Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
File: JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft (raw, json)
Hash identifier: g6E2eT9/pkgWCzBoEXlSmbeRqvJI+rfyFhS1mGlp2gE=
Subject key identifier: E2:FF:AE:C2:96:FE:1F:E1:BF:68:E8:0F:92:7F:29:C0:8D:F4:FD:1D
Authority key identifier: 24:E1:C5:11:0E:0E:90:30:2E:47:01:2F:F5:C8:23:03:A4:66:1A:DE
Certificate issuer: /CN=24e1c5110e0e90302e47012ff5c82303a4661ade
Certificate serial: 0197CCF1AAE5B7483103595F583D4B7AE2DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
Manifest number: 03BF
Signing time: Wed 02 Jul 2025 21:01:19 +0000
Manifest this update: Wed 02 Jul 2025 21:01:19 +0000
Manifest next update: Thu 03 Jul 2025 21:01:19 +0000
Files and hashes: 1: JOHFEQ4OkDAuRwEv9cgjA6RmGt4.crl (hash: QMEdMqs4sLHptfMx3aIJvkfGl7luky2oDs+4CffWG5w=)
2: Q9WbsU5WLEBh2f38P2PGkPWP_HU.roa (hash: WTO6N136wAT9bdE+8AHFBftVkmxQHl/oBzZ0du4NvZs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
rsync://rpki.ripe.net/repository/DEFAULT/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 20:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:cc:f1:aa:e5:b7:48:31:03:59:5f:58:3d:4b:7a:e2:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24e1c5110e0e90302e47012ff5c82303a4661ade
Validity
Not Before: Jul 2 21:01:19 2025 GMT
Not After : Jul 3 21:01:19 2025 GMT
Subject: CN=e2ffaec296fe1fe1bf68e80f927f29c08df4fd1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:4d:06:d5:27:22:05:b9:da:d7:c1:58:59:40:
91:83:82:8e:d2:0f:a8:37:9f:32:4a:2f:9a:c7:6c:
3f:d7:cb:a0:07:47:62:0f:e9:80:48:c1:65:ad:98:
e3:15:86:b9:98:28:c8:bc:0c:0d:81:91:91:e4:56:
9f:7e:3d:b0:08:47:9c:06:5e:69:fb:44:e1:b4:5b:
16:88:cd:41:b8:7e:03:cb:8b:47:0f:a4:db:cd:8c:
98:51:f6:bb:12:d6:27:d9:4f:a7:ba:1c:e1:56:b3:
f2:54:a6:2c:59:32:6e:2b:2c:55:47:bd:a0:1d:34:
75:39:c5:53:bb:0a:b3:cd:51:90:ca:3d:93:f3:ae:
92:3b:00:a7:fc:87:67:44:30:82:78:9d:50:1d:45:
6e:4b:87:1d:6d:42:a8:6d:31:de:a6:3d:ee:f9:ee:
73:0c:86:98:a0:a0:f6:7d:80:c9:b0:f7:54:e4:05:
05:8f:a5:c1:43:d4:e2:6d:02:7b:d7:66:b6:64:92:
00:48:34:9f:74:0d:cc:95:2c:fd:9b:bf:0d:2f:89:
da:af:a1:1b:95:8f:69:28:7c:6e:1e:61:f6:e5:74:
d1:8a:24:37:7c:9e:9f:2f:dd:93:76:66:1f:90:95:
40:82:b3:77:24:5d:0c:e3:94:99:4a:58:ea:e5:ff:
cc:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:FF:AE:C2:96:FE:1F:E1:BF:68:E8:0F:92:7F:29:C0:8D:F4:FD:1D
X509v3 Authority Key Identifier:
keyid:24:E1:C5:11:0E:0E:90:30:2E:47:01:2F:F5:C8:23:03:A4:66:1A:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b3bc70-5db0-47b9-b696-67da5409116f/1/JOHFEQ4OkDAuRwEv9cgjA6RmGt4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:d7:d1:c6:72:64:f8:c6:5b:ff:42:89:4a:0a:8b:27:8b:f5:
ea:a0:c9:87:93:d6:ef:cc:b0:64:71:3d:b4:05:92:f6:52:e3:
27:ac:e8:01:db:9e:6e:9a:8c:6d:8b:14:1a:74:4f:70:f6:01:
0d:aa:e4:bd:b4:ef:48:51:33:73:a1:3f:22:02:71:14:13:49:
14:2b:36:b8:1f:6c:81:16:bc:ea:75:08:54:cb:80:76:57:48:
85:2b:78:7b:af:95:68:41:a8:0e:7e:e0:f2:60:fc:c7:a3:c5:
93:8d:60:d5:a4:a8:72:23:59:ae:27:f0:c4:8e:de:d4:5e:dc:
78:bf:ee:92:08:ae:38:b3:7d:9e:18:4d:5c:07:59:2a:5c:a7:
15:b6:ff:37:6a:ac:60:dd:6e:1c:53:16:38:0a:ac:0f:c6:d0:
71:d2:6b:44:3f:88:2f:4d:16:93:13:07:6f:06:8f:d4:f3:bc:
f3:03:b1:f3:96:e4:9a:17:28:21:94:77:e8:5a:b5:51:9d:01:
a5:5e:41:a2:10:e6:fe:9b:d4:f3:15:a0:03:c9:29:32:7e:14:
c1:a0:b8:55:78:8a:61:7f:9d:4c:b2:a7:13:b8:d9:1b:f8:b2:
80:38:85:19:b8:53:02:48:fa:d6:5f:2d:35:c5:b5:5f:64:4c:
b0:e5:8d:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 23:00:19 2025 by rpki-client