Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.mft
File: iPdXItsls3I97Npdhw32m_DYZa4.mft (raw, json)
Hash identifier: D3C9oKes0NcXqNgVqHkLLsIdubZcB4Wy1RYQotiEvMs=
Subject key identifier: 5D:73:60:16:10:D3:5E:47:04:FA:4C:2E:76:9A:77:E0:5E:DB:0A:C0
Authority key identifier: 88:F7:57:22:DB:25:B3:72:3D:EC:DA:5D:87:0D:F6:9B:F0:D8:65:AE
Certificate issuer: /CN=88f75722db25b3723decda5d870df69bf0d865ae
Certificate serial: 01974A7A9DBDEFB625C93AB41A3DF4CA9A22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iPdXItsls3I97Npdhw32m_DYZa4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.mft
Manifest number: 0F75
Signing time: Sat 07 Jun 2025 13:00:39 +0000
Manifest this update: Sat 07 Jun 2025 13:00:39 +0000
Manifest next update: Sun 08 Jun 2025 13:00:39 +0000
Files and hashes: 1: iPdXItsls3I97Npdhw32m_DYZa4.crl (hash: uOB/8yEd7hk5dXBvQVjs8XuVibyjFsqxPd4jDbXez0Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.mft
rsync://rpki.ripe.net/repository/DEFAULT/iPdXItsls3I97Npdhw32m_DYZa4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7a:9d:bd:ef:b6:25:c9:3a:b4:1a:3d:f4:ca:9a:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88f75722db25b3723decda5d870df69bf0d865ae
Validity
Not Before: Jun 7 13:00:39 2025 GMT
Not After : Jun 8 13:00:39 2025 GMT
Subject: CN=5d73601610d35e4704fa4c2e769a77e05edb0ac0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:72:b9:d8:3c:87:85:f3:f9:44:aa:1c:61:9c:
b5:3c:3d:69:b7:93:52:03:c7:3d:1c:b4:1a:9a:b3:
69:9c:cb:17:37:c9:f1:46:31:c7:93:f7:eb:b2:b5:
2a:75:94:a7:b7:93:10:57:3a:68:d9:0f:05:29:e3:
d6:4e:e1:9f:cc:61:1b:3e:f5:7a:2d:ac:ac:46:39:
97:fa:6f:1c:48:2a:40:63:ac:c5:e2:83:fe:a3:3e:
05:4f:09:2d:81:5f:db:89:eb:95:8f:b4:e2:6a:09:
05:37:22:77:3e:fc:89:ad:88:f2:ca:63:88:ae:b3:
50:ac:5c:e6:d5:cb:6c:63:37:41:24:ba:b0:44:d3:
d6:e3:f2:74:43:1d:fa:bc:2d:80:82:0d:9d:db:61:
91:16:58:f0:50:01:73:63:1a:2e:1e:39:31:ba:91:
b2:cf:47:f0:e6:27:7e:3f:67:bf:10:1b:0d:d4:ca:
fe:2b:a9:cc:9e:a2:53:c5:2f:8a:61:2a:dd:61:8e:
f9:72:63:f8:83:c8:f3:db:24:23:8e:90:83:8b:25:
cb:bf:e2:4b:16:4a:d8:2a:ab:68:8c:83:37:48:8d:
e5:fd:be:06:8f:83:00:fd:a3:4d:04:d4:41:eb:7b:
0b:cb:0b:88:67:18:a0:1c:af:cc:b2:e1:38:f5:6b:
3a:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:73:60:16:10:D3:5E:47:04:FA:4C:2E:76:9A:77:E0:5E:DB:0A:C0
X509v3 Authority Key Identifier:
keyid:88:F7:57:22:DB:25:B3:72:3D:EC:DA:5D:87:0D:F6:9B:F0:D8:65:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iPdXItsls3I97Npdhw32m_DYZa4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:8c:bd:95:5e:42:23:1c:a0:6f:d2:ce:5f:74:5e:f6:65:83:
27:c1:c8:e3:98:ea:c7:99:87:1b:44:a4:e0:fd:13:0d:6b:e3:
d0:a6:45:75:d0:0e:66:aa:92:06:6d:29:92:0b:4e:11:81:0e:
e7:af:1f:32:f2:ac:35:54:8e:f3:dc:40:ef:89:2e:50:f7:85:
b0:f0:4b:45:a2:ee:c8:15:82:13:0c:fe:78:3c:7f:a1:04:67:
96:b9:82:0e:66:f6:34:c7:48:a6:79:f1:d0:d0:9d:f1:08:aa:
ef:ea:86:7b:ed:7a:47:70:98:43:bc:94:cd:23:bc:0d:eb:3b:
f6:3b:2b:30:29:e4:a1:9c:7b:4e:f5:83:84:a6:fd:49:dd:af:
75:b9:79:3f:8b:8b:9d:5b:c6:2f:41:2e:e7:c8:9d:30:ed:c9:
fb:71:5e:ca:24:c9:ef:7a:c1:97:4e:69:72:43:19:2a:0c:11:
aa:40:84:42:07:36:a6:49:83:49:f1:7d:66:31:84:5a:e3:5f:
24:b9:17:1c:1f:1b:75:ad:0d:3d:92:54:2f:d6:a1:ce:85:6b:
cc:f2:0e:8d:01:be:9f:6b:2f:8c:81:1e:d3:52:ce:03:75:d3:
c9:2e:94:92:35:58:88:0b:49:52:0e:01:c5:c4:cd:54:11:07:
ee:63:13:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:53:01 2025 by rpki-client