Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
File: Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft (raw, json)
Hash identifier: jUAYcMJ48iJ1oUBwUV0DAu6FGMSvDW3ktNdzjCGCSs4=
Subject key identifier: 43:4D:B5:AC:49:31:65:57:CB:BF:F6:34:45:7B:05:0B:3E:30:D9:CA
Authority key identifier: 22:5C:F0:D3:17:04:B5:9D:7E:EB:01:85:48:20:2D:3A:57:0D:A9:32
Certificate issuer: /CN=225cf0d31704b59d7eeb018548202d3a570da932
Certificate serial: 01975535A04DDB03164E9080062E24830159
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
Manifest number: 1457
Signing time: Mon 09 Jun 2025 15:01:07 +0000
Manifest this update: Mon 09 Jun 2025 15:01:07 +0000
Manifest next update: Tue 10 Jun 2025 15:01:07 +0000
Files and hashes: 1: Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl (hash: jf99V6salhn1KDsmDpz+sUgugp/wV2LgYlHuhIEE2yc=)
2: rRTGMxhiOpV_X766sLDj0H5s3lk.roa (hash: Fk8zZgs5ltomuLpQlhRuRyNBCQpASYJvnVS5AQLwlOo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:55:35:a0:4d:db:03:16:4e:90:80:06:2e:24:83:01:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=225cf0d31704b59d7eeb018548202d3a570da932
Validity
Not Before: Jun 9 15:01:07 2025 GMT
Not After : Jun 10 15:01:07 2025 GMT
Subject: CN=434db5ac49316557cbbff634457b050b3e30d9ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:9e:fb:08:ad:e8:db:25:4b:09:46:58:a8:e8:
05:29:b0:df:ee:d6:a8:a9:f2:7a:54:e2:fd:d3:1e:
f4:ed:99:09:8c:9e:d4:9d:08:92:ca:7e:8b:48:76:
e9:ef:15:67:25:7f:ce:e1:47:f5:0c:13:58:13:ac:
76:09:bb:73:a8:c6:e3:3d:f4:df:f0:92:0c:4e:de:
52:48:2f:90:ae:75:90:34:c5:57:64:2f:f4:9c:80:
d5:5f:cd:7b:a9:66:47:32:fd:b3:83:a5:1f:47:2f:
4d:34:7f:1c:64:38:48:3a:d0:03:66:c3:dc:7a:bc:
aa:b0:72:36:42:3c:6c:2c:61:f6:b5:32:51:28:9f:
09:9e:92:4d:8e:4d:8e:06:99:fd:7f:a3:51:59:04:
d8:73:79:2f:e5:b2:11:9a:ab:e3:60:b4:05:7b:a4:
90:ef:e5:d6:b7:d4:9e:80:49:a0:54:cc:f6:20:5c:
2a:34:c7:12:00:40:4b:53:d0:90:91:97:e3:f4:07:
8e:ed:39:76:b1:70:38:28:a7:31:9c:4a:86:20:c1:
17:da:d9:ea:c5:df:ab:c9:44:e4:5f:78:ef:30:58:
a0:6c:27:7b:33:39:fb:52:44:78:18:e9:d1:9e:20:
53:32:c7:bc:d7:0f:b4:37:39:3b:5e:31:8f:a8:d6:
03:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:4D:B5:AC:49:31:65:57:CB:BF:F6:34:45:7B:05:0B:3E:30:D9:CA
X509v3 Authority Key Identifier:
keyid:22:5C:F0:D3:17:04:B5:9D:7E:EB:01:85:48:20:2D:3A:57:0D:A9:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:5a:83:24:a6:cd:0c:21:f3:55:21:92:1a:e7:5b:7c:a8:42:
8f:8f:bc:88:61:b7:0a:ba:eb:e5:64:3e:6d:c8:fd:2c:fd:b3:
7b:51:29:a7:d7:f3:9c:4b:b6:19:11:c2:77:b1:8f:ca:a2:79:
1c:9a:a4:58:25:3f:cd:26:8f:36:55:af:6f:9c:69:c1:0d:82:
35:3e:2f:be:c9:da:48:c1:02:1a:aa:01:5e:61:83:36:33:2a:
88:27:1c:04:03:86:c8:95:c5:07:e6:56:f0:a1:af:c0:87:bb:
e2:93:a0:7c:cf:73:51:53:3c:ee:57:40:e7:c1:72:11:cd:7a:
3d:50:6a:e5:ac:10:1d:6f:f1:da:0e:f6:ad:a8:23:2a:ec:6b:
b2:e7:d2:53:89:6e:42:7d:d4:63:93:f3:5b:02:52:c3:84:89:
c3:7a:e4:2f:78:ee:75:2e:62:8d:5e:fa:20:1e:4b:3a:6e:6c:
e0:f6:e4:eb:23:20:ad:75:05:8e:ca:ab:6f:35:2d:66:84:45:
43:ec:20:3c:19:f4:2e:3d:3b:51:e8:1c:c2:09:77:0d:2f:05:
72:e0:e6:aa:f6:b2:5e:21:01:e1:bc:75:87:1f:0c:7b:05:3b:
9b:63:2f:68:56:e6:87:8f:be:42:33:74:d2:02:68:55:bd:aa:
4a:b9:f4:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 01:21:10 2025 by rpki-client