Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/b439ef-2cc5-4a74-b1ea-55c65c415b36/1/JQou0RQnyhZIM4Ur1JydtT1j5js.mft
File: JQou0RQnyhZIM4Ur1JydtT1j5js.mft (raw, json)
Hash identifier: RXm9mCCJHmoo3oUn9Yd8xpoxY4YZVH3ju+TDAsJoNPM=
Subject key identifier: A3:A8:2E:A8:5C:1B:94:C2:E2:E0:97:FB:09:26:52:C0:CE:AB:BA:C0
Authority key identifier: 25:0A:2E:D1:14:27:CA:16:48:33:85:2B:D4:9C:9D:B5:3D:63:E6:3B
Certificate issuer: /CN=250a2ed11427ca164833852bd49c9db53d63e63b
Certificate serial: 0198D58382C62C36B1E1A7D673D8BEDC4E44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JQou0RQnyhZIM4Ur1JydtT1j5js.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/b439ef-2cc5-4a74-b1ea-55c65c415b36/1/JQou0RQnyhZIM4Ur1JydtT1j5js.mft
Manifest number: 01E6
Signing time: Sat 23 Aug 2025 06:00:22 +0000
Manifest this update: Sat 23 Aug 2025 06:00:22 +0000
Manifest next update: Sun 24 Aug 2025 06:00:22 +0000
Files and hashes: 1: JQou0RQnyhZIM4Ur1JydtT1j5js.crl (hash: nQ5ODaZx3+v3zfx3gx/GQ+BMDnHB2Mt0B5q71VIskXA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/b439ef-2cc5-4a74-b1ea-55c65c415b36/1/JQou0RQnyhZIM4Ur1JydtT1j5js.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/b439ef-2cc5-4a74-b1ea-55c65c415b36/1/JQou0RQnyhZIM4Ur1JydtT1j5js.mft
rsync://rpki.ripe.net/repository/DEFAULT/JQou0RQnyhZIM4Ur1JydtT1j5js.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:82:c6:2c:36:b1:e1:a7:d6:73:d8:be:dc:4e:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=250a2ed11427ca164833852bd49c9db53d63e63b
Validity
Not Before: Aug 23 06:00:22 2025 GMT
Not After : Aug 24 06:00:22 2025 GMT
Subject: CN=a3a82ea85c1b94c2e2e097fb092652c0ceabbac0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:9c:22:68:80:ea:22:45:8e:97:50:91:f8:73:
9b:be:1c:ca:01:a0:22:e8:06:0f:b8:a7:c4:82:78:
4b:9c:9e:73:22:89:36:4b:40:9b:df:fc:a8:2a:06:
81:44:d1:3c:1d:0a:8e:27:da:2e:fb:7e:fc:d1:19:
02:d3:a0:86:3b:8e:3e:c6:c6:39:ad:e5:36:ad:a3:
8c:2b:ce:3d:9b:15:ad:f1:5e:46:2c:a0:be:08:48:
a4:56:a4:06:f2:f0:65:46:1c:ff:6d:bd:ea:19:4b:
21:ca:97:07:22:41:55:32:bc:52:6b:1f:dd:af:c8:
04:97:79:ba:a3:6f:c9:87:38:a8:88:a8:2d:f8:51:
96:86:55:07:0a:67:fa:da:6f:64:8d:27:b9:41:87:
a5:fc:bd:51:3a:da:2d:f7:e8:b5:20:5f:a1:51:e9:
d0:2d:fd:8b:a7:29:12:76:7e:3b:c9:c2:d7:2c:5a:
16:e4:a4:e7:a0:e9:48:2d:ac:a9:cb:4d:2d:0d:02:
c6:9d:f3:b2:15:5a:46:b5:e6:eb:c3:c0:21:87:d9:
69:19:c8:0e:3d:c3:f2:ef:af:f8:7e:1a:09:54:b5:
bf:14:8c:75:e3:a9:e9:b3:06:57:05:92:f1:54:c3:
a9:cd:c5:f2:0d:62:62:5a:d4:bd:c6:51:24:3a:8f:
74:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:A8:2E:A8:5C:1B:94:C2:E2:E0:97:FB:09:26:52:C0:CE:AB:BA:C0
X509v3 Authority Key Identifier:
keyid:25:0A:2E:D1:14:27:CA:16:48:33:85:2B:D4:9C:9D:B5:3D:63:E6:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JQou0RQnyhZIM4Ur1JydtT1j5js.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/b439ef-2cc5-4a74-b1ea-55c65c415b36/1/JQou0RQnyhZIM4Ur1JydtT1j5js.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/b439ef-2cc5-4a74-b1ea-55c65c415b36/1/JQou0RQnyhZIM4Ur1JydtT1j5js.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:8b:50:ca:19:30:70:06:d6:da:55:6a:2a:69:32:55:c5:a2:
8b:5f:bd:37:a6:b8:19:de:22:6f:5d:34:cf:83:e3:97:1c:5d:
db:05:ae:bb:7c:d0:80:70:77:a3:a0:71:38:63:ff:a9:99:04:
ad:9b:d1:9b:d5:de:7d:aa:3a:69:e0:8e:8a:5e:5e:e1:be:49:
5a:2d:13:59:2f:8a:0c:5e:4f:ea:26:6c:de:e5:04:9b:8c:46:
38:37:cc:23:f6:c4:5c:9d:91:30:ac:4c:73:3c:e7:11:cd:d3:
12:ac:17:35:93:8d:ce:44:f1:9d:9e:01:e9:a7:bd:f7:73:9f:
49:de:31:f6:60:65:4a:65:be:2e:0d:58:03:f9:c8:ac:66:cc:
43:10:84:84:9c:cd:39:83:91:64:5a:05:38:87:3c:88:77:55:
a5:9b:35:37:e9:23:45:6d:8c:b9:44:6c:7b:40:ef:b6:1a:b3:
df:f1:bd:7f:b4:79:74:e8:7e:e9:34:e3:b0:e0:d9:f7:46:7a:
78:77:e0:02:05:53:65:0f:b6:1f:99:9d:97:0d:30:6d:c2:c6:
5f:66:e9:8a:02:ed:1a:d0:5a:1b:ba:fd:1f:7a:e0:cb:dd:be:
c5:16:c4:dd:3d:27:72:83:55:85:b3:73:bf:7e:02:be:24:1e:
fa:00:ca:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:52:54 2025 by rpki-client