Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.mft
File: JchJyqV3LJi4E8E7TzD85PSNLa4.mft (raw, json)
Hash identifier: Zp5MCVu+h4ggGJO8rK/UIcu8U1wxW/8FEvZU6XKhbRs=
Subject key identifier: 06:82:2B:4D:82:AE:9D:5E:BB:02:7F:D6:04:72:69:2C:A1:AB:D6:E6
Authority key identifier: 25:C8:49:CA:A5:77:2C:98:B8:13:C1:3B:4F:30:FC:E4:F4:8D:2D:AE
Certificate issuer: /CN=25c849caa5772c98b813c13b4f30fce4f48d2dae
Certificate serial: 0199FC8F2827CF01DF7F310DA0BCEA550F86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JchJyqV3LJi4E8E7TzD85PSNLa4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.mft
Manifest number: 0AB7
Signing time: Sun 19 Oct 2025 13:01:04 +0000
Manifest this update: Sun 19 Oct 2025 13:01:04 +0000
Manifest next update: Mon 20 Oct 2025 13:01:04 +0000
Files and hashes: 1: JchJyqV3LJi4E8E7TzD85PSNLa4.crl (hash: 8kdYMUPdRHf+POMJ1lsDFABRGcBYsXMMz91rNWLGVfs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.mft
rsync://rpki.ripe.net/repository/DEFAULT/JchJyqV3LJi4E8E7TzD85PSNLa4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:28:27:cf:01:df:7f:31:0d:a0:bc:ea:55:0f:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25c849caa5772c98b813c13b4f30fce4f48d2dae
Validity
Not Before: Oct 19 13:01:04 2025 GMT
Not After : Oct 20 13:01:04 2025 GMT
Subject: CN=06822b4d82ae9d5ebb027fd60472692ca1abd6e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:43:cf:54:5e:35:93:fd:9a:30:c4:b9:e6:58:
f0:0b:b8:04:c0:2a:e6:3f:a4:fd:ca:a1:86:23:13:
60:b0:52:32:04:ad:80:e4:f6:fa:fd:02:ae:ea:02:
60:7b:04:74:af:e7:56:40:af:1d:4e:86:aa:cd:3e:
80:08:a5:7b:a9:a0:64:2f:2a:04:81:23:9d:f4:62:
34:3b:0e:3c:7c:23:7e:2d:27:74:ae:07:29:86:8b:
00:2f:bc:af:a0:ea:50:a8:ef:54:57:ed:0c:52:a7:
ad:94:7b:92:e3:9a:eb:5e:a9:34:95:cf:18:d1:a4:
8d:92:05:c6:32:12:d7:74:eb:ea:7f:10:a9:68:d9:
1c:fd:4b:a9:ef:4f:a5:41:d2:63:f1:f5:3d:3a:ec:
9e:65:60:41:bd:f1:51:72:64:e7:ed:71:32:61:4a:
00:b7:0d:22:13:a3:6f:fc:04:e8:30:2a:fa:95:37:
92:25:52:a8:d3:27:21:be:de:bf:4a:03:0f:d5:77:
c2:89:62:b3:d7:bc:c8:be:6a:76:62:e6:99:4d:6e:
0a:b0:2d:a7:0e:8f:0c:17:17:ef:31:6f:fd:19:95:
0f:45:cf:ff:fb:b5:af:b8:92:80:47:37:96:00:68:
f7:da:35:5c:d7:7a:f1:1f:af:24:03:89:f6:a3:09:
30:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:82:2B:4D:82:AE:9D:5E:BB:02:7F:D6:04:72:69:2C:A1:AB:D6:E6
X509v3 Authority Key Identifier:
keyid:25:C8:49:CA:A5:77:2C:98:B8:13:C1:3B:4F:30:FC:E4:F4:8D:2D:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JchJyqV3LJi4E8E7TzD85PSNLa4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:d6:f1:74:7c:73:b6:d5:f5:3f:5d:ba:d3:a8:77:e6:b9:35:
83:e5:06:78:a4:52:96:fa:20:5a:15:2d:59:94:c6:88:73:99:
d4:6d:ef:71:8c:45:71:58:a6:5b:33:6b:2c:c5:9d:3f:ac:46:
af:f3:38:5f:2f:9d:3d:63:fc:82:50:62:26:41:38:19:cf:65:
31:de:31:52:d7:bf:54:6e:24:17:0e:82:08:3b:56:d5:3c:e4:
d4:64:79:20:b3:b1:89:87:dd:ba:e9:99:a3:bd:3a:7b:3d:3e:
9e:c3:0b:4b:8b:20:68:65:d0:6e:06:e1:8d:99:48:8a:3d:74:
d5:10:00:1c:db:fe:5d:c6:b6:6c:11:f1:68:3e:6f:a3:e3:4f:
45:48:31:6d:ac:7c:0b:83:52:0d:12:9d:6a:cd:ca:60:b2:fb:
96:02:d7:b9:0f:b9:31:9c:e8:4d:15:6d:1c:e3:f0:8b:c1:6b:
bb:c1:9d:fb:37:6f:5c:e8:ba:84:dc:88:9f:e0:a1:53:f3:3b:
50:35:2b:75:fe:a3:ee:77:f1:f2:d2:4c:b2:8f:d5:7c:6a:7a:
68:3a:b4:32:ee:2f:61:2b:fb:62:8d:a2:df:9f:d8:2e:b1:0d:
4c:ad:37:de:aa:2e:5f:c5:eb:b3:45:ea:a2:11:98:12:56:68:
e1:fe:b5:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:33:51 2025 by rpki-client