Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/39adc9-db28-4b1e-bf6e-a08bf2c43460/1/iKslD4208gR6QBWFwmTzjA4ih_4.mft
File: iKslD4208gR6QBWFwmTzjA4ih_4.mft (raw, json)
Hash identifier: r894K5XzRA7mC9UwGXn855CPB/mbkPDJPKMLPiMuTI8=
Subject key identifier: 7C:5C:06:C9:40:1A:14:E2:01:F2:B7:F7:54:C6:FF:03:79:F5:57:5D
Authority key identifier: 88:AB:25:0F:8D:B4:F2:04:7A:40:15:85:C2:64:F3:8C:0E:22:87:FE
Certificate issuer: /CN=88ab250f8db4f2047a401585c264f38c0e2287fe
Certificate serial: 0197B77C9F55B0C9CC49E55BDDBD2CDD9CE0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iKslD4208gR6QBWFwmTzjA4ih_4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/39adc9-db28-4b1e-bf6e-a08bf2c43460/1/iKslD4208gR6QBWFwmTzjA4ih_4.mft
Manifest number: 13E2
Signing time: Sat 28 Jun 2025 17:01:27 +0000
Manifest this update: Sat 28 Jun 2025 17:01:27 +0000
Manifest next update: Sun 29 Jun 2025 17:01:27 +0000
Files and hashes: 1: iKslD4208gR6QBWFwmTzjA4ih_4.crl (hash: Lu2QtFt7mQ3PpDJQxAKSFUZ/6xMaVpewj9oBH8UkiFM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/39adc9-db28-4b1e-bf6e-a08bf2c43460/1/iKslD4208gR6QBWFwmTzjA4ih_4.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/39adc9-db28-4b1e-bf6e-a08bf2c43460/1/iKslD4208gR6QBWFwmTzjA4ih_4.mft
rsync://rpki.ripe.net/repository/DEFAULT/iKslD4208gR6QBWFwmTzjA4ih_4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 17:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:9f:55:b0:c9:cc:49:e5:5b:dd:bd:2c:dd:9c:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88ab250f8db4f2047a401585c264f38c0e2287fe
Validity
Not Before: Jun 28 17:01:27 2025 GMT
Not After : Jun 29 17:01:27 2025 GMT
Subject: CN=7c5c06c9401a14e201f2b7f754c6ff0379f5575d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:da:b4:08:ed:50:cc:d6:db:af:0b:f9:0d:48:
34:ac:31:6e:5a:4b:b9:97:77:97:ec:49:11:c5:3b:
89:bd:33:2f:14:98:70:68:c4:fd:b9:17:ba:88:9a:
17:b0:4f:93:d4:dc:58:8c:c7:c4:f5:e0:01:c0:7f:
35:08:d4:57:8c:c4:f4:3a:68:3c:e1:9f:c8:5b:00:
6b:80:ad:ab:3b:85:37:61:dc:6c:e0:f2:50:8f:9b:
94:fe:83:5a:93:cd:50:5b:bd:8e:fa:df:ae:7b:c7:
61:57:65:98:8c:c2:c1:1a:4f:e9:f8:d7:cc:d8:31:
fb:93:fe:a8:37:09:e2:6d:a8:9f:25:0a:30:d0:97:
8d:c3:63:04:5c:8c:78:a3:8f:97:56:e2:f7:1e:ba:
1f:d7:b3:f4:24:fc:54:d0:c5:3e:0d:28:a8:5a:59:
e7:ee:04:b4:6a:2f:53:16:6f:7d:f7:cd:5f:2b:8a:
9c:a3:35:f2:fb:67:58:28:21:b2:4f:74:9b:a0:73:
72:27:7a:45:59:9e:6c:1d:4f:5a:81:30:66:a0:08:
61:13:ce:e1:55:10:ae:30:a5:b3:1b:6f:85:d5:00:
89:32:07:c7:8e:14:60:f5:54:d5:d3:90:68:20:62:
a8:c5:20:29:c5:08:42:69:6b:d5:17:79:fd:3f:61:
81:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:5C:06:C9:40:1A:14:E2:01:F2:B7:F7:54:C6:FF:03:79:F5:57:5D
X509v3 Authority Key Identifier:
keyid:88:AB:25:0F:8D:B4:F2:04:7A:40:15:85:C2:64:F3:8C:0E:22:87:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKslD4208gR6QBWFwmTzjA4ih_4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/39adc9-db28-4b1e-bf6e-a08bf2c43460/1/iKslD4208gR6QBWFwmTzjA4ih_4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/39adc9-db28-4b1e-bf6e-a08bf2c43460/1/iKslD4208gR6QBWFwmTzjA4ih_4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:84:f3:03:d2:30:0a:cc:2c:6c:75:bc:aa:2e:bf:1a:93:cf:
bd:70:2d:b6:09:69:7f:20:b6:3c:39:89:fa:0c:34:24:1e:8b:
79:a1:03:86:6f:87:50:0c:f0:19:f9:f4:1c:64:f0:aa:79:d9:
d9:fb:83:4c:b7:05:33:84:b0:00:4a:50:29:56:68:94:28:3e:
d6:2a:a5:a1:4d:02:88:8f:25:50:f4:fe:66:bf:54:5e:df:c7:
7d:e8:27:39:76:a9:0f:23:33:0c:61:04:9b:3b:cd:2f:d4:51:
aa:6f:46:a1:52:a1:77:09:b3:85:b3:0f:99:22:51:73:5e:96:
31:52:8c:d5:63:f9:f7:5d:43:e3:94:00:b7:21:49:29:4f:fc:
e9:68:a2:e6:a8:d9:5c:17:05:6f:0e:b6:52:16:91:f1:64:55:
86:ab:38:b2:34:e6:97:b1:76:2c:6e:ed:97:30:21:ef:ff:84:
b6:20:11:1d:9a:af:11:92:2c:fd:d7:b5:e4:c8:16:94:3d:ed:
56:ba:a2:05:c4:38:77:fb:5e:bf:c9:0f:b5:27:6a:8b:dd:f3:
1a:94:bc:c5:f9:6c:4d:31:86:47:0d:fa:4b:f1:27:c2:8f:00:
f3:09:08:2e:49:d8:db:47:dc:72:cf:39:aa:02:d7:2e:df:94:
bc:94:4a:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 01:23:12 2025 by rpki-client