Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/b439ef-2cc5-4a74-b1ea-55c65c415b36/1/JQou0RQnyhZIM4Ur1JydtT1j5js.mft
File: JQou0RQnyhZIM4Ur1JydtT1j5js.mft (raw, json)
Hash identifier: brme2jm+gju++0riJKFBk0Stc3QYoG6zISkrHVFn/Xc=
Subject key identifier: E5:78:34:D3:72:7B:83:78:5D:01:E9:B7:4C:12:31:CA:45:F3:D5:93
Authority key identifier: 25:0A:2E:D1:14:27:CA:16:48:33:85:2B:D4:9C:9D:B5:3D:63:E6:3B
Certificate issuer: /CN=250a2ed11427ca164833852bd49c9db53d63e63b
Certificate serial: 0199FB0EC2D25D51170E04B56C8816BC0A3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JQou0RQnyhZIM4Ur1JydtT1j5js.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/b439ef-2cc5-4a74-b1ea-55c65c415b36/1/JQou0RQnyhZIM4Ur1JydtT1j5js.mft
Manifest number: 027E
Signing time: Sun 19 Oct 2025 06:01:12 +0000
Manifest this update: Sun 19 Oct 2025 06:01:12 +0000
Manifest next update: Mon 20 Oct 2025 06:01:12 +0000
Files and hashes: 1: JQou0RQnyhZIM4Ur1JydtT1j5js.crl (hash: c5TJFfCYa8mCer8+uJaY9e5BTAWZni0/YDtQuCaLdrA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/b439ef-2cc5-4a74-b1ea-55c65c415b36/1/JQou0RQnyhZIM4Ur1JydtT1j5js.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/b439ef-2cc5-4a74-b1ea-55c65c415b36/1/JQou0RQnyhZIM4Ur1JydtT1j5js.mft
rsync://rpki.ripe.net/repository/DEFAULT/JQou0RQnyhZIM4Ur1JydtT1j5js.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:0e:c2:d2:5d:51:17:0e:04:b5:6c:88:16:bc:0a:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=250a2ed11427ca164833852bd49c9db53d63e63b
Validity
Not Before: Oct 19 06:01:12 2025 GMT
Not After : Oct 20 06:01:12 2025 GMT
Subject: CN=e57834d3727b83785d01e9b74c1231ca45f3d593
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d0:2d:f0:9c:08:bc:55:69:c6:10:50:ae:08:
88:09:8d:b6:08:f2:a4:b4:7b:8a:8d:50:39:da:43:
bd:25:38:12:00:0b:ec:fc:24:13:5f:55:37:e6:96:
a2:00:ae:f7:f0:92:75:dc:91:a6:48:51:97:73:5f:
d0:90:01:b2:24:4b:19:8e:a5:63:b0:6d:90:f9:8b:
84:ec:39:4a:b9:9b:a2:51:0c:39:95:f2:23:83:0f:
53:8d:46:8c:fe:d1:80:ef:f8:40:d7:d2:f2:47:25:
8a:ea:e8:43:d8:e7:cb:f9:be:56:2c:26:32:8b:c8:
8b:60:c2:47:42:0d:2d:c2:19:d0:9b:fc:10:8b:db:
16:8b:36:88:e2:34:3c:42:1e:cf:78:1a:6f:b8:ee:
04:5e:1b:6a:9d:77:ba:0a:f4:73:87:c7:b5:1d:10:
97:b0:ad:76:68:e6:4c:0f:75:44:5d:33:b0:f2:d7:
ae:5d:35:3c:88:ad:29:0c:22:ed:28:b4:26:f5:10:
42:74:63:76:49:94:bf:d5:09:d6:34:55:cd:b8:52:
d3:5e:3a:30:58:20:78:2a:13:4e:8b:ca:ce:55:f6:
ee:2f:bf:55:e9:54:77:91:15:ea:4e:fb:de:6b:56:
c4:d1:5b:b3:8d:19:c3:c5:16:09:8d:fd:8d:a0:0a:
bd:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:78:34:D3:72:7B:83:78:5D:01:E9:B7:4C:12:31:CA:45:F3:D5:93
X509v3 Authority Key Identifier:
keyid:25:0A:2E:D1:14:27:CA:16:48:33:85:2B:D4:9C:9D:B5:3D:63:E6:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JQou0RQnyhZIM4Ur1JydtT1j5js.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/b439ef-2cc5-4a74-b1ea-55c65c415b36/1/JQou0RQnyhZIM4Ur1JydtT1j5js.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/b439ef-2cc5-4a74-b1ea-55c65c415b36/1/JQou0RQnyhZIM4Ur1JydtT1j5js.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:df:b0:80:a4:59:a3:25:fc:05:7a:8a:3f:05:1f:59:17:b8:
49:bb:7a:2e:db:88:34:42:d6:52:11:e3:b0:c0:b5:f9:d8:78:
a1:da:e2:5f:65:4f:e5:2d:88:af:b7:63:a8:75:08:81:3d:2f:
fb:fc:7f:c0:ee:03:86:28:fd:1c:59:5e:75:4f:0f:9c:1b:90:
3e:14:54:ad:41:81:25:4a:34:47:f9:de:f5:5a:95:96:a4:fe:
88:9e:bc:b5:ba:82:43:c2:52:35:94:7f:f2:05:07:9a:07:88:
58:31:05:60:18:d2:59:d7:8b:8b:5f:8d:45:46:9a:91:51:0f:
da:17:2f:4a:a5:68:c1:b6:6b:31:9c:e0:9d:ca:71:2d:7a:37:
d6:09:e8:8d:c1:3c:f8:4e:2e:81:68:37:66:a3:67:0e:69:e6:
4b:c9:41:6c:a2:74:0f:6d:f9:ee:05:a7:76:06:d0:0e:8a:d0:
64:f8:29:90:11:f0:25:ff:5f:1f:51:5f:76:60:f9:c6:0d:aa:
be:e7:2a:ad:d3:fa:2d:d8:9d:7d:03:d0:8a:a3:6e:59:6f:55:
9e:7b:22:ba:51:e3:93:19:1b:b5:11:ca:89:d7:34:06:66:87:
59:fe:30:d8:29:1e:53:05:93:0c:6d:b7:c8:99:2a:e0:5f:04:
65:c8:50:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:19:55 2025 by rpki-client