Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/82a661-5587-4083-813c-3459be266731/1/jFSoRmMugzQOEU0NNVkbPUIYi3Y.mft
File: jFSoRmMugzQOEU0NNVkbPUIYi3Y.mft (raw, json)
Hash identifier: 1Dys9gEadx6uk8yzKtXXGH4z7m5k5za/BFQPU9KktCw=
Subject key identifier: B3:95:64:11:26:59:DB:36:56:4E:EB:81:D7:F9:68:46:86:2D:94:3B
Authority key identifier: 8C:54:A8:46:63:2E:83:34:0E:11:4D:0D:35:59:1B:3D:42:18:8B:76
Certificate issuer: /CN=8c54a846632e83340e114d0d35591b3d42188b76
Certificate serial: 0197CCBA970E01438E86A4619F21E9BE027B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jFSoRmMugzQOEU0NNVkbPUIYi3Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/82a661-5587-4083-813c-3459be266731/1/jFSoRmMugzQOEU0NNVkbPUIYi3Y.mft
Manifest number: 0DDD
Signing time: Wed 02 Jul 2025 20:01:09 +0000
Manifest this update: Wed 02 Jul 2025 20:01:09 +0000
Manifest next update: Thu 03 Jul 2025 20:01:09 +0000
Files and hashes: 1: 0NQ-WA07ivHNbBCHB8RlQLxAoLU.roa (hash: yrHnQMXQ6Qe+mkwHNhl6sEUBZtgafrbZ/F8WnR+E6Bs=)
2: jFSoRmMugzQOEU0NNVkbPUIYi3Y.crl (hash: HaPD2hT4RZ7A8Q9MWMNFbLA5aSa2sTSHlC2/e7mB1Zk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/82a661-5587-4083-813c-3459be266731/1/jFSoRmMugzQOEU0NNVkbPUIYi3Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/82a661-5587-4083-813c-3459be266731/1/jFSoRmMugzQOEU0NNVkbPUIYi3Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/jFSoRmMugzQOEU0NNVkbPUIYi3Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 20:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:cc:ba:97:0e:01:43:8e:86:a4:61:9f:21:e9:be:02:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c54a846632e83340e114d0d35591b3d42188b76
Validity
Not Before: Jul 2 20:01:09 2025 GMT
Not After : Jul 3 20:01:09 2025 GMT
Subject: CN=b39564112659db36564eeb81d7f96846862d943b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:d8:38:13:2d:bd:ef:b6:27:c5:d6:c6:aa:d8:
08:cd:e1:17:36:de:15:7f:7e:01:34:b7:6f:4f:72:
90:7d:18:9e:a9:e4:1a:df:24:d7:8e:eb:e5:b6:f6:
4f:70:43:a2:df:13:02:9e:a8:12:73:d2:0c:45:44:
6b:81:9c:bf:8f:69:33:9b:c4:3b:76:95:f9:c8:f4:
4b:fb:39:aa:91:fc:86:76:c4:d1:1c:ef:e0:0a:c8:
89:fb:29:2d:20:50:ac:48:c8:46:fe:14:d8:4f:69:
c4:c8:bc:18:ee:96:95:ef:6d:6e:99:04:77:14:da:
2a:c7:7d:8e:c1:c9:62:36:bc:7d:f9:40:8e:82:40:
93:d3:cc:04:00:a2:73:52:07:85:c6:86:5a:d8:86:
53:47:e1:be:ea:ff:58:21:6f:b1:74:36:b7:d1:25:
05:e3:8e:65:95:92:4a:ae:b5:a4:8b:55:43:97:87:
e2:ba:dd:12:f5:8a:53:f7:c4:bb:2f:91:45:69:1b:
96:b4:7f:11:f1:b3:48:43:bd:d8:dc:e9:83:64:60:
1c:b6:ed:08:10:4e:56:27:da:4e:4e:7b:f1:9f:5a:
d5:43:bf:6b:b5:9f:79:94:f6:cc:df:93:61:5d:10:
3c:ff:61:f1:86:88:66:65:e0:46:13:24:9a:10:08:
36:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:95:64:11:26:59:DB:36:56:4E:EB:81:D7:F9:68:46:86:2D:94:3B
X509v3 Authority Key Identifier:
keyid:8C:54:A8:46:63:2E:83:34:0E:11:4D:0D:35:59:1B:3D:42:18:8B:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jFSoRmMugzQOEU0NNVkbPUIYi3Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/82a661-5587-4083-813c-3459be266731/1/jFSoRmMugzQOEU0NNVkbPUIYi3Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/82a661-5587-4083-813c-3459be266731/1/jFSoRmMugzQOEU0NNVkbPUIYi3Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:0f:19:6d:ad:77:27:1d:3e:f3:d3:1d:19:ff:de:a1:c9:dd:
90:aa:fb:b2:dc:de:e1:4f:b4:97:58:8e:6d:a7:bf:5d:28:34:
b6:a3:36:26:d1:aa:c1:86:b6:c2:d2:5f:b6:5b:40:0e:07:9e:
41:79:0b:c5:42:75:82:03:be:64:77:7e:1d:bc:17:b2:6b:8f:
68:0d:d8:a7:97:1b:ad:53:39:94:fc:9b:dc:8e:33:af:83:4e:
51:df:e5:ba:7f:47:de:e8:f4:50:94:b2:78:8c:73:7c:d0:5e:
c0:fa:e7:37:f8:59:ad:95:a4:c0:f8:3d:52:b1:68:3d:b6:06:
ad:66:e3:6c:6a:d0:fc:39:bd:13:b7:71:5f:4e:52:7b:b0:e4:
39:14:40:cd:33:81:a4:fc:87:bd:5c:6c:1d:ec:5e:a4:c1:da:
dc:dd:ea:32:6b:f6:54:35:38:90:1f:96:77:fc:08:f6:7a:e8:
5a:5b:16:05:5b:7e:39:c6:a3:e9:88:19:7b:2f:bc:70:18:e8:
ec:7b:fa:d3:02:bf:6a:24:3f:e5:b7:53:f2:db:5a:04:ee:9b:
e2:12:48:07:0a:12:ac:6f:32:4e:bb:d6:37:46:cb:c8:bc:b3:
94:a2:be:86:e3:ee:9b:2f:21:57:8d:02:1a:36:7a:08:1e:fa:
f8:73:a7:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 00:34:33 2025 by rpki-client