Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.mft
File: JchJyqV3LJi4E8E7TzD85PSNLa4.mft (raw, json)
Hash identifier: dnsRlLmbqjeJ6EMMfmWe02jkV4FpDwqwFLI2kZI6xs0=
Subject key identifier: 49:91:F7:D9:BF:A7:88:E5:C9:B5:31:6A:F1:AE:AB:DB:E9:DE:71:C4
Authority key identifier: 25:C8:49:CA:A5:77:2C:98:B8:13:C1:3B:4F:30:FC:E4:F4:8D:2D:AE
Certificate issuer: /CN=25c849caa5772c98b813c13b4f30fce4f48d2dae
Certificate serial: 0198D51604D5CA8A90458EB0CBD64A96C400
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JchJyqV3LJi4E8E7TzD85PSNLa4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.mft
Manifest number: 0A1E
Signing time: Sat 23 Aug 2025 04:00:46 +0000
Manifest this update: Sat 23 Aug 2025 04:00:46 +0000
Manifest next update: Sun 24 Aug 2025 04:00:46 +0000
Files and hashes: 1: JchJyqV3LJi4E8E7TzD85PSNLa4.crl (hash: /S2WyohN1pSjjBFMwgdVjXqd+SN3m92y+rC0kd8Xhk8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.mft
rsync://rpki.ripe.net/repository/DEFAULT/JchJyqV3LJi4E8E7TzD85PSNLa4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:16:04:d5:ca:8a:90:45:8e:b0:cb:d6:4a:96:c4:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25c849caa5772c98b813c13b4f30fce4f48d2dae
Validity
Not Before: Aug 23 04:00:46 2025 GMT
Not After : Aug 24 04:00:46 2025 GMT
Subject: CN=4991f7d9bfa788e5c9b5316af1aeabdbe9de71c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:90:ab:7b:70:40:f8:ce:bf:cf:76:ae:e4:6f:
69:2f:ee:12:f6:0f:01:01:24:b2:15:14:71:2a:77:
de:43:c6:d9:87:b7:5d:a2:eb:83:53:68:51:68:a4:
af:4d:30:a4:19:3e:aa:4e:91:a5:44:f8:3d:2b:93:
3e:da:ee:30:0b:ea:b3:42:1f:be:1b:c4:1a:20:3c:
e8:c5:84:bb:29:49:1f:63:07:e4:ba:7a:a4:d3:4e:
a9:8c:10:8b:eb:8c:07:77:7c:cb:2f:9b:3d:4c:60:
dc:23:e1:e4:83:0e:d1:37:06:d4:29:50:3a:5c:e9:
22:ee:df:a2:47:af:4b:22:be:4d:fa:2c:00:f8:04:
f2:8b:da:b1:45:3a:eb:eb:80:55:cd:eb:37:52:17:
15:51:af:b4:9c:47:02:8a:c8:29:ff:d0:97:06:19:
bd:33:24:f7:eb:36:14:a6:78:04:3f:cd:bf:6c:ad:
12:df:27:a0:b0:95:98:26:e2:ed:b2:5a:d0:d8:39:
1a:8f:b9:43:91:c3:84:3b:e0:d2:d7:90:8c:f6:15:
ab:19:94:ee:37:56:59:0c:33:fe:de:47:76:eb:14:
18:f0:54:96:ed:d3:2f:50:5a:4e:ea:ac:98:95:71:
ac:8b:21:f1:8f:0c:d1:ad:87:9b:02:ad:56:24:cb:
65:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:91:F7:D9:BF:A7:88:E5:C9:B5:31:6A:F1:AE:AB:DB:E9:DE:71:C4
X509v3 Authority Key Identifier:
keyid:25:C8:49:CA:A5:77:2C:98:B8:13:C1:3B:4F:30:FC:E4:F4:8D:2D:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JchJyqV3LJi4E8E7TzD85PSNLa4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:d3:06:1e:fe:4e:2b:4b:00:9e:e2:56:3d:3b:3d:13:de:d5:
25:6a:8b:c6:57:ab:4d:cf:32:e5:4b:8d:ed:d5:5b:c1:9f:40:
61:26:d5:84:6f:67:28:df:55:09:43:ed:4e:8d:36:1b:29:35:
15:54:be:b2:b5:02:ee:3d:49:26:b7:72:bb:00:92:55:38:77:
ea:1b:44:13:86:ab:cb:ea:03:13:f3:93:10:68:cd:d3:a8:28:
32:6d:07:f3:3e:61:22:e6:63:e0:87:2f:77:7b:2a:83:f7:be:
ed:78:e8:1f:42:4a:09:e6:e9:e1:31:6e:bf:4d:03:9f:37:2f:
0e:0a:8b:2e:be:e2:ae:15:22:23:92:ed:7c:78:b1:ad:73:8c:
90:aa:4c:4f:37:0f:de:29:29:ae:3e:a1:cc:ea:1f:1d:66:e6:
64:7e:43:42:f7:4b:96:c8:56:bd:75:fc:24:3c:c6:0e:be:bf:
ef:5a:3a:87:95:4e:bf:f7:94:ec:84:84:02:51:05:65:a5:2e:
f9:cd:a6:c9:2f:9b:38:31:d7:cd:3a:92:31:ce:0e:c3:93:a5:
13:e2:68:4a:78:88:54:59:50:35:d3:98:a6:99:1c:01:86:4c:
33:64:e9:36:95:0c:43:2b:bf:9c:f2:f0:b7:d8:df:02:51:c6:
e0:e3:b2:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:27:00 2025 by rpki-client