Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.mft
File: iLda7v6O6hrFwhnYdQXS58XzL0g.mft (raw, json)
Hash identifier: 20UbPFWdy3Kwsn6rCFewIOZ9Lc8yVgtKspy1p/b3/zE=
Subject key identifier: 7C:8F:8A:52:92:FA:37:D3:FB:DF:F3:E8:85:18:BE:9C:F6:B3:0D:28
Authority key identifier: 88:B7:5A:EE:FE:8E:EA:1A:C5:C2:19:D8:75:05:D2:E7:C5:F3:2F:48
Certificate issuer: /CN=88b75aeefe8eea1ac5c219d87505d2e7c5f32f48
Certificate serial: 01963E0BF6FB373DC6265A0D05B8A1BF7FC6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iLda7v6O6hrFwhnYdQXS58XzL0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.mft
Manifest number: 14F3
Signing time: Wed 16 Apr 2025 10:01:33 +0000
Manifest this update: Wed 16 Apr 2025 10:01:33 +0000
Manifest next update: Thu 17 Apr 2025 10:01:33 +0000
Files and hashes: 1: RmCRqlQnRe9rCwX7VMuUVE41d98.roa (hash: /tq1VC9HIJ7jRew5LuuwcJaQrPrPH8vbpHUg/uqU1rE=)
2: iLda7v6O6hrFwhnYdQXS58XzL0g.crl (hash: PSV7EiyBihXMYc8Wi0e4bQmfikbSi+dWhP+QynVFt/g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.mft
rsync://rpki.ripe.net/repository/DEFAULT/iLda7v6O6hrFwhnYdQXS58XzL0g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 10:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3e:0b:f6:fb:37:3d:c6:26:5a:0d:05:b8:a1:bf:7f:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88b75aeefe8eea1ac5c219d87505d2e7c5f32f48
Validity
Not Before: Apr 16 10:01:33 2025 GMT
Not After : Apr 17 10:01:33 2025 GMT
Subject: CN=7c8f8a5292fa37d3fbdff3e88518be9cf6b30d28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:cc:c8:9e:5a:4e:40:14:44:43:93:ec:a4:04:
47:c2:f4:28:6d:f1:06:36:9e:ac:53:99:94:d8:1c:
40:5a:97:76:cc:94:5e:80:b8:c1:0b:c6:fc:56:6c:
33:62:0d:6c:20:74:c6:68:0d:18:ac:c9:29:e9:45:
b9:c8:28:c4:c8:3b:ec:a0:44:9d:57:dc:00:c5:5a:
8c:56:ea:51:5f:47:62:ba:5e:46:6a:09:50:30:4c:
75:2c:cd:a7:13:41:68:a7:98:90:11:11:dc:41:c9:
da:8a:12:12:99:5b:fc:ed:13:81:b4:c0:cd:c7:d2:
48:c0:34:a4:ed:23:07:da:be:0e:32:c3:d0:30:98:
10:ab:f3:b0:ac:7d:a2:47:50:99:f4:8d:28:6b:8f:
56:7c:26:dd:fa:56:02:8d:e7:4b:45:73:83:22:f1:
14:61:52:9b:36:9a:d2:d8:e0:7b:41:d2:15:b3:d3:
e0:8b:97:13:f4:a6:2e:32:d1:ad:d8:81:80:ec:77:
86:89:ba:79:28:3f:f2:df:55:bb:10:e4:ad:4f:6c:
48:89:d6:c8:4d:d1:27:df:5b:34:9e:35:37:e3:b7:
ed:54:8a:8e:3c:82:71:36:93:e7:ba:d5:cf:e1:22:
9b:36:82:94:4a:57:f0:dc:8b:a2:fe:10:33:71:fa:
5e:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:8F:8A:52:92:FA:37:D3:FB:DF:F3:E8:85:18:BE:9C:F6:B3:0D:28
X509v3 Authority Key Identifier:
keyid:88:B7:5A:EE:FE:8E:EA:1A:C5:C2:19:D8:75:05:D2:E7:C5:F3:2F:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iLda7v6O6hrFwhnYdQXS58XzL0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:ce:83:63:d5:08:29:20:39:4c:4d:92:52:c4:f6:36:0e:0a:
ac:df:b9:80:4d:da:c3:48:a9:3d:e5:89:af:14:9a:a9:3b:80:
9f:50:d8:b3:25:29:c9:06:f0:ab:08:81:ed:7b:9e:39:35:72:
61:44:66:db:49:86:ea:79:6d:0b:21:fe:db:86:cf:57:31:37:
f4:ac:00:9f:74:58:a1:64:d0:2a:61:3d:a8:9e:51:05:6d:51:
ff:ca:5a:03:c4:9b:4d:64:4d:46:15:30:ff:a6:33:a5:38:1d:
5e:b0:aa:1a:e4:c9:23:21:82:d6:f7:31:ed:63:42:41:73:d4:
07:f7:22:1c:5f:99:b5:88:12:88:1c:6e:ee:3d:09:c8:50:57:
8d:98:6c:ab:59:4d:33:12:b1:ce:9c:cb:02:73:8d:1d:da:32:
c7:0f:92:dd:03:d0:d8:5c:90:a8:33:b0:0a:9f:c4:99:87:38:
71:d2:1a:0c:d3:53:e3:25:ab:eb:9b:c1:9a:ae:59:09:1d:9d:
d7:4a:e8:a3:dc:bd:94:3b:8f:1a:f2:83:a6:34:b3:8d:ea:9a:
2b:06:36:24:b3:cc:aa:72:b6:52:d8:6d:ec:52:1c:67:eb:cb:
97:f5:f5:a6:74:2d:c0:18:45:13:bf:89:94:5b:ae:f5:2f:6b:
e8:72:69:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 21:46:05 2025 by rpki-client