Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/8e291a-b655-46e4-bdc3-ef5ba54adb59/1/ILSHOEKpBPGmlyATk-e6YmhC9K8.mft
File: ILSHOEKpBPGmlyATk-e6YmhC9K8.mft (raw, json)
Hash identifier: AAft10XG+JMpfoUbcX2ZSua8gBLkDYav2FAWNDI9qxU=
Subject key identifier: 9F:DA:56:AC:7A:22:DD:83:CA:70:2A:26:E8:62:F4:27:37:1F:22:2A
Authority key identifier: 20:B4:87:38:42:A9:04:F1:A6:97:20:13:93:E7:BA:62:68:42:F4:AF
Certificate issuer: /CN=20b4873842a904f1a697201393e7ba626842f4af
Certificate serial: 0196D551FBFEC1056B8D55796BE79C537484
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ILSHOEKpBPGmlyATk-e6YmhC9K8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/8e291a-b655-46e4-bdc3-ef5ba54adb59/1/ILSHOEKpBPGmlyATk-e6YmhC9K8.mft
Manifest number: 5E
Signing time: Thu 15 May 2025 19:00:41 +0000
Manifest this update: Thu 15 May 2025 19:00:41 +0000
Manifest next update: Fri 16 May 2025 19:00:41 +0000
Files and hashes: 1: ILSHOEKpBPGmlyATk-e6YmhC9K8.crl (hash: t4n2mcHgbqQuHJ2gNr0AJmFVGSoHnO6FDL07EN3EsG4=)
2: ikBv5b5jvUgLHCzEElZRpG0xhaQ.roa (hash: gqu/sWjZphbSMNC/g5mms3lw1LEITcFb3ZdY4tecg1U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/8e291a-b655-46e4-bdc3-ef5ba54adb59/1/ILSHOEKpBPGmlyATk-e6YmhC9K8.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/8e291a-b655-46e4-bdc3-ef5ba54adb59/1/ILSHOEKpBPGmlyATk-e6YmhC9K8.mft
rsync://rpki.ripe.net/repository/DEFAULT/ILSHOEKpBPGmlyATk-e6YmhC9K8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 16 May 2025 14:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d5:51:fb:fe:c1:05:6b:8d:55:79:6b:e7:9c:53:74:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20b4873842a904f1a697201393e7ba626842f4af
Validity
Not Before: May 15 19:00:41 2025 GMT
Not After : May 16 19:00:41 2025 GMT
Subject: CN=9fda56ac7a22dd83ca702a26e862f427371f222a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:a3:b1:1e:a6:c9:46:08:d6:b4:76:c9:b9:f5:
cf:81:4d:9a:01:ab:91:72:49:a5:d0:d6:e3:90:70:
47:20:30:af:f4:99:45:cf:f1:48:30:c7:1a:15:39:
ca:50:43:34:62:84:60:65:54:ed:50:96:d7:22:03:
aa:53:98:59:f2:9f:40:2e:5d:72:a4:fa:70:03:e1:
54:9a:63:60:88:4d:94:62:01:fc:64:be:15:82:a3:
07:4c:83:52:80:a5:e4:70:c7:ee:cd:34:ae:ea:3d:
df:a8:61:dd:ad:62:d5:5b:2c:f0:12:75:29:1f:4b:
37:59:ac:bd:bc:90:d1:97:1c:c2:a0:a8:f7:b8:0c:
71:2f:f6:f9:67:10:ef:a0:f1:a4:1c:d1:20:37:cf:
8f:40:d6:88:fb:71:60:5d:17:70:ea:6a:e9:3b:90:
56:45:e2:52:38:95:0c:fa:00:1d:e0:6f:c3:7a:88:
b6:d6:8b:80:ae:53:48:cb:2d:4a:7e:21:ab:fb:6c:
88:1c:0f:7c:fd:fd:a3:d9:8e:be:48:e1:13:1c:65:
45:43:40:4c:4c:7e:89:a4:dd:d2:5e:60:cc:f3:c2:
e8:dc:7b:ae:b3:9f:07:ce:ee:37:61:82:c6:e4:ba:
63:50:2b:6f:18:f8:b6:d7:3d:af:aa:3c:7b:fa:26:
59:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:DA:56:AC:7A:22:DD:83:CA:70:2A:26:E8:62:F4:27:37:1F:22:2A
X509v3 Authority Key Identifier:
keyid:20:B4:87:38:42:A9:04:F1:A6:97:20:13:93:E7:BA:62:68:42:F4:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ILSHOEKpBPGmlyATk-e6YmhC9K8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/8e291a-b655-46e4-bdc3-ef5ba54adb59/1/ILSHOEKpBPGmlyATk-e6YmhC9K8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/8e291a-b655-46e4-bdc3-ef5ba54adb59/1/ILSHOEKpBPGmlyATk-e6YmhC9K8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:eb:e1:6d:0f:66:3f:2f:4c:63:b1:08:d5:1e:0b:5c:78:57:
80:64:7c:d8:e9:b5:f7:05:3c:4c:e3:b0:45:f1:41:0f:24:e0:
39:a8:70:1c:2c:e6:1c:a1:e6:e0:ef:ca:89:f9:20:83:01:d5:
49:15:6f:83:68:bf:5c:eb:f7:6d:f8:01:82:a4:a7:b4:b1:d9:
13:9d:09:a6:1d:ff:1f:a5:c8:d1:fc:2f:63:7e:ba:4e:7d:38:
62:c8:50:27:4b:0c:66:37:fb:b1:29:08:06:3e:a4:60:da:54:
3a:a4:8d:8d:1f:7a:26:5d:10:ec:91:2b:53:80:ff:f3:ab:be:
31:f8:23:12:1c:34:45:f4:c2:fb:f4:36:ca:1d:09:c8:c0:0d:
d7:1f:d8:eb:95:93:1a:3d:8e:01:ce:61:6b:b0:74:c8:37:f0:
6c:1d:bb:41:0c:88:cf:34:d3:79:33:bf:13:4a:6a:eb:43:0f:
73:3c:44:47:33:a5:7a:b8:a4:6c:69:cb:8a:13:a9:a6:87:e1:
94:43:ba:a3:1f:ff:72:60:c5:d1:ae:29:4e:cb:22:49:81:26:
e6:a0:79:43:1b:d6:60:54:68:af:db:df:6f:1e:fb:30:6b:16:
88:ea:fd:e6:a6:70:4a:99:29:82:35:3c:77:57:0f:37:cb:8e:
c2:ea:20:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 22:34:18 2025 by rpki-client