Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/63432a-e5d9-46e2-9c01-ac809bbae737/1/Ym0k1r81OWP-WvolsKWWZxUqhtA.mft
File: Ym0k1r81OWP-WvolsKWWZxUqhtA.mft (raw, json)
Hash identifier: gScYDamZ/isRCXXNJ0mAzgrbCpKHyvGX3fZvCAAk/uc=
Subject key identifier: 1E:B0:1C:97:46:88:12:72:FF:CA:A8:A2:FB:E2:EC:C4:23:B8:80:93
Authority key identifier: 62:6D:24:D6:BF:35:39:63:FE:5A:FA:25:B0:A5:96:67:15:2A:86:D0
Certificate issuer: /CN=626d24d6bf353963fe5afa25b0a59667152a86d0
Certificate serial: 0197579164904AA9F42A07C7ED4726AED115
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ym0k1r81OWP-WvolsKWWZxUqhtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/63432a-e5d9-46e2-9c01-ac809bbae737/1/Ym0k1r81OWP-WvolsKWWZxUqhtA.mft
Manifest number: 0D13
Signing time: Tue 10 Jun 2025 02:00:35 +0000
Manifest this update: Tue 10 Jun 2025 02:00:35 +0000
Manifest next update: Wed 11 Jun 2025 02:00:35 +0000
Files and hashes: 1: XsLpmpu2xvBP4JjcplMw-4A56mY.roa (hash: zDQ4NxbIV24C02r59jK+8GO4r9TIoUq4yC6lv1rRxf0=)
2: Ym0k1r81OWP-WvolsKWWZxUqhtA.crl (hash: qDd8A0QIfOlmNKwdruRvjmuWirP6puqaCmsO1bC53vY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/63432a-e5d9-46e2-9c01-ac809bbae737/1/Ym0k1r81OWP-WvolsKWWZxUqhtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/63432a-e5d9-46e2-9c01-ac809bbae737/1/Ym0k1r81OWP-WvolsKWWZxUqhtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ym0k1r81OWP-WvolsKWWZxUqhtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 02:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:57:91:64:90:4a:a9:f4:2a:07:c7:ed:47:26:ae:d1:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=626d24d6bf353963fe5afa25b0a59667152a86d0
Validity
Not Before: Jun 10 02:00:35 2025 GMT
Not After : Jun 11 02:00:35 2025 GMT
Subject: CN=1eb01c9746881272ffcaa8a2fbe2ecc423b88093
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:b4:4b:c6:2e:ce:81:ee:ca:bc:72:b5:2f:d0:
96:ab:d2:2f:13:84:2e:3f:42:aa:88:2b:4f:5e:f2:
78:36:52:28:d8:42:c0:44:f7:bd:85:f9:95:e7:90:
68:1d:4a:27:03:65:91:64:e0:85:b6:cc:0c:83:da:
c8:42:68:04:47:a7:66:75:66:c9:f9:3e:9c:f1:63:
a3:f7:7a:55:c1:e9:88:88:88:c7:a0:03:75:9e:86:
c6:72:dd:e0:d6:33:4f:47:af:bd:4e:66:c5:9e:a3:
80:3c:cb:5e:27:4f:e8:e5:5d:1e:2c:59:fb:c8:49:
9c:86:9f:92:4a:8e:09:e7:f1:f6:ba:8e:d2:c8:4b:
0e:62:b8:a5:d8:68:68:38:29:b5:35:9b:d1:19:bd:
e9:3b:1f:2b:ef:72:3e:23:17:d0:03:9f:9f:ec:d9:
5d:28:d5:89:df:c3:e1:3f:35:69:24:20:02:77:20:
b6:53:c8:3d:08:50:a3:54:58:48:c7:d6:f3:93:2f:
df:64:65:29:df:3d:fb:1d:e4:b4:16:61:f2:63:f1:
83:a0:2f:90:f1:ed:b9:8b:56:08:7c:59:32:14:1f:
73:a5:ad:9f:83:2c:96:53:ef:3a:94:37:48:d7:12:
0a:0c:c8:e8:04:66:15:02:ac:a6:d4:16:b4:f4:15:
a8:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:B0:1C:97:46:88:12:72:FF:CA:A8:A2:FB:E2:EC:C4:23:B8:80:93
X509v3 Authority Key Identifier:
keyid:62:6D:24:D6:BF:35:39:63:FE:5A:FA:25:B0:A5:96:67:15:2A:86:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ym0k1r81OWP-WvolsKWWZxUqhtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/63432a-e5d9-46e2-9c01-ac809bbae737/1/Ym0k1r81OWP-WvolsKWWZxUqhtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/63432a-e5d9-46e2-9c01-ac809bbae737/1/Ym0k1r81OWP-WvolsKWWZxUqhtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:9f:ab:8a:a7:8a:1e:fb:f2:75:bc:8d:65:7a:86:6b:1b:5b:
7b:3e:92:a5:18:ff:b9:b4:de:b9:6b:91:0e:89:aa:58:7b:76:
d5:78:6c:cc:4f:26:2a:d2:28:69:bf:77:1d:63:6c:c6:2c:83:
32:70:d7:6e:7e:87:b1:88:fe:6d:f6:96:f4:b5:e1:9a:67:8c:
a6:65:8c:34:95:b8:68:32:d5:ce:b8:6d:fb:dd:6f:b6:b8:af:
38:24:11:f1:0d:c7:14:66:00:6c:f4:b6:68:19:c3:09:bc:92:
1a:70:8f:6b:dd:6a:6e:65:33:6e:61:75:8d:ee:70:58:7f:b8:
7b:3e:d4:d5:5f:ae:48:f8:7a:ff:34:ff:c9:e2:df:ca:5e:7c:
18:da:53:09:2f:2c:5a:24:62:fc:6f:92:55:39:e1:6a:92:35:
1f:87:d7:e4:50:23:38:17:83:bb:71:6b:6a:81:53:ea:0b:85:
78:56:ff:ba:c9:18:f1:e0:2b:fb:73:3f:ef:46:0c:62:69:8d:
3a:08:8c:2d:2d:76:7c:a4:20:37:e5:90:aa:ff:c2:7d:dd:51:
af:68:d0:ed:fc:b4:4d:2e:ed:46:06:4d:76:96:8d:8a:d6:82:
fe:4e:a9:89:5e:f5:fd:98:49:cc:a0:bf:e9:67:19:82:0e:01:
20:81:1b:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 12:02:39 2025 by rpki-client