Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
File: JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft (raw, json)
Hash identifier: V4k4+IU5AVPxg+Kc/zHWfCF8EYgCbUcfaBPtSV9JsoE=
Subject key identifier: 6B:A7:DD:06:7B:79:81:20:E2:37:0B:D1:91:12:AF:72:A2:A7:96:AF
Authority key identifier: 24:E1:C5:11:0E:0E:90:30:2E:47:01:2F:F5:C8:23:03:A4:66:1A:DE
Certificate issuer: /CN=24e1c5110e0e90302e47012ff5c82303a4661ade
Certificate serial: 0198D7731F4BA2A2EF0C41870C5E89E9898B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
Manifest number: 0449
Signing time: Sat 23 Aug 2025 15:01:42 +0000
Manifest this update: Sat 23 Aug 2025 15:01:42 +0000
Manifest next update: Sun 24 Aug 2025 15:01:42 +0000
Files and hashes: 1: JOHFEQ4OkDAuRwEv9cgjA6RmGt4.crl (hash: aiBlWEGgX4REhvsBt3zSRJiV2X7R3J4JY/PqjAQ6m9I=)
2: Q9WbsU5WLEBh2f38P2PGkPWP_HU.roa (hash: WTO6N136wAT9bdE+8AHFBftVkmxQHl/oBzZ0du4NvZs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
rsync://rpki.ripe.net/repository/DEFAULT/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:73:1f:4b:a2:a2:ef:0c:41:87:0c:5e:89:e9:89:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24e1c5110e0e90302e47012ff5c82303a4661ade
Validity
Not Before: Aug 23 15:01:42 2025 GMT
Not After : Aug 24 15:01:42 2025 GMT
Subject: CN=6ba7dd067b798120e2370bd19112af72a2a796af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:90:00:06:5a:3a:3d:ab:17:df:35:82:04:ba:
93:ec:2e:62:84:db:72:06:c5:09:75:e7:72:52:3b:
49:40:a2:7d:0f:28:e5:8c:61:ff:cf:05:e5:9a:6d:
6b:39:c1:25:9f:46:0a:d0:6c:68:e3:91:07:1e:19:
a1:d2:61:88:85:4e:3b:6b:aa:34:ac:53:6f:a5:7f:
fd:29:78:34:c6:3c:ab:a3:8f:65:11:84:d4:da:84:
32:7e:31:b8:f8:00:00:25:25:fa:a0:2d:dc:6f:cc:
bc:85:76:eb:0b:6c:4c:95:1f:92:7c:a3:91:22:e9:
fa:c5:1e:aa:6e:e2:38:ec:e3:61:64:85:cb:fa:93:
63:b2:57:ba:a7:ed:73:ef:75:52:bd:07:96:8e:6f:
52:12:77:dd:e7:92:60:55:5d:0b:fc:e0:44:2a:c9:
b1:9f:e3:b1:0e:de:8e:00:22:04:cb:51:be:3f:28:
4a:2a:5b:69:76:35:f7:31:a0:e1:20:f1:e2:d1:4e:
e1:c3:b8:3f:5b:b3:d7:ed:40:4c:78:ea:27:64:e9:
00:16:0f:16:99:4a:e2:11:4d:c4:44:d6:db:47:4a:
6b:6f:bc:e7:85:c3:e5:2f:5c:9d:bb:5a:cd:47:60:
3a:8a:d4:33:38:0a:89:31:ea:89:b9:95:e0:30:10:
73:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:A7:DD:06:7B:79:81:20:E2:37:0B:D1:91:12:AF:72:A2:A7:96:AF
X509v3 Authority Key Identifier:
keyid:24:E1:C5:11:0E:0E:90:30:2E:47:01:2F:F5:C8:23:03:A4:66:1A:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:63:54:ca:e3:46:0b:c7:80:53:4a:5e:ff:64:a3:17:c1:e7:
a2:3b:30:71:6b:86:74:28:28:e1:fc:c6:69:24:04:9a:f0:3c:
95:8e:d7:59:40:fb:e9:ad:04:88:74:c2:23:6b:e6:9e:60:9f:
ea:84:8f:56:e1:e6:1c:8c:ed:b0:84:0d:a9:19:56:af:55:d8:
0d:b3:15:a1:5b:a7:f9:17:de:ca:46:83:6b:61:7b:1f:90:a3:
b7:54:a4:da:a3:8f:c0:79:09:d6:6b:ad:50:09:74:8a:91:1d:
fd:69:b3:8a:d6:e6:02:9b:6b:60:58:77:78:7b:9f:cc:f7:6f:
14:c3:34:52:dd:58:1f:ea:9b:48:42:e2:b4:12:86:01:0e:c9:
9f:c0:9a:2e:e7:00:89:5d:7c:eb:7d:5f:31:d2:de:2e:fa:c9:
65:a6:36:cc:f0:13:f7:e2:db:b4:72:4c:c2:0f:63:54:76:98:
ca:aa:a4:c6:4e:70:c1:99:7c:f6:40:b1:f5:3c:44:cb:f1:b7:
d8:8e:8b:04:e0:9e:9b:b9:e4:77:2f:42:21:6e:d4:f0:2d:b2:
33:95:f0:b7:0a:82:4e:a0:00:10:ee:d6:fa:84:46:53:87:62:
bc:6d:18:83:ac:8c:3b:ba:d2:ee:eb:b6:58:4e:ab:64:e5:4b:
d0:af:91:78
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjXcx9LoqLvDEGHDF6J6YmLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI0ZTFjNTExMGUwZTkwMzAyZTQ3MDEyZmY1YzgyMzAzYTQ2
NjFhZGUwHhcNMjUwODIzMTUwMTQyWhcNMjUwODI0MTUwMTQyWjAzMTEwLwYDVQQD
Eyg2YmE3ZGQwNjdiNzk4MTIwZTIzNzBiZDE5MTEyYWY3MmEyYTc5NmFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoZAABlo6PasX3zWCBLqT7C5ihNty
BsUJdedyUjtJQKJ9DyjljGH/zwXlmm1rOcEln0YK0Gxo45EHHhmh0mGIhU47a6o0
rFNvpX/9KXg0xjyro49lEYTU2oQyfjG4+AAAJSX6oC3cb8y8hXbrC2xMlR+SfKOR
Iun6xR6qbuI47ONhZIXL+pNjsle6p+1z73VSvQeWjm9SEnfd55JgVV0L/OBEKsmx
n+OxDt6OACIEy1G+PyhKKltpdjX3MaDhIPHi0U7hw7g/W7PX7UBMeOonZOkAFg8W
mUriEU3ERNbbR0prb7znhcPlL1ydu1rNR2A6itQzOAqJMeqJuZXgMBBzbQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGun3QZ7eYEg4jcL0ZESr3Kip5avMB8GA1UdIwQY
MBaAFCThxREODpAwLkcBL/XIIwOkZhreMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSk9IRkVRNE9rREF1UndFdjljZ2pBNlJtR3Q0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC9iM2JjNzAtNWRiMC00N2I5LWI2OTYt
NjdkYTU0MDkxMTZmLzEvSk9IRkVRNE9rREF1UndFdjljZ2pBNlJtR3Q0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC9iM2JjNzAtNWRiMC00N2I5LWI2OTYtNjdkYTU0MDkxMTZm
LzEvSk9IRkVRNE9rREF1UndFdjljZ2pBNlJtR3Q0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUGNUyuNG
C8eAU0pe/2SjF8HnojswcWuGdCgo4fzGaSQEmvA8lY7XWUD76a0EiHTCI2vmnmCf
6oSPVuHmHIztsIQNqRlWr1XYDbMVoVun+RfeykaDa2F7H5Cjt1Sk2qOPwHkJ1mut
UAl0ipEd/WmzitbmAptrYFh3eHufzPdvFMM0Ut1YH+qbSELitBKGAQ7Jn8CaLucA
iV18631fMdLeLvrJZaY2zPAT9+LbtHJMwg9jVHaYyqqkxk5wwZl89kCx9TxEy/G3
2I6LBOCem7nkdy9CIW7U8C2yM5XwtwqCTqAAEO7W+oRGU4divG0Yg6yMO7rS7uu2
WE6rZOVL0K+ReA==
-----END CERTIFICATE-----
Generated at Sun Aug 24 00:06:56 2025 by rpki-client