Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/82a661-5587-4083-813c-3459be266731/1/jFSoRmMugzQOEU0NNVkbPUIYi3Y.mft
File: jFSoRmMugzQOEU0NNVkbPUIYi3Y.mft (raw, json)
Hash identifier: mEVyMC8/BCzubfdYQpBDmLUwrqoqjkDxKy03LnKOR0s=
Subject key identifier: 6C:C5:2C:2C:4A:F5:EF:92:14:D4:FA:E4:92:08:58:C2:80:AF:06:24
Authority key identifier: 8C:54:A8:46:63:2E:83:34:0E:11:4D:0D:35:59:1B:3D:42:18:8B:76
Certificate issuer: /CN=8c54a846632e83340e114d0d35591b3d42188b76
Certificate serial: 0198D54EAD3E5E7A22E30FB28D5BEE2C78F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jFSoRmMugzQOEU0NNVkbPUIYi3Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/82a661-5587-4083-813c-3459be266731/1/jFSoRmMugzQOEU0NNVkbPUIYi3Y.mft
Manifest number: 0E66
Signing time: Sat 23 Aug 2025 05:02:39 +0000
Manifest this update: Sat 23 Aug 2025 05:02:39 +0000
Manifest next update: Sun 24 Aug 2025 05:02:39 +0000
Files and hashes: 1: 0NQ-WA07ivHNbBCHB8RlQLxAoLU.roa (hash: yrHnQMXQ6Qe+mkwHNhl6sEUBZtgafrbZ/F8WnR+E6Bs=)
2: jFSoRmMugzQOEU0NNVkbPUIYi3Y.crl (hash: KR41HZb1UUTgoTNVhQx4z+nPHprrlBGOOIf6+5AT9aY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/82a661-5587-4083-813c-3459be266731/1/jFSoRmMugzQOEU0NNVkbPUIYi3Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/82a661-5587-4083-813c-3459be266731/1/jFSoRmMugzQOEU0NNVkbPUIYi3Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/jFSoRmMugzQOEU0NNVkbPUIYi3Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:ad:3e:5e:7a:22:e3:0f:b2:8d:5b:ee:2c:78:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c54a846632e83340e114d0d35591b3d42188b76
Validity
Not Before: Aug 23 05:02:39 2025 GMT
Not After : Aug 24 05:02:39 2025 GMT
Subject: CN=6cc52c2c4af5ef9214d4fae4920858c280af0624
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:c9:5f:3a:b5:20:12:81:d3:88:f2:97:7d:dc:
13:07:df:12:34:1f:8f:cd:c0:c0:6c:a5:e4:36:25:
1e:2e:b1:95:a3:de:68:70:19:eb:c8:83:c9:ac:08:
52:a9:cb:6d:1a:fc:be:ec:90:db:ed:83:7f:58:61:
6e:8c:21:f5:72:cf:58:e7:e1:cf:dd:bd:13:eb:ff:
a7:ea:c5:f2:49:72:af:be:60:f9:44:5f:4a:85:6d:
bf:02:72:14:36:90:7b:4c:ff:6e:3b:40:ce:9e:0f:
82:cc:7a:4a:3a:49:ee:44:88:55:67:d0:1d:c5:8c:
b3:b9:7c:68:52:4c:28:5d:ff:28:3b:13:ca:4b:dd:
09:b1:38:b8:0b:d2:36:75:af:9a:80:0b:2b:10:3e:
30:22:a1:99:69:29:35:29:95:b5:da:ec:d6:31:fd:
e0:af:8e:6b:a0:db:d0:4e:96:d5:36:10:6d:4f:61:
a3:aa:ad:94:5a:f3:a3:75:80:8e:ee:08:b5:8a:ce:
d5:c6:8f:60:f8:16:e0:f7:86:e9:3f:a6:d4:a5:69:
62:c9:19:d9:5b:8b:db:1f:5c:0c:50:03:3d:80:b0:
b3:3e:e3:b4:3f:54:69:d5:e6:2a:9c:ef:36:df:46:
ee:39:7e:f1:ed:17:87:cc:21:c4:2d:40:91:a0:eb:
ed:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:C5:2C:2C:4A:F5:EF:92:14:D4:FA:E4:92:08:58:C2:80:AF:06:24
X509v3 Authority Key Identifier:
keyid:8C:54:A8:46:63:2E:83:34:0E:11:4D:0D:35:59:1B:3D:42:18:8B:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jFSoRmMugzQOEU0NNVkbPUIYi3Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/82a661-5587-4083-813c-3459be266731/1/jFSoRmMugzQOEU0NNVkbPUIYi3Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/82a661-5587-4083-813c-3459be266731/1/jFSoRmMugzQOEU0NNVkbPUIYi3Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:b7:72:2a:de:5c:d2:c7:dd:44:4c:89:61:bd:13:59:65:ba:
1d:ae:57:cc:8a:b2:26:15:ba:89:56:2a:b2:85:54:02:62:40:
4b:ac:35:56:e6:f2:b3:e4:3e:02:a5:e2:85:fc:04:ab:0c:8f:
f8:6c:d8:c9:6a:d0:03:83:cf:d3:04:2a:00:ba:04:2e:02:66:
12:84:1d:cc:56:80:e7:8e:66:2d:53:9b:de:f5:04:2a:73:2b:
81:d5:66:f9:27:78:88:a5:bb:d2:59:71:8e:b5:77:fc:5a:db:
6f:e9:b3:33:bf:96:1f:4d:9d:b7:45:f7:5c:73:1b:e6:e2:a8:
c8:df:33:15:34:17:09:dd:47:f6:a7:a1:0f:d4:e7:61:58:a6:
9f:2e:38:90:ba:cf:6d:7e:8f:8a:7f:60:58:b4:11:fb:4b:32:
cf:ec:39:82:19:7b:ae:4f:4a:2a:38:42:7d:7b:bb:08:22:29:
c5:f3:da:70:4f:ca:d0:e9:d6:81:c9:bf:eb:b5:f6:9f:2f:09:
a4:de:29:9e:7c:c3:67:75:6f:61:77:fa:9e:10:ba:26:7e:a4:
2a:d2:94:f3:ea:7f:3b:56:44:30:f3:37:94:eb:36:22:1b:5a:
d7:95:bd:12:1f:e3:80:9e:32:56:7d:50:a5:7c:fa:7a:3d:da:
58:be:81:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:44:28 2025 by rpki-client