Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/4cc0a8-ec44-49dd-a3e2-2926fc5f61b7/1/YmqokTLSpoTY0qGj9-QPIjRjbzg.mft
File: YmqokTLSpoTY0qGj9-QPIjRjbzg.mft (raw, json)
Hash identifier: RC9sUnuHz0uyfqGQD1AMal7qW/KbEfSvcRxqyoK0Qag=
Subject key identifier: 1F:A9:38:CB:1A:52:4C:19:B8:1A:4A:57:6F:4B:7F:FA:A6:64:42:7E
Authority key identifier: 62:6A:A8:91:32:D2:A6:84:D8:D2:A1:A3:F7:E4:0F:22:34:63:6F:38
Certificate issuer: /CN=626aa89132d2a684d8d2a1a3f7e40f2234636f38
Certificate serial: 0196463266D2A32DE4E7F090F9D6128E246A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YmqokTLSpoTY0qGj9-QPIjRjbzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/4cc0a8-ec44-49dd-a3e2-2926fc5f61b7/1/YmqokTLSpoTY0qGj9-QPIjRjbzg.mft
Manifest number: 12D2
Signing time: Fri 18 Apr 2025 00:00:30 +0000
Manifest this update: Fri 18 Apr 2025 00:00:30 +0000
Manifest next update: Sat 19 Apr 2025 00:00:30 +0000
Files and hashes: 1: YmqokTLSpoTY0qGj9-QPIjRjbzg.crl (hash: pAgR+isgA97v/9+Zf4yptT7t4zoAdobOJekIKxiw84E=)
2: xj0Zl5jyKNtmExsm8HUfZTBh1W4.roa (hash: qJ7mmoo0SJOyk9TkckQkyKsoiQJfN7oKl35vQICMSm0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/4cc0a8-ec44-49dd-a3e2-2926fc5f61b7/1/YmqokTLSpoTY0qGj9-QPIjRjbzg.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/4cc0a8-ec44-49dd-a3e2-2926fc5f61b7/1/YmqokTLSpoTY0qGj9-QPIjRjbzg.mft
rsync://rpki.ripe.net/repository/DEFAULT/YmqokTLSpoTY0qGj9-QPIjRjbzg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:46:32:66:d2:a3:2d:e4:e7:f0:90:f9:d6:12:8e:24:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=626aa89132d2a684d8d2a1a3f7e40f2234636f38
Validity
Not Before: Apr 18 00:00:30 2025 GMT
Not After : Apr 19 00:00:30 2025 GMT
Subject: CN=1fa938cb1a524c19b81a4a576f4b7ffaa664427e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:bc:ab:d9:b9:5c:84:27:54:05:98:27:2a:0c:
2e:a7:d2:df:bf:12:ca:e9:c5:20:52:4a:e9:a2:24:
b1:33:c3:b5:63:a8:5a:55:05:81:c1:3f:84:87:8d:
77:f1:ab:37:fe:61:2c:26:9a:96:96:10:13:7b:05:
34:aa:fb:95:c1:72:f8:c1:e3:b8:39:0e:48:a6:44:
ac:dd:70:6c:f4:24:55:f5:dd:d4:0f:25:c2:29:3e:
51:d4:62:6f:08:77:c3:b6:90:8c:a3:cc:70:82:d7:
62:39:16:cd:3c:73:5c:f6:95:96:50:5f:94:06:3a:
01:57:4a:5a:55:bd:b5:46:a5:da:32:07:45:5d:d2:
0d:e0:d5:19:94:f1:39:6d:0e:9e:01:5d:1c:8e:a4:
9e:06:69:2e:7d:c9:c4:ae:06:49:df:43:25:d4:74:
d3:9c:d5:df:9f:57:00:1e:16:92:75:5f:e6:db:76:
3c:ec:c8:85:39:3f:6e:a0:ee:a3:0f:b9:1a:f2:aa:
fe:cf:6f:77:e3:9f:67:28:59:8c:16:6d:c2:73:d1:
b9:00:ac:63:9b:d9:3a:17:03:df:99:be:cd:d2:89:
d3:82:b8:7b:ab:ca:dd:33:fe:8f:a6:47:8e:f5:ad:
82:de:db:7e:de:b9:b0:8c:b6:62:f5:a7:01:c8:8a:
cd:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:A9:38:CB:1A:52:4C:19:B8:1A:4A:57:6F:4B:7F:FA:A6:64:42:7E
X509v3 Authority Key Identifier:
keyid:62:6A:A8:91:32:D2:A6:84:D8:D2:A1:A3:F7:E4:0F:22:34:63:6F:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YmqokTLSpoTY0qGj9-QPIjRjbzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/4cc0a8-ec44-49dd-a3e2-2926fc5f61b7/1/YmqokTLSpoTY0qGj9-QPIjRjbzg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/4cc0a8-ec44-49dd-a3e2-2926fc5f61b7/1/YmqokTLSpoTY0qGj9-QPIjRjbzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:ac:b4:bd:65:dd:88:f7:3f:19:f7:e5:37:93:b2:cc:fe:e0:
b0:51:01:94:76:30:71:b8:ef:5e:c2:9b:6a:f7:85:58:96:65:
ec:9f:e6:1d:57:62:c5:6c:9c:d2:0f:d8:cb:b8:9c:d8:ee:05:
56:f2:09:8a:8d:93:48:10:ba:99:28:fe:7d:ba:b0:ec:f2:da:
2f:50:e9:e8:52:41:b4:d5:e8:9a:1a:4e:c0:a9:c0:fe:d2:ce:
53:bd:5e:ea:50:f4:fe:71:1b:e3:b2:41:ed:11:6e:c5:73:ec:
b6:36:b2:c7:b5:66:0f:cd:04:e9:21:a7:41:64:99:94:fe:c9:
fa:55:ad:a2:a6:7e:01:75:6d:52:65:6b:f8:61:38:67:48:dd:
8f:4b:e2:4c:a6:1f:60:f8:ae:05:fd:aa:df:ec:e5:a8:28:e4:
34:f9:81:92:17:d4:23:45:09:d1:f0:68:09:60:d2:df:0a:70:
fe:45:e1:48:60:5a:b5:70:38:09:1d:e5:d0:e5:df:6a:75:ae:
82:a1:41:9a:52:80:8c:c1:33:51:79:91:e3:14:74:13:fa:be:
1e:f3:98:a1:4f:41:e8:cf:b7:ac:76:a5:69:53:7e:fc:9e:f0:
05:99:76:ad:e5:ea:f1:c9:6e:e7:4f:24:51:b8:7b:f7:ce:39:
7a:3d:49:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 03:05:29 2025 by rpki-client