5c82303a4661ade
Validity
Not Before: May 13 06:00:37 2025 GMT
Not After : May 14 06:00:37 2025 GMT
Subject: CN=cb5c4e4e33cc302afeadf4ac18c6c96b793559b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:fa:0f:8f:8c:1c:db:c4:be:11:79:31:a3:c5:
f7:eb:77:04:23:96:dd:49:20:5c:ea:73:31:c2:c6:
8a:88:60:db:fc:8d:f1:d9:c9:d9:2f:9a:a6:b7:62:
0b:de:22:fb:21:ef:b3:b6:0a:34:16:c8:b2:fe:59:
08:19:1f:64:29:94:42:f2:2a:a3:75:12:18:15:f9:
1c:ff:7e:73:d2:74:44:3a:96:2f:5e:62:86:1c:b0:
72:93:ea:3a:47:94:4d:26:79:27:e2:89:13:65:16:
e8:ef:ed:1a:52:c2:98:4b:51:ea:21:25:05:2e:dc:
b2:b5:41:c4:ea:b2:9e:e8:e9:32:9a:9a:ef:b6:77:
27:b7:d3:5a:29:90:15:24:35:fd:12:49:ac:a9:f1:
58:71:6a:33:88:cd:aa:7e:dc:22:03:9c:b4:65:5c:
8b:d6:19:5b:b5:ee:0a:fc:33:c2:82:46:e0:f6:1a:
27:f7:83:d2:4c:50:6b:63:81:0b:5f:f5:de:fc:17:
6b:f0:ee:78:56:07:06:50:d2:73:15:54:16:e3:59:
2b:bd:1d:e5:b7:f1:29:85:5b:72:3a:ca:da:5d:df:
d4:7d:40:a9:31:74:62:a1:f9:40:60:a0:ba:74:a6:
16:1a:7e:cf:ee:bd:87:7c:f2:70:b7:6d:22:99:f9:
63:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:5C:4E:4E:33:CC:30:2A:FE:AD:F4:AC:18:C6:C9:6B:79:35:59:B1
X509v3 Authority Key Identifier:
keyid:24:E1:C5:11:0E:0E:90:30:2E:47:01:2F:F5:C8:23:03:A4:66:1A:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:3f:a3:26:5e:b3:c1:ca:dc:d6:2f:c7:85:7c:93:ec:00:19:
3d:12:40:bd:de:49:fa:fb:a4:8b:7c:ab:4e:21:8c:4b:f0:eb:
a8:4f:9c:de:9e:bd:8f:09:6b:f0:bb:18:a1:a3:5e:2d:39:79:
77:46:01:aa:f9:07:f2:d2:45:d4:e4:39:d7:d3:c0:ac:65:38:
31:8d:67:ad:5f:8b:65:2a:c3:06:be:ba:bd:0f:2f:04:b1:3f:
b2:49:25:35:ad:b7:a5:ee:95:10:9a:a7:16:75:4e:01:1f:3e:
e5:4e:7b:ef:19:57:ac:6c:10:a8:8b:16:21:7c:0f:f1:63:3a:
8d:9e:0d:4e:3c:1e:c3:5c:e5:34:2c:e5:94:fe:23:78:6f:73:
21:09:04:60:16:1c:16:2e:e2:ae:60:ae:4a:a5:e3:0c:56:c5:
08:10:d5:32:ce:6a:f0:31:b5:2a:d4:9b:16:a7:ce:9d:a3:82:
44:b7:ee:67:d3:06:13:ec:fb:f6:54:6a:95:17:6c:ac:f4:2b:
49:95:ff:ab:a0:e7:e7:4b:f1:20:3f:2b:5f:95:04:1d:cb:13:
8c:2e:0c:c8:ab:b9:48:02:1a:34:91:a9:d2:c1:8d:eb:09:d7:
2b:23:26:79:c4:47:b4:0e:11:9e:67:34:94:96:99:83:cb:13:
90:dd:8c:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 15:47:53 2025 by rpki-client