Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/39adc9-db28-4b1e-bf6e-a08bf2c43460/1/iKslD4208gR6QBWFwmTzjA4ih_4.mft
File: iKslD4208gR6QBWFwmTzjA4ih_4.mft (raw, json)
Hash identifier: DPPCl0Y/nchcMVgwVkEG9Rbd7jPfkZabNDnrjxWZomA=
Subject key identifier: 03:9F:70:71:AC:84:7B:11:AA:FA:6E:C6:8A:22:D9:25:CE:4E:72:90
Authority key identifier: 88:AB:25:0F:8D:B4:F2:04:7A:40:15:85:C2:64:F3:8C:0E:22:87:FE
Certificate issuer: /CN=88ab250f8db4f2047a401585c264f38c0e2287fe
Certificate serial: 01969F766AC147796C95D381D9926E80F438
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iKslD4208gR6QBWFwmTzjA4ih_4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/39adc9-db28-4b1e-bf6e-a08bf2c43460/1/iKslD4208gR6QBWFwmTzjA4ih_4.mft
Manifest number: 1351
Signing time: Mon 05 May 2025 08:01:00 +0000
Manifest this update: Mon 05 May 2025 08:01:00 +0000
Manifest next update: Tue 06 May 2025 08:01:00 +0000
Files and hashes: 1: iKslD4208gR6QBWFwmTzjA4ih_4.crl (hash: GnpV08oTaz2AC2qaOHra++Lk+4zVOteIXrJhsru0N1I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/39adc9-db28-4b1e-bf6e-a08bf2c43460/1/iKslD4208gR6QBWFwmTzjA4ih_4.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/39adc9-db28-4b1e-bf6e-a08bf2c43460/1/iKslD4208gR6QBWFwmTzjA4ih_4.mft
rsync://rpki.ripe.net/repository/DEFAULT/iKslD4208gR6QBWFwmTzjA4ih_4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 08:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9f:76:6a:c1:47:79:6c:95:d3:81:d9:92:6e:80:f4:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88ab250f8db4f2047a401585c264f38c0e2287fe
Validity
Not Before: May 5 08:01:00 2025 GMT
Not After : May 6 08:01:00 2025 GMT
Subject: CN=039f7071ac847b11aafa6ec68a22d925ce4e7290
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:83:99:cc:93:fe:b0:a8:8a:66:78:38:75:20:
74:af:6d:6b:60:77:03:6e:4b:9c:84:fa:65:44:f1:
4f:a2:62:0b:07:d3:52:82:50:8e:1d:5d:4c:e2:4c:
6c:9d:3d:82:0f:f0:57:96:a3:8d:46:84:e7:e0:d2:
1a:2f:3e:df:d0:9b:69:d8:61:db:19:3a:82:23:b9:
1b:94:e3:3c:ab:4e:1c:8d:ff:11:6b:c1:e7:cf:2a:
d9:fd:66:24:31:67:4c:64:8d:56:8b:cb:60:cd:13:
6f:da:0f:58:79:c3:c5:de:6a:1b:9c:08:2d:a1:de:
d4:7c:8e:f0:1a:40:b1:c9:bf:82:9a:18:1a:0c:3d:
a8:03:3a:a6:84:0b:ab:23:96:0e:b2:a4:bf:6e:1d:
35:59:87:49:0c:01:48:bb:c2:1d:68:36:ae:08:76:
5e:ea:9c:4b:d3:f4:08:cf:48:c0:e2:9f:26:93:11:
21:cc:47:db:51:96:22:93:dc:a9:3e:5c:f2:c5:37:
23:0f:af:24:1b:23:07:f3:fe:97:6a:38:6d:cd:a0:
d2:a3:af:6c:c9:50:03:7e:cb:e5:f7:16:20:52:b6:
9c:39:17:9d:90:ac:69:5b:d0:8d:d9:57:91:77:24:
67:46:02:13:d4:a9:e7:f9:eb:d0:c7:e7:8c:0b:91:
ff:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:9F:70:71:AC:84:7B:11:AA:FA:6E:C6:8A:22:D9:25:CE:4E:72:90
X509v3 Authority Key Identifier:
keyid:88:AB:25:0F:8D:B4:F2:04:7A:40:15:85:C2:64:F3:8C:0E:22:87:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKslD4208gR6QBWFwmTzjA4ih_4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/39adc9-db28-4b1e-bf6e-a08bf2c43460/1/iKslD4208gR6QBWFwmTzjA4ih_4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/39adc9-db28-4b1e-bf6e-a08bf2c43460/1/iKslD4208gR6QBWFwmTzjA4ih_4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:30:04:1f:58:22:7d:91:e6:e2:12:f3:b4:ee:9d:ed:b1:f6:
94:6d:55:48:59:2c:16:8c:f3:6d:e4:da:73:af:8e:94:3f:e2:
70:57:e4:a7:8c:e8:c2:ad:4a:3a:51:58:65:7e:d1:71:1e:02:
4e:82:68:41:ab:57:57:cd:b9:82:61:6b:7e:ec:cc:e8:7c:44:
2a:2b:70:ec:df:b6:e2:4d:52:12:be:52:b4:2d:ba:af:b8:f8:
10:aa:ff:3a:0c:38:97:76:da:dc:b8:c1:65:e2:8b:a0:d1:d2:
0b:07:21:94:89:02:0e:ee:34:3b:06:d7:e0:0a:1c:02:30:b2:
d8:b1:10:6b:db:26:33:12:fd:21:08:3d:3e:01:19:1b:4e:3d:
32:b4:5d:d8:3a:1a:2a:aa:03:b9:b5:44:1b:1d:e8:bf:48:2a:
76:d5:a3:f3:07:51:a8:f7:e7:47:8e:20:1f:5d:fb:0a:48:bd:
0c:80:7c:0d:6a:70:ce:c5:51:e2:56:7c:56:d9:91:48:ba:ce:
5d:65:55:3d:9d:10:8c:05:42:81:fc:44:7e:85:8c:c6:86:62:
92:78:4c:c3:47:f7:2f:77:08:d2:05:34:41:76:e1:ff:b3:99:
e3:c6:a6:b1:ab:bb:73:96:7b:5c:61:94:d2:3b:1e:4f:5e:0b:
9a:78:8c:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 14:32:44 2025 by rpki-client