Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/61ccd4-e053-45e0-b635-7fea066f0b96/1/iKlKQUDhmzIGP8bnefWTFKdKDFE.mft
File: iKlKQUDhmzIGP8bnefWTFKdKDFE.mft (raw, json)
Hash identifier: SvidsFGPedZe+Ul6a5VXMNf0kedrclbodb1t0PPMW3o=
Subject key identifier: 26:E8:9D:57:F2:F0:8A:D6:7A:73:26:B1:4D:7F:17:64:5D:F9:91:F4
Authority key identifier: 88:A9:4A:41:40:E1:9B:32:06:3F:C6:E7:79:F5:93:14:A7:4A:0C:51
Certificate issuer: /CN=88a94a4140e19b32063fc6e779f59314a74a0c51
Certificate serial: 0196C5A77F14DDF7F0EEBAF4C0F10982B421
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iKlKQUDhmzIGP8bnefWTFKdKDFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/61ccd4-e053-45e0-b635-7fea066f0b96/1/iKlKQUDhmzIGP8bnefWTFKdKDFE.mft
Manifest number: 1539
Signing time: Mon 12 May 2025 18:00:10 +0000
Manifest this update: Mon 12 May 2025 18:00:10 +0000
Manifest next update: Tue 13 May 2025 18:00:10 +0000
Files and hashes: 1: S1kW1dWYYAUdp34Ffvr3hqq6tx4.roa (hash: HPlJ0x+8hEc9+twnaORN/j75RT2RjTnSkW49RshA3cE=)
2: iKlKQUDhmzIGP8bnefWTFKdKDFE.crl (hash: PpMop4rFXOWFhtzFAtEnMU8IDOZBI5yoL1rIFL5Rn1I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/61ccd4-e053-45e0-b635-7fea066f0b96/1/iKlKQUDhmzIGP8bnefWTFKdKDFE.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/61ccd4-e053-45e0-b635-7fea066f0b96/1/iKlKQUDhmzIGP8bnefWTFKdKDFE.mft
rsync://rpki.ripe.net/repository/DEFAULT/iKlKQUDhmzIGP8bnefWTFKdKDFE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c5:a7:7f:14:dd:f7:f0:ee:ba:f4:c0:f1:09:82:b4:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88a94a4140e19b32063fc6e779f59314a74a0c51
Validity
Not Before: May 12 18:00:10 2025 GMT
Not After : May 13 18:00:10 2025 GMT
Subject: CN=26e89d57f2f08ad67a7326b14d7f17645df991f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:af:c8:b5:54:fa:e2:2b:4c:a8:bf:48:fa:32:
e8:74:71:1e:68:89:46:ac:f1:be:91:81:1b:1d:b6:
b0:82:7c:2c:01:e3:e5:e7:a3:51:2c:5f:51:10:b2:
3b:d9:ff:bf:26:e1:53:06:87:c2:ff:38:2d:8a:4d:
59:b7:14:40:91:1a:ff:2b:3f:e2:7e:1c:83:d7:9e:
7f:77:e9:6e:af:56:56:df:ea:f0:ef:b6:98:24:4d:
7f:a5:75:85:40:12:4d:bc:65:bc:a6:18:a0:56:c3:
c1:f7:0d:36:d3:07:9f:2b:d3:21:0a:3c:47:df:96:
39:01:b8:30:06:11:65:79:98:b3:84:92:f6:3c:32:
4c:05:46:76:20:bb:48:e3:c9:f2:67:9a:ae:32:36:
24:21:6c:f1:73:ab:84:0d:44:2e:7b:a7:76:11:34:
a2:df:17:69:8c:28:94:2d:aa:1b:dc:97:c3:4d:c5:
63:fe:b0:a5:12:a5:88:59:3b:aa:a6:59:c5:4f:2b:
6d:cf:aa:b9:28:ce:d8:63:8a:f3:3b:45:5e:7c:f8:
c5:12:1b:ba:96:59:c7:da:df:93:ad:6c:01:e8:6c:
c6:4f:34:fe:19:e9:5c:22:6c:de:5e:d5:c2:65:bf:
ca:b2:77:95:0c:c6:cf:fa:5c:76:91:ec:95:40:a7:
92:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:E8:9D:57:F2:F0:8A:D6:7A:73:26:B1:4D:7F:17:64:5D:F9:91:F4
X509v3 Authority Key Identifier:
keyid:88:A9:4A:41:40:E1:9B:32:06:3F:C6:E7:79:F5:93:14:A7:4A:0C:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKlKQUDhmzIGP8bnefWTFKdKDFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/61ccd4-e053-45e0-b635-7fea066f0b96/1/iKlKQUDhmzIGP8bnefWTFKdKDFE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/61ccd4-e053-45e0-b635-7fea066f0b96/1/iKlKQUDhmzIGP8bnefWTFKdKDFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:46:a8:d2:65:b3:ad:03:81:a8:af:0f:a2:a2:94:cf:e2:5a:
a7:67:3c:e6:82:2a:5c:09:b7:9f:d0:81:cc:be:57:e4:e7:c2:
42:00:c9:80:76:52:c4:f3:e0:03:be:38:8b:61:b0:1e:d9:fc:
18:58:56:cc:87:4a:4e:a9:ad:24:96:6c:33:77:08:2e:25:7e:
78:6d:a8:44:ef:88:1e:98:17:7f:81:25:5f:d8:e2:10:4b:32:
cb:32:81:c3:2f:96:e1:80:ff:4e:28:c8:24:98:2e:e1:53:d0:
9f:99:fe:79:a4:9e:18:2c:e9:55:6d:a2:52:ff:7e:72:28:3b:
41:6b:61:0a:57:ba:a0:24:34:de:26:56:c5:95:22:38:6f:b6:
89:43:7f:61:a9:fc:f3:ff:b3:b4:f8:9d:27:0b:f7:a9:b6:5d:
52:76:6d:f7:ce:e8:ff:34:90:9d:a9:21:70:0f:62:71:07:cf:
ab:94:0f:9f:93:b1:9c:ca:bc:fd:4b:43:bb:99:41:78:77:e6:
01:ae:44:de:b0:f5:48:23:b9:64:b9:90:c3:02:85:64:9b:c9:
9f:2a:3d:ad:d5:f1:b9:f4:db:d8:bc:03:e6:c2:99:75:24:f1:
b1:a9:1d:7e:4b:f9:be:e3:82:1e:82:ca:1b:c8:b9:e7:01:fc:
b3:15:d3:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 00:51:20 2025 by rpki-client