Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/cbf67b-a65a-42a3-8908-07369e14cade/1/IlVxaqH0w8EChxihwzHiKzOerXw.mft
File: IlVxaqH0w8EChxihwzHiKzOerXw.mft (raw, json)
Hash identifier: QqDxEAthW+DfmbhLR6acNqXQyA+DIdUzjqGGILZtKEo=
Subject key identifier: 38:AB:E2:15:BE:3E:A7:E7:0E:FC:C7:8D:15:1B:7D:EB:F3:99:5E:D6
Authority key identifier: 22:55:71:6A:A1:F4:C3:C1:02:87:18:A1:C3:31:E2:2B:33:9E:AD:7C
Certificate issuer: /CN=2255716aa1f4c3c1028718a1c331e22b339ead7c
Certificate serial: 01964C6B4B125828CA821F9C0F82AB5F0627
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IlVxaqH0w8EChxihwzHiKzOerXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/cbf67b-a65a-42a3-8908-07369e14cade/1/IlVxaqH0w8EChxihwzHiKzOerXw.mft
Manifest number: 117A
Signing time: Sat 19 Apr 2025 05:00:21 +0000
Manifest this update: Sat 19 Apr 2025 05:00:21 +0000
Manifest next update: Sun 20 Apr 2025 05:00:21 +0000
Files and hashes: 1: IlVxaqH0w8EChxihwzHiKzOerXw.crl (hash: bqWaMDwYAuWrSqzEPfa7FoQ3eyvOuyEBjh3bqOB07l8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/cbf67b-a65a-42a3-8908-07369e14cade/1/IlVxaqH0w8EChxihwzHiKzOerXw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/cbf67b-a65a-42a3-8908-07369e14cade/1/IlVxaqH0w8EChxihwzHiKzOerXw.mft
rsync://rpki.ripe.net/repository/DEFAULT/IlVxaqH0w8EChxihwzHiKzOerXw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4c:6b:4b:12:58:28:ca:82:1f:9c:0f:82:ab:5f:06:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2255716aa1f4c3c1028718a1c331e22b339ead7c
Validity
Not Before: Apr 19 05:00:21 2025 GMT
Not After : Apr 20 05:00:21 2025 GMT
Subject: CN=38abe215be3ea7e70efcc78d151b7debf3995ed6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:2d:fe:89:5e:5b:26:96:37:e6:5b:d6:cc:0b:
08:2e:67:7a:23:25:2e:8f:01:3f:76:39:5c:8c:43:
6f:05:4a:f0:ec:29:63:b3:88:e2:4e:d9:10:36:6c:
d7:58:d4:23:c7:45:f2:e8:ef:b6:5e:08:50:11:13:
93:17:67:8e:92:a5:10:96:bf:87:9f:d5:83:0c:bf:
f3:47:15:b8:5d:b4:93:28:a5:98:5d:15:f8:7a:df:
85:d8:67:c1:0f:74:88:d2:15:aa:c2:27:24:0f:f7:
a1:9f:93:bd:3c:54:61:af:ce:06:85:94:9a:0a:e0:
12:3e:91:cf:51:d0:5d:14:18:86:78:73:b8:ae:8c:
19:ed:b9:e3:fb:33:55:4c:ce:a8:5b:3c:06:26:61:
34:e6:94:cc:43:22:ec:69:a0:21:43:ee:c1:96:7b:
02:8c:a1:70:6b:87:86:b1:61:24:ee:67:d1:97:6a:
96:0b:33:52:45:68:3c:52:ea:2f:f6:73:3b:34:84:
dd:ff:6b:46:16:0e:25:03:3c:ed:c4:b0:ec:d4:dc:
86:a6:57:41:96:d8:03:20:08:a9:cd:75:0b:a0:86:
2a:fd:b5:fe:69:70:0a:01:01:a9:4e:40:bb:12:6c:
b4:17:19:a3:fc:47:23:5a:e1:ba:0e:43:09:6e:af:
f3:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:AB:E2:15:BE:3E:A7:E7:0E:FC:C7:8D:15:1B:7D:EB:F3:99:5E:D6
X509v3 Authority Key Identifier:
keyid:22:55:71:6A:A1:F4:C3:C1:02:87:18:A1:C3:31:E2:2B:33:9E:AD:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IlVxaqH0w8EChxihwzHiKzOerXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/cbf67b-a65a-42a3-8908-07369e14cade/1/IlVxaqH0w8EChxihwzHiKzOerXw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/cbf67b-a65a-42a3-8908-07369e14cade/1/IlVxaqH0w8EChxihwzHiKzOerXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:b1:35:02:b2:35:a3:df:2d:d7:9a:1f:32:19:60:d1:0c:2c:
f2:5c:7e:26:39:d7:46:2f:61:16:1d:53:44:3b:47:25:94:54:
6a:d7:60:95:58:59:6e:a2:c7:ff:81:5d:cc:2b:d7:63:43:b2:
a1:3e:f3:70:4d:84:8b:c7:3a:3a:b8:bf:0a:73:79:7c:57:81:
7f:7d:e9:92:02:e3:ac:e2:e3:a7:3c:f7:e3:f6:e5:49:28:6b:
9d:ff:31:e0:55:68:99:55:4e:7b:e5:98:df:7f:01:fc:13:61:
82:9f:4e:9b:84:d3:66:64:f0:b3:6e:b3:77:c3:7e:c5:38:57:
89:74:81:bd:9a:eb:4a:0e:36:68:da:2f:68:c3:fa:9d:05:2a:
ce:b4:e8:cf:d3:5e:42:de:39:db:43:54:5f:3e:d4:3b:33:5e:
ef:c2:5b:9e:a3:ec:ad:c2:3c:22:15:7c:67:5d:33:29:73:d3:
94:03:dc:28:34:67:c6:7e:51:a7:2f:38:ab:e9:fa:3e:0d:8b:
09:2d:71:47:7b:a2:de:71:22:4f:2a:c1:df:5d:4a:9c:d2:bc:
f2:64:7e:cf:60:53:9a:dc:f2:0d:31:84:b6:27:cb:71:67:de:
ce:25:89:ea:98:40:b3:07:b3:8f:a6:b7:a9:0f:47:8a:cf:04:
2d:9d:74:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 07:50:16 2025 by rpki-client