Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/4cc0a8-ec44-49dd-a3e2-2926fc5f61b7/1/YmqokTLSpoTY0qGj9-QPIjRjbzg.mft
File: YmqokTLSpoTY0qGj9-QPIjRjbzg.mft (raw, json)
Hash identifier: HRZheo+/hfbRLYYZkeQzRcemqF9Vns9THv6CNglgBvg=
Subject key identifier: E4:FE:11:B1:97:04:F5:99:C0:DE:05:5E:28:0C:33:AE:82:E2:53:49
Authority key identifier: 62:6A:A8:91:32:D2:A6:84:D8:D2:A1:A3:F7:E4:0F:22:34:63:6F:38
Certificate issuer: /CN=626aa89132d2a684d8d2a1a3f7e40f2234636f38
Certificate serial: 019748F9D765C455AFE541AA44CFD6BDF491
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YmqokTLSpoTY0qGj9-QPIjRjbzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/4cc0a8-ec44-49dd-a3e2-2926fc5f61b7/1/YmqokTLSpoTY0qGj9-QPIjRjbzg.mft
Manifest number: 1358
Signing time: Sat 07 Jun 2025 06:00:22 +0000
Manifest this update: Sat 07 Jun 2025 06:00:22 +0000
Manifest next update: Sun 08 Jun 2025 06:00:22 +0000
Files and hashes: 1: YmqokTLSpoTY0qGj9-QPIjRjbzg.crl (hash: As7AJyOXUjfev4YyXKamKkF2LmxGZeCV21SrohhqLtg=)
2: xj0Zl5jyKNtmExsm8HUfZTBh1W4.roa (hash: qJ7mmoo0SJOyk9TkckQkyKsoiQJfN7oKl35vQICMSm0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/4cc0a8-ec44-49dd-a3e2-2926fc5f61b7/1/YmqokTLSpoTY0qGj9-QPIjRjbzg.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/4cc0a8-ec44-49dd-a3e2-2926fc5f61b7/1/YmqokTLSpoTY0qGj9-QPIjRjbzg.mft
rsync://rpki.ripe.net/repository/DEFAULT/YmqokTLSpoTY0qGj9-QPIjRjbzg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 06:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:f9:d7:65:c4:55:af:e5:41:aa:44:cf:d6:bd:f4:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=626aa89132d2a684d8d2a1a3f7e40f2234636f38
Validity
Not Before: Jun 7 06:00:22 2025 GMT
Not After : Jun 8 06:00:22 2025 GMT
Subject: CN=e4fe11b19704f599c0de055e280c33ae82e25349
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:b1:a1:48:da:bc:83:6d:aa:45:73:6d:b3:57:
fb:d5:c7:9d:98:dc:0a:de:0d:ba:20:25:6d:56:d0:
2f:bc:75:ef:f8:08:0e:b4:26:84:1f:9c:65:3b:97:
19:76:be:6f:76:da:e0:e4:25:f2:e9:25:16:c9:8d:
12:73:1b:09:f6:aa:de:e7:b9:c5:0a:3d:ab:46:04:
cf:0b:09:5d:f5:3c:f9:81:a4:ac:4b:79:bc:96:5a:
52:88:fe:7f:e7:e4:41:c7:06:ca:1b:53:dc:8e:8f:
37:ff:01:f9:76:ab:0e:9e:ee:36:5c:fd:e7:24:4f:
66:ea:82:62:20:9b:44:48:9a:11:4a:02:42:11:16:
f0:92:2c:df:ce:3c:24:24:61:c8:09:61:9b:4f:ba:
fd:bf:8d:44:42:a5:a4:72:af:ca:ea:50:f7:4d:94:
64:f0:8b:86:35:84:63:ae:ac:cf:cf:08:00:c9:84:
a8:77:f1:8b:51:a8:14:b1:c1:51:c6:cd:25:3e:a3:
0d:8b:42:98:9d:96:ae:97:e9:e6:3e:59:c7:f9:e5:
00:03:b4:7c:70:05:b0:02:42:27:02:ee:2c:0e:81:
c4:9a:99:50:66:6c:f8:30:8f:2e:10:d5:0b:ff:de:
b6:78:bb:1c:28:98:c7:3d:69:48:22:08:da:39:f1:
d8:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:FE:11:B1:97:04:F5:99:C0:DE:05:5E:28:0C:33:AE:82:E2:53:49
X509v3 Authority Key Identifier:
keyid:62:6A:A8:91:32:D2:A6:84:D8:D2:A1:A3:F7:E4:0F:22:34:63:6F:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YmqokTLSpoTY0qGj9-QPIjRjbzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/4cc0a8-ec44-49dd-a3e2-2926fc5f61b7/1/YmqokTLSpoTY0qGj9-QPIjRjbzg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/4cc0a8-ec44-49dd-a3e2-2926fc5f61b7/1/YmqokTLSpoTY0qGj9-QPIjRjbzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:39:04:6b:d8:00:ed:89:fb:14:09:eb:7e:f4:7d:48:8b:07:
42:c8:fc:78:7b:c6:5a:60:31:54:9f:90:b0:99:7f:7d:90:c5:
04:b1:99:d8:e5:60:69:03:19:6a:8a:96:1a:49:38:6b:a7:77:
21:ca:29:7e:e8:a9:0a:2b:c2:9a:06:1b:2f:e8:73:58:a7:8c:
06:96:3e:ba:71:3a:1e:e0:bd:b9:cc:2c:09:e6:fd:c3:eb:23:
cc:48:32:03:9b:80:4c:90:ba:b4:b5:c5:a3:22:06:71:1c:a5:
d8:45:2a:f7:f3:f0:9b:7c:0f:26:ad:7d:6b:00:bd:ec:48:0f:
3a:05:d9:2b:17:8c:a3:46:2e:b8:58:e7:ac:54:f1:6b:af:bf:
8b:da:f2:f2:04:8a:cb:fa:01:86:56:0b:ac:4a:78:67:ba:84:
a6:f8:96:be:de:ec:65:b3:22:a1:4d:99:a5:06:9b:b3:85:f8:
41:d7:c3:cc:51:7f:b6:08:55:b0:3b:03:a7:03:3b:6b:a9:c9:
e1:2a:e9:26:c1:5e:d1:0c:e7:e4:8e:b3:f7:4a:d6:19:72:47:
dc:f0:ac:e0:46:f8:d3:c1:8f:08:3a:ab:2e:b2:0b:de:31:ce:
36:72:67:8f:9a:12:96:fa:e3:72:06:dd:44:b7:4d:bf:67:b6:
93:5b:e7:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:50:14 2025 by rpki-client