Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.mft
File: iPdXItsls3I97Npdhw32m_DYZa4.mft (raw, json)
Hash identifier: P78o2ONBIi0MiRWAFkFhBoZ4GW0ch927QKGiWVznwbI=
Subject key identifier: 15:23:B2:1E:C3:06:83:DF:6F:A4:79:E9:DD:68:CB:81:07:EE:26:D7
Authority key identifier: 88:F7:57:22:DB:25:B3:72:3D:EC:DA:5D:87:0D:F6:9B:F0:D8:65:AE
Certificate issuer: /CN=88f75722db25b3723decda5d870df69bf0d865ae
Certificate serial: 019611A0AABF489F62AF0610B9E7300FBD8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iPdXItsls3I97Npdhw32m_DYZa4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.mft
Manifest number: 0ED3
Signing time: Mon 07 Apr 2025 19:01:04 +0000
Manifest this update: Mon 07 Apr 2025 19:01:04 +0000
Manifest next update: Tue 08 Apr 2025 19:01:04 +0000
Files and hashes: 1: iPdXItsls3I97Npdhw32m_DYZa4.crl (hash: ZDAq/HZGwPn8mIvMDa5+uhKoee3qbfgW5Bzg9Aw/qOU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.mft
rsync://rpki.ripe.net/repository/DEFAULT/iPdXItsls3I97Npdhw32m_DYZa4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 14:28:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:11:a0:aa:bf:48:9f:62:af:06:10:b9:e7:30:0f:bd:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88f75722db25b3723decda5d870df69bf0d865ae
Validity
Not Before: Apr 7 19:01:04 2025 GMT
Not After : Apr 8 19:01:04 2025 GMT
Subject: CN=1523b21ec30683df6fa479e9dd68cb8107ee26d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:6a:bc:d8:fc:4f:be:76:d6:19:b2:32:e1:c0:
6e:06:15:04:19:75:4d:fd:70:90:93:fd:5a:29:ad:
b9:5f:1e:bf:a3:9d:6d:ba:9f:b3:20:1c:3e:f0:c7:
9a:cc:68:32:5b:2f:ff:9b:36:f5:13:df:aa:f2:6c:
84:47:29:9f:52:24:c7:f1:1e:07:69:3b:be:ea:f2:
b1:35:f4:0c:4a:2e:a3:4e:ee:86:92:57:c3:10:3b:
b9:75:8e:39:50:c3:21:cd:95:1c:5a:66:28:0d:12:
7c:59:3e:09:b6:d0:3d:fc:30:a4:2b:af:9b:74:06:
34:03:ac:09:3e:32:10:17:df:10:a0:97:9e:0d:6d:
06:a3:c0:93:15:ee:e1:c0:5b:27:ae:6c:98:8a:7d:
5d:cc:4b:00:d0:80:eb:72:71:39:1a:f2:06:cc:67:
00:b6:2d:2c:9d:11:1b:9a:5f:88:fc:25:91:5f:d0:
85:71:29:ca:03:9f:cc:41:d5:24:09:26:a8:87:27:
45:e9:56:3e:3b:73:bc:9a:3b:89:64:87:e2:f3:d0:
02:8e:97:8b:9a:47:bd:82:1f:9f:7d:3e:5a:0e:a8:
c2:23:9b:b9:36:a0:ed:86:df:a5:b7:db:1c:a9:62:
e4:b2:f7:2b:4d:fc:6b:82:ea:5a:c7:b7:2f:c0:68:
91:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:23:B2:1E:C3:06:83:DF:6F:A4:79:E9:DD:68:CB:81:07:EE:26:D7
X509v3 Authority Key Identifier:
keyid:88:F7:57:22:DB:25:B3:72:3D:EC:DA:5D:87:0D:F6:9B:F0:D8:65:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iPdXItsls3I97Npdhw32m_DYZa4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:18:63:ae:14:20:ed:6c:c0:f8:7e:cb:fb:c2:cd:e1:8c:04:
b5:53:61:89:7a:cf:b2:2c:58:c4:5f:81:b0:1d:32:b4:49:5a:
72:76:39:f4:6a:64:53:c5:57:8e:cd:1e:dc:c6:b0:ca:b0:30:
fd:49:45:bc:4f:c5:f7:fc:83:c7:c7:68:2e:d0:e2:6b:86:f3:
ef:f2:e4:7a:7c:d0:f9:b6:60:ac:b5:08:d7:4c:c2:bd:d7:d2:
e6:a9:24:73:b6:4e:70:2c:7e:13:a6:4c:5a:7d:59:16:7a:06:
b3:ba:c4:d8:c0:89:b4:39:73:59:ae:72:2c:9f:7d:4d:55:e3:
85:26:0c:9d:80:56:74:2b:2c:0d:3d:cc:21:59:c2:c5:a1:34:
63:03:74:43:47:74:16:3a:ce:10:db:62:c0:45:84:f5:6a:dc:
64:99:7a:18:cc:ad:91:58:c1:13:f1:29:56:22:fc:de:51:1e:
70:ce:fa:58:58:dc:12:47:d2:29:d8:66:ac:10:0e:93:61:aa:
43:62:57:27:55:18:06:85:95:7d:b7:58:02:67:33:e0:7e:ef:
0b:43:a0:8d:fb:a6:92:7d:88:bb:d8:66:2c:40:16:d0:7c:42:
0b:42:a2:7c:97:f2:bf:29:bc:0c:18:b7:7a:42:cf:48:41:60:
13:a6:26:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:46:12 2025 by rpki-client