Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/61d2b3-79db-4899-8b80-2f725956148f/1/RYemiKiamJlJQWqBnMSoDepFTJ0.mft
File: RYemiKiamJlJQWqBnMSoDepFTJ0.mft (raw, json)
Hash identifier: uFexczweoOcnlrw89TmpVDNZZJD99BzgOkioqikKjRI=
Subject key identifier: 8B:DC:ED:4A:67:3D:6C:14:81:1B:C8:3E:9A:A9:C5:88:F3:A9:99:FE
Authority key identifier: 45:87:A6:88:A8:9A:98:99:49:41:6A:81:9C:C4:A8:0D:EA:45:4C:9D
Certificate issuer: /CN=4587a688a89a989949416a819cc4a80dea454c9d
Certificate serial: 01964FDAFDDEE0BE39FD109274A33F633C79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RYemiKiamJlJQWqBnMSoDepFTJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/61d2b3-79db-4899-8b80-2f725956148f/1/RYemiKiamJlJQWqBnMSoDepFTJ0.mft
Manifest number: 01B5
Signing time: Sat 19 Apr 2025 21:01:13 +0000
Manifest this update: Sat 19 Apr 2025 21:01:13 +0000
Manifest next update: Sun 20 Apr 2025 21:01:13 +0000
Files and hashes: 1: RYemiKiamJlJQWqBnMSoDepFTJ0.crl (hash: 07HWnhII6/KGQB/KKm+ZjBy1ErLwAQ7qEkTerV1jy74=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/96/61d2b3-79db-4899-8b80-2f725956148f/1/RYemiKiamJlJQWqBnMSoDepFTJ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/96/61d2b3-79db-4899-8b80-2f725956148f/1/RYemiKiamJlJQWqBnMSoDepFTJ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/RYemiKiamJlJQWqBnMSoDepFTJ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:da:fd:de:e0:be:39:fd:10:92:74:a3:3f:63:3c:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4587a688a89a989949416a819cc4a80dea454c9d
Validity
Not Before: Apr 19 21:01:13 2025 GMT
Not After : Apr 20 21:01:13 2025 GMT
Subject: CN=8bdced4a673d6c14811bc83e9aa9c588f3a999fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:85:b1:a5:24:dc:f2:d7:b4:82:b3:eb:93:92:
8b:79:46:79:8a:2f:d9:08:60:e4:26:b5:8d:89:da:
98:f6:1c:90:f3:3a:ea:b7:ad:d0:cb:9b:a8:fb:d4:
a3:75:cf:26:81:73:48:c1:bc:f0:1d:0a:9c:51:28:
f7:fc:8a:9d:01:be:12:de:87:65:02:7b:81:69:2e:
8c:e0:11:24:34:ae:fe:b4:a7:e2:e7:be:3d:e4:1d:
7a:5c:ca:10:d5:3f:0c:18:73:f3:9d:e7:5c:5b:f9:
00:56:86:d2:d3:cd:b2:38:7e:6c:e8:ea:7c:f7:2d:
d2:9a:09:a9:43:ee:ae:51:fb:7c:e3:7e:33:9c:ac:
aa:a2:ba:56:65:3b:99:16:3e:a5:ec:2b:25:37:06:
06:43:af:ad:9e:b5:db:8c:21:5b:7a:0b:6c:dd:e1:
81:0b:60:d9:d6:54:68:77:a3:77:5f:32:37:ac:7d:
fd:ab:c5:77:d2:4e:f8:66:bf:5e:44:22:ba:b5:94:
7f:ad:25:2f:a0:9e:1b:2f:a3:4a:a2:2e:14:a5:a5:
86:fa:25:9c:c3:3f:9b:05:43:66:d4:0f:d1:d8:af:
fd:d2:1d:5e:a4:c8:c1:33:a4:b4:62:5e:90:1c:ff:
29:cb:29:35:6f:d4:56:92:2f:17:d4:d6:a9:0b:df:
8d:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:DC:ED:4A:67:3D:6C:14:81:1B:C8:3E:9A:A9:C5:88:F3:A9:99:FE
X509v3 Authority Key Identifier:
keyid:45:87:A6:88:A8:9A:98:99:49:41:6A:81:9C:C4:A8:0D:EA:45:4C:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RYemiKiamJlJQWqBnMSoDepFTJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/61d2b3-79db-4899-8b80-2f725956148f/1/RYemiKiamJlJQWqBnMSoDepFTJ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/61d2b3-79db-4899-8b80-2f725956148f/1/RYemiKiamJlJQWqBnMSoDepFTJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:65:26:0e:c6:6d:b8:c5:66:25:31:bf:f4:bf:98:af:14:5b:
65:26:5e:84:dd:80:23:80:7b:f0:3c:2b:15:f3:8f:dc:77:6a:
bd:4d:3a:35:fb:8e:e7:33:7a:44:fa:06:4f:e2:01:8a:d3:2f:
c1:ea:23:82:7f:02:86:9f:05:e2:7d:03:d9:a8:c2:62:f7:e7:
6e:b9:f8:5c:5c:01:37:06:ad:c9:ee:70:fb:0c:2f:90:cf:b3:
cb:10:8b:bf:bc:50:21:80:5e:63:1d:e7:3f:cb:20:92:6d:9c:
91:98:61:d4:49:d2:65:be:21:16:ef:5f:3c:f9:c1:26:d2:10:
ea:d4:d2:84:91:18:3e:0f:81:46:a6:46:ae:a0:27:80:8d:dc:
37:67:26:64:be:6f:90:c3:3a:0f:33:85:ef:5e:2b:94:fe:4e:
48:6a:1f:60:2b:0f:f6:7b:30:4c:7b:59:23:57:03:86:85:1c:
6f:da:a6:92:fe:71:6a:5f:02:6b:3e:13:30:56:45:db:0f:f1:
48:cc:22:0b:1d:fc:06:e2:a1:3d:ab:a9:b9:de:e3:e5:b0:71:
93:ec:b1:3b:9b:11:2e:4d:40:53:46:ad:54:9b:a6:b8:3f:fc:
22:56:a9:c2:30:12:30:30:8c:59:5d:82:03:b1:99:ce:e2:45:
47:41:d8:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:09:12 2025 by rpki-client