Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.mft
File: iLda7v6O6hrFwhnYdQXS58XzL0g.mft (raw, json)
Hash identifier: yvopQh3I8IR9qoGaZ0FXgztPYrpSwY6j258GJpRN/pQ=
Subject key identifier: 50:24:1B:DA:4B:BB:0C:5B:A7:5A:3D:87:3C:93:DB:67:65:C1:25:E4
Authority key identifier: 88:B7:5A:EE:FE:8E:EA:1A:C5:C2:19:D8:75:05:D2:E7:C5:F3:2F:48
Certificate issuer: /CN=88b75aeefe8eea1ac5c219d87505d2e7c5f32f48
Certificate serial: 019510C6C6AF5D1E2972C61C8E500F3FAB0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iLda7v6O6hrFwhnYdQXS58XzL0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.mft
Manifest number: 1457
Signing time: Sun 16 Feb 2025 22:00:17 +0000
Manifest this update: Sun 16 Feb 2025 22:00:17 +0000
Manifest next update: Mon 17 Feb 2025 22:00:17 +0000
Files and hashes: 1: RmCRqlQnRe9rCwX7VMuUVE41d98.roa (hash: /tq1VC9HIJ7jRew5LuuwcJaQrPrPH8vbpHUg/uqU1rE=)
2: iLda7v6O6hrFwhnYdQXS58XzL0g.crl (hash: K2Ve9gysUjppnl4CSeFEIgY/R3mRrK0ahn3GPOWh5pA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.mft
rsync://rpki.ripe.net/repository/DEFAULT/iLda7v6O6hrFwhnYdQXS58XzL0g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c6:c6:af:5d:1e:29:72:c6:1c:8e:50:0f:3f:ab:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88b75aeefe8eea1ac5c219d87505d2e7c5f32f48
Validity
Not Before: Feb 16 22:00:17 2025 GMT
Not After : Feb 17 22:00:17 2025 GMT
Subject: CN=50241bda4bbb0c5ba75a3d873c93db6765c125e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:7d:b9:8e:53:a6:18:cf:38:25:7b:f8:52:0d:
0d:d9:82:47:97:00:dd:11:e4:13:ee:04:d8:43:d1:
a5:5b:66:da:bc:90:31:51:c7:a0:3d:3d:d1:5d:33:
57:e4:a8:f9:ef:73:47:44:a0:18:b4:2f:b5:ad:b8:
48:a4:62:db:23:2e:6a:05:d0:a2:a3:d6:bf:e0:a6:
d8:9a:77:c2:b3:1a:85:8b:f3:e8:4c:87:83:e2:5a:
7a:85:38:57:e8:95:de:ab:e1:30:ee:05:20:aa:af:
f2:c5:48:14:5d:26:ea:9a:fa:5f:e1:72:e9:7e:58:
80:fe:e0:de:6c:6d:b7:65:91:b2:6d:f9:59:e3:fa:
52:82:f7:41:9d:29:b8:cb:87:e0:d2:12:1a:90:69:
93:e3:b4:59:77:b5:46:44:65:81:11:0c:34:33:31:
9c:76:e1:fb:28:1b:5b:bf:86:79:dd:a9:dd:17:16:
cf:18:25:45:a4:0b:1e:c5:73:76:06:43:6d:6d:7d:
18:fb:af:ac:b6:4c:88:93:5b:3d:19:27:c7:4e:71:
23:20:9f:45:e5:03:a4:ed:1f:7e:2c:24:5f:53:0c:
fc:33:2c:37:f3:f8:6b:24:cd:f9:97:31:06:cd:86:
64:15:35:be:c9:fc:23:d2:67:e8:80:a9:d6:0f:58:
bf:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:24:1B:DA:4B:BB:0C:5B:A7:5A:3D:87:3C:93:DB:67:65:C1:25:E4
X509v3 Authority Key Identifier:
keyid:88:B7:5A:EE:FE:8E:EA:1A:C5:C2:19:D8:75:05:D2:E7:C5:F3:2F:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iLda7v6O6hrFwhnYdQXS58XzL0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:ad:27:cf:b3:2c:d5:66:56:e9:5f:6a:c2:c7:79:50:cc:83:
fb:92:63:f8:cb:fa:77:92:0b:ae:82:66:ae:52:8c:55:1c:66:
46:f7:16:8c:6a:d1:91:35:0e:6b:06:25:ba:54:19:1b:42:ac:
8d:ae:ce:14:ae:be:fc:36:2e:c4:5f:56:11:a6:ef:45:22:4f:
99:b4:bd:23:27:3a:5e:e7:a4:a2:ac:73:6c:fd:03:43:89:6c:
27:cb:52:7d:b3:4b:d6:56:7e:01:c4:66:51:41:1b:bc:1e:19:
32:67:16:dc:de:76:a3:38:20:8d:a7:ca:43:51:04:a7:02:c6:
29:55:1a:9f:cc:02:01:09:cf:65:5f:11:d3:fd:17:a6:4e:9a:
f4:bf:1e:b4:79:d0:98:8c:70:dd:10:c8:8d:36:e0:1a:f7:61:
db:e8:af:b7:9f:0b:bf:8a:1e:e4:f0:63:ee:4d:9a:cd:02:02:
05:9d:24:1c:43:da:60:ff:82:41:9b:aa:85:35:33:09:d8:97:
ce:6a:cb:dd:ad:29:78:a3:a9:62:d3:1f:09:38:42:92:28:2b:
6b:95:e2:7b:1c:cb:83:ed:52:d7:b6:41:70:43:e7:cc:b4:e0:
fd:22:5a:c4:47:be:c8:5e:e3:a7:3d:9f:1d:9d:fd:32:0b:cc:
1b:1f:f4:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:06:06 2025 by rpki-client