Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.mft
File: iPdXItsls3I97Npdhw32m_DYZa4.mft (raw, json)
Hash identifier: HKBQhFe5c4xEjaE7YaJ0vQWgjZ92wwzKei4tleeCknE=
Subject key identifier: 1D:A1:75:78:A6:BA:3A:21:0B:C0:F0:3D:B2:6B:69:C0:E6:83:8E:D6
Authority key identifier: 88:F7:57:22:DB:25:B3:72:3D:EC:DA:5D:87:0D:F6:9B:F0:D8:65:AE
Certificate issuer: /CN=88f75722db25b3723decda5d870df69bf0d865ae
Certificate serial: 0197B88EC4858184F5B00864E0ECDDEB605A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iPdXItsls3I97Npdhw32m_DYZa4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.mft
Manifest number: 0FAE
Signing time: Sat 28 Jun 2025 22:00:53 +0000
Manifest this update: Sat 28 Jun 2025 22:00:53 +0000
Manifest next update: Sun 29 Jun 2025 22:00:53 +0000
Files and hashes: 1: iPdXItsls3I97Npdhw32m_DYZa4.crl (hash: mnAoJeL53YsBXDYts2jOPVN+LBekx138h2OcEoDbntw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.mft
rsync://rpki.ripe.net/repository/DEFAULT/iPdXItsls3I97Npdhw32m_DYZa4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8e:c4:85:81:84:f5:b0:08:64:e0:ec:dd:eb:60:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88f75722db25b3723decda5d870df69bf0d865ae
Validity
Not Before: Jun 28 22:00:53 2025 GMT
Not After : Jun 29 22:00:53 2025 GMT
Subject: CN=1da17578a6ba3a210bc0f03db26b69c0e6838ed6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:64:54:fa:08:13:b4:27:ba:a9:5c:99:0e:dc:
01:ee:c6:76:34:f8:1e:1a:b8:33:48:ee:d7:8f:92:
98:98:f3:6c:45:50:ee:cf:2a:20:74:1c:bd:14:d2:
94:56:ef:ca:82:6b:f5:b8:1b:99:ba:2e:6f:07:e6:
6a:00:57:f3:3c:da:e7:dc:8c:53:70:20:5f:a0:d6:
b9:b2:52:ad:ef:62:c4:3c:72:b8:7b:55:87:9b:4f:
70:74:dd:f8:e3:8f:3d:ef:02:8f:0f:c2:cb:cf:db:
69:b7:37:a8:3f:71:c3:b7:8a:b4:2e:d0:84:cc:e2:
b6:83:42:46:85:2d:95:dd:d7:31:97:cd:6e:3a:42:
a4:71:e2:eb:0a:10:f0:af:e4:fb:8c:58:3d:01:3e:
a7:ef:a5:9a:8d:e3:24:35:69:ed:ad:40:13:79:4c:
da:0e:2a:1a:0f:bd:64:52:27:75:6e:0a:b1:8b:69:
56:21:31:63:a0:9c:b0:ce:87:f8:1e:da:81:88:09:
32:15:b2:9a:9e:8e:b5:49:fc:e4:05:ea:b0:2c:87:
d9:62:7b:29:ce:62:e0:cd:ff:e1:ef:b7:b8:48:8a:
4d:18:b6:a7:3a:c8:23:1c:9f:df:0d:4e:0e:41:c3:
0b:a8:75:5f:59:d8:f0:dc:72:d1:d8:3c:71:f5:4b:
8d:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:A1:75:78:A6:BA:3A:21:0B:C0:F0:3D:B2:6B:69:C0:E6:83:8E:D6
X509v3 Authority Key Identifier:
keyid:88:F7:57:22:DB:25:B3:72:3D:EC:DA:5D:87:0D:F6:9B:F0:D8:65:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iPdXItsls3I97Npdhw32m_DYZa4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:f8:de:5f:8b:48:fd:1d:c3:dc:4f:99:60:b5:8a:b7:32:02:
81:23:66:dc:e0:85:b9:e9:05:4a:87:69:77:a9:9c:88:e3:58:
03:a5:bc:47:da:31:5c:60:d8:0b:42:3e:9a:71:5b:41:22:7a:
2d:95:75:69:f8:48:fe:dd:12:9c:43:47:12:37:fd:d3:08:58:
f6:7f:7a:53:e6:64:91:37:5f:58:cf:48:92:10:3a:ec:a9:f0:
41:e1:87:e7:cc:46:e0:20:c4:7c:de:6b:d1:f1:3e:b7:5e:6c:
f9:45:75:e6:02:a9:9d:e9:25:47:b2:05:d8:b5:96:cc:e7:c2:
82:4c:6b:8d:c5:07:49:3a:58:a2:24:24:be:f7:06:6b:bb:c3:
e3:e3:a4:70:70:50:65:61:14:c1:9f:8b:3a:57:83:10:a7:70:
6b:de:fe:f0:ed:ca:ad:5e:2e:42:bc:0e:42:0a:96:96:84:8e:
8e:93:0e:db:37:eb:f9:8f:ac:af:6b:da:6e:fe:1e:ed:5e:d4:
4a:26:35:ca:90:f9:ea:01:64:5d:ac:b2:fb:12:21:27:3d:5b:
a5:f2:03:89:16:14:eb:af:b6:30:72:3b:67:22:c5:e7:fa:0a:
15:62:02:5a:86:6f:36:9a:ca:fc:94:f3:cc:62:fd:0f:b2:12:
86:cf:14:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 04:29:39 2025 by rpki-client