Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
File: Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft (raw, json)
Hash identifier: AWBHgErzN4HTsLKPrTOjNNSH/E0bGGL+uXOFQwmpgkk=
Subject key identifier: 41:97:F9:E9:DA:E7:40:89:0B:9F:A3:65:1F:9C:7A:DD:CF:65:86:3D
Authority key identifier: 22:5C:F0:D3:17:04:B5:9D:7E:EB:01:85:48:20:2D:3A:57:0D:A9:32
Certificate issuer: /CN=225cf0d31704b59d7eeb018548202d3a570da932
Certificate serial: 019764A82D114C8344E5F89C66D671A0680E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
Manifest number: 145F
Signing time: Thu 12 Jun 2025 15:00:32 +0000
Manifest this update: Thu 12 Jun 2025 15:00:32 +0000
Manifest next update: Fri 13 Jun 2025 15:00:32 +0000
Files and hashes: 1: Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl (hash: KOHObO4L3f1jWWu2wZdoJsmC0iJ+Wa23RQecMgMIOnM=)
2: rRTGMxhiOpV_X766sLDj0H5s3lk.roa (hash: Fk8zZgs5ltomuLpQlhRuRyNBCQpASYJvnVS5AQLwlOo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:64:a8:2d:11:4c:83:44:e5:f8:9c:66:d6:71:a0:68:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=225cf0d31704b59d7eeb018548202d3a570da932
Validity
Not Before: Jun 12 15:00:32 2025 GMT
Not After : Jun 13 15:00:32 2025 GMT
Subject: CN=4197f9e9dae740890b9fa3651f9c7addcf65863d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:4b:43:aa:81:9b:f6:66:5e:5b:b6:54:a8:45:
89:53:08:0f:ad:12:48:cc:a0:5a:1f:41:be:69:fc:
26:3e:00:75:c1:5c:47:35:33:a4:3f:3c:45:00:64:
95:13:cb:b1:cc:05:e1:26:6e:13:53:37:ae:f7:a4:
d5:8f:70:09:39:bf:1b:35:ff:49:f1:53:37:21:1a:
ca:3b:3e:97:d1:70:f1:d4:c7:1b:c2:de:d7:18:30:
b1:69:dd:88:40:7c:34:b5:1f:a1:9e:fe:1d:5f:fd:
0f:41:c7:a6:6b:3e:f1:c6:21:e1:a2:fc:f9:cd:52:
af:c8:df:f9:38:36:e8:5b:3d:af:1c:cd:1e:da:37:
9e:c2:a3:28:c2:52:62:f9:f1:77:e9:b9:98:24:24:
49:39:81:78:7f:cb:fc:58:c8:64:c9:6c:9c:e8:d2:
3c:c7:74:13:7b:3c:15:bb:eb:55:6f:aa:dd:62:1b:
51:b0:b3:4a:a4:6f:3d:33:44:29:ca:b7:c6:0e:fc:
fd:b6:7f:71:e4:66:c5:9c:0e:04:fc:57:9d:fb:6e:
1b:92:6b:d6:0f:85:5b:4b:35:48:fa:50:91:62:f8:
c0:b0:e6:60:6f:ba:cf:29:26:82:de:0b:9a:00:3b:
c8:29:3d:71:40:dc:17:77:48:cb:84:4d:ab:aa:aa:
c6:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:97:F9:E9:DA:E7:40:89:0B:9F:A3:65:1F:9C:7A:DD:CF:65:86:3D
X509v3 Authority Key Identifier:
keyid:22:5C:F0:D3:17:04:B5:9D:7E:EB:01:85:48:20:2D:3A:57:0D:A9:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:af:ae:44:dc:cf:5c:ad:58:41:4b:a2:b0:eb:e1:4c:ea:b8:
a4:8d:95:9a:f5:ef:2c:8e:f3:40:25:46:24:57:1e:ba:22:1d:
b2:93:0f:b4:ea:6c:49:9a:66:d6:e5:19:0d:64:ee:16:0c:84:
a8:65:0a:35:7e:e4:2e:42:c0:dd:31:04:cd:f5:5b:f6:45:d9:
f7:30:b5:a1:8e:2d:e4:0f:4a:81:47:5f:db:ed:cc:b4:61:60:
85:c7:99:17:d7:33:ed:21:06:0f:f4:b4:c9:a1:ff:21:af:11:
2f:1b:e2:54:68:b8:f2:e7:fd:0d:b7:ee:55:37:77:2f:61:5b:
ef:23:72:16:4c:d8:71:c5:15:97:54:d7:98:70:16:fc:08:33:
a2:82:83:46:73:17:61:00:78:34:b4:6d:25:3b:7f:07:9b:a1:
6d:57:f0:a3:c0:57:13:7a:b3:83:55:8f:fc:76:04:24:c1:7c:
5a:4e:81:1b:7d:eb:1f:ae:fd:95:30:c8:07:a3:6e:cf:36:23:
e4:f6:df:02:35:c2:91:a8:b5:cf:54:69:67:c4:0d:74:9a:f7:
b1:ee:79:64:54:90:70:20:6e:92:01:cd:2a:d2:e7:9f:b4:1b:
4c:21:d5:af:b3:ec:c9:7f:19:d9:8f:7b:03:27:05:f7:6c:b9:
d6:ae:5b:84
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdkqC0RTINE5ficZtZxoGgOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyNWNmMGQzMTcwNGI1OWQ3ZWViMDE4NTQ4MjAyZDNhNTcw
ZGE5MzIwHhcNMjUwNjEyMTUwMDMyWhcNMjUwNjEzMTUwMDMyWjAzMTEwLwYDVQQD
Eyg0MTk3ZjllOWRhZTc0MDg5MGI5ZmEzNjUxZjljN2FkZGNmNjU4NjNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoUtDqoGb9mZeW7ZUqEWJUwgPrRJI
zKBaH0G+afwmPgB1wVxHNTOkPzxFAGSVE8uxzAXhJm4TUzeu96TVj3AJOb8bNf9J
8VM3IRrKOz6X0XDx1Mcbwt7XGDCxad2IQHw0tR+hnv4dX/0PQcemaz7xxiHhovz5
zVKvyN/5ODboWz2vHM0e2jeewqMowlJi+fF36bmYJCRJOYF4f8v8WMhkyWyc6NI8
x3QTezwVu+tVb6rdYhtRsLNKpG89M0QpyrfGDvz9tn9x5GbFnA4E/Fed+24bkmvW
D4VbSzVI+lCRYvjAsOZgb7rPKSaC3guaADvIKT1xQNwXd0jLhE2rqqrGoQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEGX+ena50CJC5+jZR+cet3PZYY9MB8GA1UdIwQY
MBaAFCJc8NMXBLWdfusBhUggLTpXDakyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSWx6dzB4Y0V0WjEtNndHRlNDQXRPbGNOcVRJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS80ZGY0MjktZjc3Ni00ZmQzLThkZTQt
MDBiYzkwM2QyNjIxLzEvSWx6dzB4Y0V0WjEtNndHRlNDQXRPbGNOcVRJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNS80ZGY0MjktZjc3Ni00ZmQzLThkZTQtMDBiYzkwM2QyNjIx
LzEvSWx6dzB4Y0V0WjEtNndHRlNDQXRPbGNOcVRJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAla+uRNzP
XK1YQUuisOvhTOq4pI2VmvXvLI7zQCVGJFceuiIdspMPtOpsSZpm1uUZDWTuFgyE
qGUKNX7kLkLA3TEEzfVb9kXZ9zC1oY4t5A9KgUdf2+3MtGFghceZF9cz7SEGD/S0
yaH/Ia8RLxviVGi48uf9DbfuVTd3L2Fb7yNyFkzYccUVl1TXmHAW/AgzooKDRnMX
YQB4NLRtJTt/B5uhbVfwo8BXE3qzg1WP/HYEJMF8Wk6BG33rH679lTDIB6NuzzYj
5PbfAjXCkai1z1RpZ8QNdJr3se55ZFSQcCBukgHNKtLnn7QbTCHVr7PsyX8Z2Y97
AycF92y51q5bhA==
-----END CERTIFICATE-----
Generated at Thu Jun 12 20:57:14 2025 by rpki-client