Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/61d2b3-79db-4899-8b80-2f725956148f/1/RYemiKiamJlJQWqBnMSoDepFTJ0.mft
File: RYemiKiamJlJQWqBnMSoDepFTJ0.mft (raw, json)
Hash identifier: tfQt1jYZ9gUWE4AvocTC3AaFc9un33CjHyVFNCRCmro=
Subject key identifier: E5:A8:DF:F7:85:A9:06:9B:E8:4A:11:1D:B1:E2:CC:B5:E5:A0:5E:71
Authority key identifier: 45:87:A6:88:A8:9A:98:99:49:41:6A:81:9C:C4:A8:0D:EA:45:4C:9D
Certificate issuer: /CN=4587a688a89a989949416a819cc4a80dea454c9d
Certificate serial: 0199240D6FDDB85BBA85A35FD16BCA4694A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RYemiKiamJlJQWqBnMSoDepFTJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/61d2b3-79db-4899-8b80-2f725956148f/1/RYemiKiamJlJQWqBnMSoDepFTJ0.mft
Manifest number: 032C
Signing time: Sun 07 Sep 2025 12:01:24 +0000
Manifest this update: Sun 07 Sep 2025 12:01:24 +0000
Manifest next update: Mon 08 Sep 2025 12:01:24 +0000
Files and hashes: 1: RYemiKiamJlJQWqBnMSoDepFTJ0.crl (hash: lviHi9CGkiVdiHSKNV/7jOxHepOdDlER26vFjYxYjw0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/96/61d2b3-79db-4899-8b80-2f725956148f/1/RYemiKiamJlJQWqBnMSoDepFTJ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/96/61d2b3-79db-4899-8b80-2f725956148f/1/RYemiKiamJlJQWqBnMSoDepFTJ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/RYemiKiamJlJQWqBnMSoDepFTJ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:24:0d:6f:dd:b8:5b:ba:85:a3:5f:d1:6b:ca:46:94:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4587a688a89a989949416a819cc4a80dea454c9d
Validity
Not Before: Sep 7 12:01:24 2025 GMT
Not After : Sep 8 12:01:24 2025 GMT
Subject: CN=e5a8dff785a9069be84a111db1e2ccb5e5a05e71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:48:17:37:09:be:69:e3:e8:b4:0b:d0:59:5b:
5b:44:cb:da:55:74:f9:d8:6d:52:cc:45:e4:3e:2a:
fe:6e:47:08:c8:d6:69:7a:6b:1d:03:01:bd:da:94:
56:fa:c7:10:ad:e3:0f:c2:70:ce:94:07:9a:04:e2:
75:2b:84:c8:80:aa:22:89:b6:df:e0:76:26:d4:4f:
a0:1f:cd:92:5b:8e:98:e1:65:88:d4:21:a0:ed:44:
f1:e1:2e:0e:3e:ef:6a:3c:dd:8f:1f:72:3d:9e:68:
09:8c:5e:be:cd:85:b0:f5:62:cf:c0:7a:83:4d:07:
4b:7a:10:f3:d8:82:44:ae:27:12:9e:7c:68:be:ca:
37:68:47:b3:13:b5:33:65:23:7d:ce:63:36:ad:9d:
55:33:bb:ad:c9:f1:06:2d:7f:6a:75:1e:64:b7:ce:
70:af:fa:20:b1:70:6e:92:f2:50:06:9c:29:14:8f:
a8:de:86:5e:c7:f2:c8:fd:ff:a8:c8:5d:d8:ea:6c:
8f:23:71:26:0a:01:ab:08:f0:50:ad:78:5f:f3:e8:
40:9d:88:3e:e3:75:44:da:7e:bb:f2:dc:0b:09:2b:
f7:f5:b3:77:bc:3c:4a:4c:dd:3b:c3:f3:46:3b:f3:
e5:ab:42:fb:68:4d:a9:5d:06:86:dc:ee:0b:c5:ad:
58:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:A8:DF:F7:85:A9:06:9B:E8:4A:11:1D:B1:E2:CC:B5:E5:A0:5E:71
X509v3 Authority Key Identifier:
keyid:45:87:A6:88:A8:9A:98:99:49:41:6A:81:9C:C4:A8:0D:EA:45:4C:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RYemiKiamJlJQWqBnMSoDepFTJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/61d2b3-79db-4899-8b80-2f725956148f/1/RYemiKiamJlJQWqBnMSoDepFTJ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/61d2b3-79db-4899-8b80-2f725956148f/1/RYemiKiamJlJQWqBnMSoDepFTJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:bc:b7:20:6b:96:88:c1:7c:d6:12:23:fa:c4:a5:6c:06:14:
74:5e:0b:d1:94:50:f6:2b:ed:8b:5c:57:cd:14:19:e7:e7:d8:
d7:94:2b:c4:ab:0c:b7:f2:0f:1c:ca:7b:98:8a:7d:ac:26:76:
c1:76:88:4b:bf:a2:7f:07:16:3e:d5:4a:bd:61:9e:4d:d9:68:
a3:97:f2:ba:60:c6:2d:d7:4d:e8:44:d1:b5:72:1e:e6:fc:87:
9c:a0:bc:0f:7c:ae:d3:58:30:8a:09:cc:fd:1a:9b:51:ab:c2:
07:8c:84:47:55:d6:ac:5c:ca:e0:c3:c2:5b:59:76:68:2a:5f:
11:44:15:64:7e:77:04:ef:21:ff:da:83:7d:cc:ab:85:f0:db:
c2:9e:d1:28:e0:c8:3d:79:1e:a3:0f:a8:04:ad:7a:a9:af:af:
c4:16:bb:21:14:7f:a4:62:6b:57:c5:f0:70:76:2b:81:e5:c4:
ce:54:dc:64:e1:f6:f5:82:97:69:1e:0d:83:5c:e8:21:8b:b8:
59:77:85:4e:70:48:b7:9b:29:89:51:6f:d2:0d:f2:02:7a:c2:
e2:ae:53:01:e9:af:94:6a:be:49:59:b9:71:22:14:d8:b3:fe:
16:30:64:67:46:07:b1:20:71:d8:8f:a2:0f:7d:46:88:79:aa:
c8:06:96:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:41:32 2025 by rpki-client