Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.mft
File: iLda7v6O6hrFwhnYdQXS58XzL0g.mft (raw, json)
Hash identifier: znTqm9kSJHo8et172oDZeWJ2YdUiW2X30ksHKiexTM0=
Subject key identifier: 4F:81:37:43:F3:82:C6:5C:D1:0A:CE:4F:E7:83:36:EC:2B:E6:A2:AD
Authority key identifier: 88:B7:5A:EE:FE:8E:EA:1A:C5:C2:19:D8:75:05:D2:E7:C5:F3:2F:48
Certificate issuer: /CN=88b75aeefe8eea1ac5c219d87505d2e7c5f32f48
Certificate serial: 01974A7A6CCAA082500FA1CD164BEFCD8A2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iLda7v6O6hrFwhnYdQXS58XzL0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.mft
Manifest number: 157E
Signing time: Sat 07 Jun 2025 13:00:26 +0000
Manifest this update: Sat 07 Jun 2025 13:00:26 +0000
Manifest next update: Sun 08 Jun 2025 13:00:26 +0000
Files and hashes: 1: RmCRqlQnRe9rCwX7VMuUVE41d98.roa (hash: /tq1VC9HIJ7jRew5LuuwcJaQrPrPH8vbpHUg/uqU1rE=)
2: iLda7v6O6hrFwhnYdQXS58XzL0g.crl (hash: HVOTdAQL1gXrD+ukGJHl1LiVdVCUnVryAVnfDBsG2KI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.mft
rsync://rpki.ripe.net/repository/DEFAULT/iLda7v6O6hrFwhnYdQXS58XzL0g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7a:6c:ca:a0:82:50:0f:a1:cd:16:4b:ef:cd:8a:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88b75aeefe8eea1ac5c219d87505d2e7c5f32f48
Validity
Not Before: Jun 7 13:00:26 2025 GMT
Not After : Jun 8 13:00:26 2025 GMT
Subject: CN=4f813743f382c65cd10ace4fe78336ec2be6a2ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:5a:a0:2e:83:58:07:1f:07:f5:37:df:91:05:
fd:a4:e2:d5:ed:b6:1c:f9:f6:be:bf:55:46:47:84:
ff:8e:4b:e2:32:5c:a4:46:4a:ce:9a:95:b0:b0:78:
c2:cc:a9:c1:da:19:df:6b:0d:a6:7b:77:2b:d9:c7:
f1:b0:fb:90:b8:70:f4:49:13:2b:28:81:b5:c7:10:
e9:73:b7:b3:e3:ab:6a:10:9d:cd:ed:d9:62:31:61:
35:0c:92:11:81:df:65:b8:0e:78:ed:3a:97:67:7c:
e7:0b:96:4b:a1:85:60:ad:6e:d4:db:82:a5:07:3b:
6d:fd:90:54:69:bb:97:4c:57:06:1f:2c:2b:2c:36:
a6:61:af:5f:e9:77:ec:b4:c1:b5:fb:5f:72:2f:a4:
43:d0:be:00:ae:b3:e7:97:ee:49:06:7a:b5:6b:a7:
0a:93:a7:c3:df:da:e6:c3:bd:72:be:49:7b:48:b7:
f3:5e:66:b6:82:ae:ea:85:aa:d2:ab:e1:05:5f:2d:
8e:7d:56:8b:8d:44:37:98:5f:05:32:b1:43:7e:f9:
92:06:e3:45:ea:a2:3c:b5:9e:24:05:63:6d:65:1d:
0c:09:76:50:ec:d5:9c:86:ef:9c:f7:ea:d4:f3:0e:
ec:5a:24:87:bf:4e:29:5e:e3:f1:29:c3:4f:11:63:
34:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:81:37:43:F3:82:C6:5C:D1:0A:CE:4F:E7:83:36:EC:2B:E6:A2:AD
X509v3 Authority Key Identifier:
keyid:88:B7:5A:EE:FE:8E:EA:1A:C5:C2:19:D8:75:05:D2:E7:C5:F3:2F:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iLda7v6O6hrFwhnYdQXS58XzL0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:ff:72:9c:9b:c0:7d:20:c3:a4:7e:93:f2:1e:89:40:b0:a6:
a8:89:b6:54:70:83:2f:ea:15:85:30:38:59:ef:d2:f7:c3:47:
13:97:9f:ba:82:9e:22:e4:c0:a5:18:6c:e6:92:74:ac:1b:8e:
f8:ff:e8:17:3b:71:58:91:5c:8d:1c:b1:a2:fe:e9:73:34:61:
c0:a0:db:21:3a:f5:0c:05:bb:e0:1d:88:4d:26:b7:72:03:8a:
7a:42:e4:01:fb:34:91:16:b0:6a:02:74:a9:f9:9b:e9:62:6f:
ae:a1:1b:88:ee:a9:60:78:3f:f5:b4:ec:b9:c5:5b:8e:0f:41:
c4:a3:6e:e1:f5:96:cb:b9:a1:37:03:13:f8:4a:d0:5a:6e:9f:
b3:98:eb:01:89:d5:57:46:8e:e7:a6:3b:39:9a:7b:64:e1:26:
d0:a9:f6:6a:2f:30:9a:0b:03:16:98:72:eb:0b:60:c7:4d:70:
3c:6d:f2:de:73:73:0c:26:97:83:0c:bd:0b:4b:42:f8:a5:25:
27:b1:91:2d:e9:9b:63:7a:71:ea:4b:9d:fd:b4:a2:44:af:c4:
9e:ae:59:2b:d2:04:7c:23:28:06:58:91:02:99:7b:f6:ae:f0:
2f:04:f8:a4:7a:5e:51:79:08:dc:f1:64:b8:03:6e:46:1f:66:
11:c4:f5:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:26:27 2025 by rpki-client