Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/9e9262-d957-4c2f-9076-6e89bc6d433b/1/YmJJH6XuZw3MLCvhaY436ZMXSSM.mft
File: YmJJH6XuZw3MLCvhaY436ZMXSSM.mft (raw, json)
Hash identifier: 9vLKlh5R9cs4+FxeFn6DoY2IpL6HePXwzPVy+uW93M4=
Subject key identifier: 8D:FC:E4:14:C8:01:05:1C:8F:03:AC:BB:2C:7D:C6:92:2F:CD:7D:B6
Authority key identifier: 62:62:49:1F:A5:EE:67:0D:CC:2C:2B:E1:69:8E:37:E9:93:17:49:23
Certificate issuer: /CN=6262491fa5ee670dcc2c2be1698e37e993174923
Certificate serial: 0197493161B50EB79AF64816FF1348B7F4CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YmJJH6XuZw3MLCvhaY436ZMXSSM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/9e9262-d957-4c2f-9076-6e89bc6d433b/1/YmJJH6XuZw3MLCvhaY436ZMXSSM.mft
Manifest number: 0E
Signing time: Sat 07 Jun 2025 07:01:02 +0000
Manifest this update: Sat 07 Jun 2025 07:01:02 +0000
Manifest next update: Sun 08 Jun 2025 07:01:02 +0000
Files and hashes: 1: YmJJH6XuZw3MLCvhaY436ZMXSSM.crl (hash: u7HWJ/swOmRgnVmWO28lTFnUaIWJRNNmiaTNcHTLwZs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/9e9262-d957-4c2f-9076-6e89bc6d433b/1/YmJJH6XuZw3MLCvhaY436ZMXSSM.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/9e9262-d957-4c2f-9076-6e89bc6d433b/1/YmJJH6XuZw3MLCvhaY436ZMXSSM.mft
rsync://rpki.ripe.net/repository/DEFAULT/YmJJH6XuZw3MLCvhaY436ZMXSSM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:31:61:b5:0e:b7:9a:f6:48:16:ff:13:48:b7:f4:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6262491fa5ee670dcc2c2be1698e37e993174923
Validity
Not Before: Jun 7 07:01:02 2025 GMT
Not After : Jun 8 07:01:02 2025 GMT
Subject: CN=8dfce414c801051c8f03acbb2c7dc6922fcd7db6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a6:ab:c3:01:e3:6c:c9:84:39:11:2f:4b:d2:
31:e8:20:25:dc:96:62:d9:5e:90:e8:f2:56:d9:95:
10:30:ea:f6:dc:0b:0f:5c:dd:ec:c1:1c:c1:8f:87:
ae:a9:0c:30:35:84:70:d1:81:b6:22:2f:00:98:95:
d1:74:1e:e2:77:f0:cc:49:60:04:4d:0a:2e:95:f6:
d2:84:c1:52:84:f1:52:3c:46:d0:3d:dc:69:89:ac:
b8:fa:70:9b:ca:7c:e3:0d:09:e9:7b:f7:18:5e:8b:
c3:09:13:12:94:fe:2a:2a:32:e4:1f:56:bc:82:ae:
35:e6:33:64:c6:0f:fb:28:e8:f9:83:92:09:0f:05:
aa:6d:03:eb:9f:cd:ce:70:ec:7a:98:ad:27:17:fd:
6f:77:8d:77:a8:18:46:8e:f6:19:19:d3:0e:37:07:
41:a6:a0:7a:3f:ca:1f:a3:ae:6e:35:55:c5:17:be:
f3:05:90:b6:45:e6:d7:54:b4:e9:1b:7f:6a:ea:76:
7f:dd:16:d2:aa:17:d5:5c:40:b4:1e:73:a5:f7:f8:
1a:39:12:3d:d6:43:cb:ee:00:cc:cf:29:5d:7a:76:
53:f0:65:69:33:de:00:e5:3c:9f:48:fd:cb:0e:fe:
fd:91:67:7f:58:8d:4c:a7:58:28:95:9d:d2:00:b7:
b6:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:FC:E4:14:C8:01:05:1C:8F:03:AC:BB:2C:7D:C6:92:2F:CD:7D:B6
X509v3 Authority Key Identifier:
keyid:62:62:49:1F:A5:EE:67:0D:CC:2C:2B:E1:69:8E:37:E9:93:17:49:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YmJJH6XuZw3MLCvhaY436ZMXSSM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/9e9262-d957-4c2f-9076-6e89bc6d433b/1/YmJJH6XuZw3MLCvhaY436ZMXSSM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/9e9262-d957-4c2f-9076-6e89bc6d433b/1/YmJJH6XuZw3MLCvhaY436ZMXSSM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:a2:a0:02:69:da:79:38:37:f2:ed:29:58:c3:7d:2b:b4:c7:
48:59:f2:1f:44:08:8a:6b:f2:c9:10:1f:b0:b7:8d:c0:87:14:
62:1b:20:97:d0:e1:34:f5:b0:3d:5d:cd:a3:dc:65:f2:e2:ae:
55:f1:a7:13:c6:8f:11:70:1e:76:12:ab:ff:3c:9d:e6:7e:c2:
82:a1:75:46:a7:6e:b5:3d:aa:c8:1c:8e:44:78:5c:77:33:54:
ee:66:65:a1:e0:d6:60:fa:d1:19:f2:f9:74:7f:33:5a:9a:3f:
e7:6f:28:87:9b:e6:eb:d2:ae:2c:4b:cf:89:fa:8b:79:26:8d:
11:44:4a:aa:47:da:6b:f2:2a:fa:8c:8e:95:ae:fe:d9:12:9f:
06:8b:da:00:24:8d:d9:38:70:a9:d1:e8:15:1d:5e:10:19:4f:
ca:ac:04:fc:e0:e4:05:e3:2c:32:f1:b6:78:22:0f:2b:07:4d:
66:a1:7e:f6:15:08:34:16:e0:93:fb:6d:82:24:53:14:d7:63:
1e:90:3e:0f:8b:7c:c2:10:08:22:26:7f:53:33:1e:ce:d7:62:
77:6a:5f:c7:0a:17:2e:55:83:bc:18:64:a1:b2:3d:fb:e3:5e:
88:78:1a:1e:92:19:75:98:47:11:40:fd:3e:d3:58:dd:09:2f:
e7:65:ae:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 16:30:31 2025 by rpki-client