Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
File: Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft (raw, json)
Hash identifier: hqlR8nlMJzuNGxsoRCP2djxmeAqL1VyEj4/5yC1rO9A=
Subject key identifier: 5D:09:53:EA:B8:AA:99:5C:5A:D5:B8:91:4A:5D:7E:A2:B3:B7:1D:65
Authority key identifier: 22:5C:F0:D3:17:04:B5:9D:7E:EB:01:85:48:20:2D:3A:57:0D:A9:32
Certificate issuer: /CN=225cf0d31704b59d7eeb018548202d3a570da932
Certificate serial: 019922C38C01CDE424FB1EEF4D904B08711B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
Manifest number: 1546
Signing time: Sun 07 Sep 2025 06:01:04 +0000
Manifest this update: Sun 07 Sep 2025 06:01:04 +0000
Manifest next update: Mon 08 Sep 2025 06:01:04 +0000
Files and hashes: 1: Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl (hash: p7HCJBIK8+7+DdURy6PXZbp0g6kbpLqneaiNT8aGU+8=)
2: rRTGMxhiOpV_X766sLDj0H5s3lk.roa (hash: Fk8zZgs5ltomuLpQlhRuRyNBCQpASYJvnVS5AQLwlOo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:8c:01:cd:e4:24:fb:1e:ef:4d:90:4b:08:71:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=225cf0d31704b59d7eeb018548202d3a570da932
Validity
Not Before: Sep 7 06:01:04 2025 GMT
Not After : Sep 8 06:01:04 2025 GMT
Subject: CN=5d0953eab8aa995c5ad5b8914a5d7ea2b3b71d65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:49:58:54:97:16:1f:99:2a:39:2f:70:0f:74:
67:51:71:f2:d0:29:5e:34:4a:89:42:9b:ce:c9:64:
d8:ca:7d:d1:c7:d7:e1:64:5e:43:dd:4b:0e:a1:bb:
a1:20:24:38:0d:a9:58:3d:1e:b9:f5:da:4b:bd:c1:
4e:fe:f7:70:f6:86:f0:4f:63:0e:75:75:e2:ca:60:
a1:33:27:76:04:6e:2a:08:27:4e:28:1a:56:a5:5e:
80:38:79:8c:9a:3e:c2:50:c5:3c:83:fc:c5:5f:0f:
93:5c:50:d8:7c:d8:f7:35:d9:d9:df:9e:13:3a:36:
49:b5:8d:1d:9a:b5:a8:65:c9:64:95:79:db:24:24:
65:be:b5:99:bb:5b:6c:a5:eb:bc:80:57:6e:54:ce:
c7:6a:30:42:aa:71:e4:c8:1f:66:43:4d:4d:7a:89:
6e:1d:b8:4f:33:9c:4b:e9:58:a4:9c:5c:fa:22:f2:
cc:4b:ef:b2:c7:e1:8e:51:bf:76:8d:8a:0b:e4:78:
46:5f:74:81:82:2f:5c:fb:43:70:a9:4d:8c:94:24:
0e:8e:2d:b9:e7:ae:5f:ed:27:3f:35:60:c3:13:87:
54:66:31:8b:39:43:3e:db:b8:48:5c:fa:d8:fd:4f:
cf:a4:e2:99:f2:72:2b:ad:11:58:bd:6b:d4:19:26:
56:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:09:53:EA:B8:AA:99:5C:5A:D5:B8:91:4A:5D:7E:A2:B3:B7:1D:65
X509v3 Authority Key Identifier:
keyid:22:5C:F0:D3:17:04:B5:9D:7E:EB:01:85:48:20:2D:3A:57:0D:A9:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:19:5c:50:9d:dd:78:62:d3:78:5e:e7:da:86:83:71:dc:32:
73:b6:c6:71:6d:5a:29:c6:5a:82:f1:6b:ba:ff:08:bc:ba:f0:
49:f7:4b:30:40:a9:c7:a6:8f:c9:ca:7b:48:74:2b:d7:8f:0c:
a1:f1:07:9c:30:f0:63:c4:c1:7f:e2:de:f8:2b:25:b2:38:59:
7a:24:1b:14:29:80:27:80:bb:7c:7d:db:7e:f3:64:08:99:bc:
cb:95:04:98:ce:0f:33:90:e8:db:27:40:97:e5:44:46:33:ac:
24:91:ff:67:f5:98:0d:fa:92:64:fb:f6:41:7a:17:31:b3:a1:
03:44:70:c6:8d:02:43:40:39:8c:82:d8:8d:5b:de:98:1f:f3:
66:f5:56:a2:cd:ef:7c:34:39:fa:a4:53:7b:f4:dd:59:a5:f8:
b4:f5:bf:df:d7:55:5f:a1:52:30:68:76:fe:6a:4d:d3:04:02:
a5:03:99:83:de:e4:f5:26:a7:58:b8:cc:a9:c8:ca:9e:56:a0:
bd:bd:e3:be:7a:3e:06:f8:be:4f:c2:c4:94:e4:7d:6d:e2:db:
bb:78:45:b5:78:8f:e9:58:f0:20:bc:00:5e:f6:1a:ff:d3:29:
d2:58:04:0d:ba:a5:32:f1:af:9a:d5:32:6d:a0:35:cb:a8:3e:
09:ef:04:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:20:57 2025 by rpki-client