Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
File: Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft (raw, json)
Hash identifier: hAUE/W86wjBvWbp6oK1Aic9rpe05mf5EkatTx36ljYI=
Subject key identifier: 98:33:19:AF:11:0D:7E:B6:C7:C2:FA:EA:9B:92:E4:F7:45:B0:74:CC
Authority key identifier: 22:5C:F0:D3:17:04:B5:9D:7E:EB:01:85:48:20:2D:3A:57:0D:A9:32
Certificate issuer: /CN=225cf0d31704b59d7eeb018548202d3a570da932
Certificate serial: 01975CEF00F9CCFA619434904C9B67B39B25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
Manifest number: 145B
Signing time: Wed 11 Jun 2025 03:00:56 +0000
Manifest this update: Wed 11 Jun 2025 03:00:56 +0000
Manifest next update: Thu 12 Jun 2025 03:00:56 +0000
Files and hashes: 1: Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl (hash: jQGeSj8VTdailKb66w87lwSwmKrC/Ol5a7PY4FA2a84=)
2: rRTGMxhiOpV_X766sLDj0H5s3lk.roa (hash: Fk8zZgs5ltomuLpQlhRuRyNBCQpASYJvnVS5AQLwlOo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 03:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5c:ef:00:f9:cc:fa:61:94:34:90:4c:9b:67:b3:9b:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=225cf0d31704b59d7eeb018548202d3a570da932
Validity
Not Before: Jun 11 03:00:56 2025 GMT
Not After : Jun 12 03:00:56 2025 GMT
Subject: CN=983319af110d7eb6c7c2faea9b92e4f745b074cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:8b:89:59:44:49:3f:de:79:20:aa:0c:35:79:
5e:44:d1:6a:a8:8a:18:1d:04:79:be:e5:c5:e3:e1:
fb:80:ee:15:d7:e7:33:69:51:52:e4:00:63:c9:36:
f1:25:21:2f:18:8f:36:8a:48:f7:89:68:77:de:d4:
40:bd:33:7c:0c:68:79:86:ef:a8:d4:a1:75:35:77:
0a:86:7f:12:f0:2a:3f:c0:e6:17:15:0b:7d:8f:7c:
51:66:ae:dd:25:3b:b6:05:b8:a2:5c:2e:e4:4c:9f:
d6:64:07:35:c6:0a:b8:b5:9e:a1:c7:dc:62:5d:14:
a4:ac:6c:e9:b9:9b:fe:e7:14:9a:da:08:68:e6:e3:
bf:ce:53:f7:1d:b9:65:93:3d:b4:76:b2:61:79:67:
48:7f:fb:c1:58:0e:60:d3:e3:9e:8c:72:73:11:9c:
0d:fd:95:f4:a8:68:65:0d:c8:16:32:e2:ae:31:9e:
7c:45:23:95:b9:49:56:b0:cd:bd:0b:5f:5d:8e:f7:
25:b8:25:eb:b7:4a:55:09:0a:7b:6b:9b:32:5c:4b:
ab:13:8f:83:ea:29:db:10:10:3a:c4:36:ff:c9:28:
72:10:ad:f3:cf:48:46:ae:85:88:8a:70:53:66:92:
d9:bf:d3:36:d0:08:90:a6:59:1f:e6:77:df:f5:ac:
e9:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:33:19:AF:11:0D:7E:B6:C7:C2:FA:EA:9B:92:E4:F7:45:B0:74:CC
X509v3 Authority Key Identifier:
keyid:22:5C:F0:D3:17:04:B5:9D:7E:EB:01:85:48:20:2D:3A:57:0D:A9:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:25:81:3d:9b:62:18:a2:c1:d4:ec:c8:d1:58:f1:e0:94:26:
be:b1:4d:31:a5:da:ea:72:5c:18:bc:d7:5f:0e:28:7b:45:53:
6d:49:4b:26:22:d6:fa:a0:d4:4f:14:26:99:72:f0:d7:0f:00:
74:07:88:68:0a:76:92:c9:76:1f:b2:62:bc:12:3c:3c:1f:e7:
a8:85:a5:3f:cb:e4:cc:81:c9:2c:dd:6c:7c:21:e2:9b:9a:89:
d2:aa:b4:b7:26:85:8f:97:6d:25:1e:5d:a0:ce:24:c2:93:21:
86:4a:43:14:65:4e:5d:33:a3:62:f0:b5:f9:47:fd:fb:a1:1d:
60:78:0b:1b:20:ea:da:29:22:7e:5d:3e:27:b0:23:e8:d4:a1:
a4:e0:ae:7a:1d:c7:29:de:f0:aa:73:d5:c3:84:f6:51:6b:1e:
9e:da:c5:84:65:29:78:75:15:e0:c4:bc:7b:fc:b2:ee:78:78:
b2:f9:a5:43:eb:3e:1d:7a:2a:3c:09:df:b1:3e:bb:cc:b4:d6:
ea:b9:dd:b0:f3:b2:7b:f3:d2:81:5f:9f:e6:96:a7:a2:3b:ea:
a9:cc:d8:1e:a0:9d:63:b5:bd:3a:42:6c:60:3d:33:0e:f6:d8:
68:35:70:32:11:ee:71:65:c3:d1:d9:8a:30:0f:44:4b:e9:96:
50:e9:f4:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 12:13:51 2025 by rpki-client