Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
File: Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft (raw, json)
Hash identifier: ydsbex8gMfQ3w8ti9OL+Pb/P4/1zwoLiUiAxku6knNk=
Subject key identifier: C6:7E:3B:7B:81:F4:CA:F3:6F:C0:07:3F:B8:B0:6C:86:BA:C8:FC:89
Authority key identifier: 22:5C:F0:D3:17:04:B5:9D:7E:EB:01:85:48:20:2D:3A:57:0D:A9:32
Certificate issuer: /CN=225cf0d31704b59d7eeb018548202d3a570da932
Certificate serial: 019644E911A8B73BB252233FC1D9422DE16D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
Manifest number: 13CA
Signing time: Thu 17 Apr 2025 18:00:47 +0000
Manifest this update: Thu 17 Apr 2025 18:00:47 +0000
Manifest next update: Fri 18 Apr 2025 18:00:47 +0000
Files and hashes: 1: Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl (hash: HY7fF6zc0W1oTpmMmp58gsG/Xxhp96pjAktntgi4Jro=)
2: rRTGMxhiOpV_X766sLDj0H5s3lk.roa (hash: Fk8zZgs5ltomuLpQlhRuRyNBCQpASYJvnVS5AQLwlOo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:e9:11:a8:b7:3b:b2:52:23:3f:c1:d9:42:2d:e1:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=225cf0d31704b59d7eeb018548202d3a570da932
Validity
Not Before: Apr 17 18:00:47 2025 GMT
Not After : Apr 18 18:00:47 2025 GMT
Subject: CN=c67e3b7b81f4caf36fc0073fb8b06c86bac8fc89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:0e:4b:e8:43:b3:84:a4:91:79:c8:f3:94:7e:
0e:4b:57:ea:0c:97:3f:55:f2:9a:2b:1e:ac:18:22:
78:6f:66:f5:1c:a5:86:19:6e:d1:e4:0f:be:e1:a8:
c1:9c:60:82:c2:ee:7c:9c:ca:c2:7d:ab:e4:b4:3f:
4a:f5:58:44:5c:0a:0f:98:6d:e0:eb:12:05:f3:2f:
22:97:80:ba:3d:7d:8c:e8:3c:bc:8e:b3:85:23:34:
80:d3:06:da:b0:3e:3c:86:98:70:2c:20:26:08:66:
c8:6a:9f:7e:40:2a:bd:06:3a:c1:94:58:ff:f0:4f:
ff:7e:a6:42:cd:ab:80:07:ed:ba:7b:f1:eb:0e:a2:
91:1e:1e:3d:32:48:7f:4f:df:c6:35:82:af:56:2f:
20:ed:66:13:b6:b0:f9:d2:79:42:64:d9:db:7e:94:
0a:21:c8:b6:e7:c9:09:92:a4:e0:75:8f:0f:e5:eb:
8f:58:ae:85:e5:68:99:47:d0:3d:0b:14:83:bc:a5:
ad:42:2f:9e:65:c1:83:99:91:89:14:0a:e9:51:1f:
e5:ca:3d:85:33:52:51:91:23:df:e4:c5:b1:26:d3:
32:92:71:73:b3:96:4c:99:8c:f4:6b:e6:b7:9b:44:
f4:f2:44:04:1f:b2:cb:5d:90:db:9a:76:2d:b6:79:
f4:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:7E:3B:7B:81:F4:CA:F3:6F:C0:07:3F:B8:B0:6C:86:BA:C8:FC:89
X509v3 Authority Key Identifier:
keyid:22:5C:F0:D3:17:04:B5:9D:7E:EB:01:85:48:20:2D:3A:57:0D:A9:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:9d:b6:ed:3e:02:8c:a8:a8:43:dc:6d:9a:ee:f4:2f:7c:7c:
4d:ff:37:a8:69:6f:ac:f8:be:c7:7e:12:32:97:94:cf:3b:d8:
7b:1d:d3:dd:52:a0:91:24:f0:fa:e8:4f:b6:37:60:a3:d5:30:
7f:6c:1d:00:3a:f0:7c:69:06:b0:01:51:c5:7a:0b:0a:22:ba:
6c:70:d1:3d:f7:23:1d:2b:31:31:b1:c1:e5:b6:e2:48:cd:24:
39:b3:aa:25:d1:e1:ab:6d:9c:47:d9:55:72:bb:6a:63:5c:25:
76:1a:05:d9:61:2d:e0:6e:c2:1e:8f:11:62:36:13:48:30:fb:
e2:b8:cf:da:76:c9:7b:91:16:82:b6:09:79:44:be:b1:e8:e7:
60:68:f2:63:ce:fa:c6:85:27:6c:e0:85:3a:93:7f:ea:9d:e6:
7a:b4:6c:8d:c0:79:26:89:5d:c0:dc:f9:9a:3a:f3:3e:b0:58:
f2:b9:41:21:77:75:b9:74:0f:fb:1d:18:d8:ff:9c:30:00:e8:
11:1f:29:52:70:11:c3:c3:ff:a8:84:8b:d6:3b:98:a3:3b:67:
35:08:eb:90:53:cb:03:e0:af:4b:bf:06:16:af:42:b9:07:5d:
64:b4:d2:95:6e:af:b5:0c:5e:1e:f6:20:d5:a8:b7:07:0a:66:
61:d5:a8:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 00:44:59 2025 by rpki-client