Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/be1fed-2e86-44a9-8a67-44b78e788deb/1/j_QxWS3s8oXDMtMGJTHA589hAsA.mft
File: j_QxWS3s8oXDMtMGJTHA589hAsA.mft (raw, json)
Hash identifier: TyZD+77MVnb6zJdRXKOb9dQA7cVbrrRMiEX7+D0qWJI=
Subject key identifier: 6F:F4:3B:15:8C:C6:37:36:0C:E2:38:FE:8F:81:64:80:A0:51:CE:EE
Authority key identifier: 8F:F4:31:59:2D:EC:F2:85:C3:32:D3:06:25:31:C0:E7:CF:61:02:C0
Certificate issuer: /CN=8ff431592decf285c332d3062531c0e7cf6102c0
Certificate serial: 0198D773568E99A9E6E4CDDC0332D0E4EDDB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j_QxWS3s8oXDMtMGJTHA589hAsA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/be1fed-2e86-44a9-8a67-44b78e788deb/1/j_QxWS3s8oXDMtMGJTHA589hAsA.mft
Manifest number: 1649
Signing time: Sat 23 Aug 2025 15:01:56 +0000
Manifest this update: Sat 23 Aug 2025 15:01:56 +0000
Manifest next update: Sun 24 Aug 2025 15:01:56 +0000
Files and hashes: 1: j_QxWS3s8oXDMtMGJTHA589hAsA.crl (hash: Jriq+SrA3WDXTimgyE3ikhjJjVboVEpeCyK13CTndno=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/be1fed-2e86-44a9-8a67-44b78e788deb/1/j_QxWS3s8oXDMtMGJTHA589hAsA.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/be1fed-2e86-44a9-8a67-44b78e788deb/1/j_QxWS3s8oXDMtMGJTHA589hAsA.mft
rsync://rpki.ripe.net/repository/DEFAULT/j_QxWS3s8oXDMtMGJTHA589hAsA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:73:56:8e:99:a9:e6:e4:cd:dc:03:32:d0:e4:ed:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ff431592decf285c332d3062531c0e7cf6102c0
Validity
Not Before: Aug 23 15:01:56 2025 GMT
Not After : Aug 24 15:01:56 2025 GMT
Subject: CN=6ff43b158cc637360ce238fe8f816480a051ceee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:68:97:81:6e:72:23:f5:3b:f3:09:c1:c9:9c:
73:1a:63:01:ea:cc:9d:fe:5a:18:aa:75:a4:d9:e3:
c3:1d:32:b6:c9:50:f8:b1:b3:b9:0d:10:e7:9d:f9:
89:22:51:25:a4:47:db:c1:2e:46:62:b0:d3:21:70:
1b:76:8c:0a:c1:bb:c8:68:c1:38:e7:97:2e:dc:c7:
76:18:26:c4:de:5c:e6:f1:f3:d0:8f:1e:66:99:7d:
1d:8f:f3:c8:f4:89:47:68:35:42:68:70:4f:d7:dc:
a9:df:cb:a2:84:7a:14:03:a6:0e:c1:0e:f5:01:8e:
90:73:74:96:e5:db:93:16:92:7d:28:c9:fe:08:24:
54:72:e8:77:8c:33:4d:6e:ad:7a:97:05:81:bd:1e:
3d:b3:b2:57:51:70:03:e5:a4:7c:bc:39:75:8e:7a:
aa:3b:a3:30:65:c8:fa:54:cc:80:c7:d0:49:bd:9a:
d4:2a:e0:8e:21:05:b9:a9:cd:b9:3b:74:ca:45:5a:
88:f0:63:fd:05:dc:4a:7e:aa:ba:97:2d:cb:ab:1f:
a0:6a:71:7b:25:f8:b9:6b:a8:84:9e:ca:bb:85:34:
86:e7:f2:75:82:14:94:5d:66:8e:f7:f8:11:53:6b:
ac:ba:07:e8:5e:21:33:90:aa:82:5e:28:8e:c9:16:
e4:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:F4:3B:15:8C:C6:37:36:0C:E2:38:FE:8F:81:64:80:A0:51:CE:EE
X509v3 Authority Key Identifier:
keyid:8F:F4:31:59:2D:EC:F2:85:C3:32:D3:06:25:31:C0:E7:CF:61:02:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j_QxWS3s8oXDMtMGJTHA589hAsA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/be1fed-2e86-44a9-8a67-44b78e788deb/1/j_QxWS3s8oXDMtMGJTHA589hAsA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/be1fed-2e86-44a9-8a67-44b78e788deb/1/j_QxWS3s8oXDMtMGJTHA589hAsA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:db:7c:46:c9:3b:97:b4:b8:8f:1d:92:b0:68:b4:9e:e8:f6:
b2:20:5f:ce:4a:8a:88:5a:7a:3b:aa:b9:58:96:4d:4a:e4:ac:
24:cd:bb:12:c0:df:69:98:df:9c:6c:ca:71:1a:6c:da:df:5d:
05:bd:e4:82:16:fe:ea:19:a8:e7:90:c8:20:e7:63:40:ab:33:
4d:30:bb:6c:f3:ae:15:84:0f:1b:77:28:c7:9e:55:4c:9a:44:
42:01:51:07:18:a2:de:df:24:f3:64:96:3c:2a:3c:52:2c:0a:
5e:c9:45:0b:30:70:15:f0:79:4b:d1:3d:40:48:27:d0:b8:9a:
ec:71:9f:d9:bb:f8:e2:57:c0:ae:cd:65:c2:68:a5:42:2b:8e:
95:c4:c0:60:4d:65:48:18:4a:44:fc:58:ed:74:9d:81:3d:58:
ee:e5:1b:ca:34:71:1f:80:60:63:70:34:d6:65:cd:88:e0:de:
77:fd:f6:1c:e2:02:a4:21:a8:af:0a:c6:ed:08:ee:cb:36:db:
21:29:eb:07:7e:3c:54:0b:ef:23:06:8e:d4:6e:cf:d8:4c:ae:
04:0a:34:86:b1:49:be:7b:3a:af:c0:de:3b:ac:f5:c4:8a:d9:
a1:2e:a5:71:ae:89:5e:ef:29:28:20:14:0e:3c:e6:0c:66:c6:
2f:a8:5f:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 19:44:18 2025 by rpki-client