Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.mft
File: iaBBZwABZgo3ILd9dk2DaFIZATg.mft (raw, json)
Hash identifier: vOZSYPYjW70XBq3y/K3zOaAxgQ/xZQue9kUUm9EwEzM=
Subject key identifier: A6:3C:55:8E:AD:16:BC:6C:68:CF:4B:CB:8C:87:B0:BD:7D:EC:0C:2F
Authority key identifier: 89:A0:41:67:00:01:66:0A:37:20:B7:7D:76:4D:83:68:52:19:01:38
Certificate issuer: /CN=89a041670001660a3720b77d764d836852190138
Certificate serial: 0197B6A0507BA3F7C2593C8C2C394CB1F046
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iaBBZwABZgo3ILd9dk2DaFIZATg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.mft
Manifest number: 03BA
Signing time: Sat 28 Jun 2025 13:00:49 +0000
Manifest this update: Sat 28 Jun 2025 13:00:49 +0000
Manifest next update: Sun 29 Jun 2025 13:00:49 +0000
Files and hashes: 1: ZFhZ1BqFreky-hMCFILR09_VVoM.roa (hash: qamEtLvOwpZ40vLyeg6d8oLlWWQ1GcUWvt7i4vqtvFc=)
2: iaBBZwABZgo3ILd9dk2DaFIZATg.crl (hash: Etxf5f6E38NevZKkLFYJY9ZbpNSmuUxWxgwtJgH0x20=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.mft
rsync://rpki.ripe.net/repository/DEFAULT/iaBBZwABZgo3ILd9dk2DaFIZATg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:50:7b:a3:f7:c2:59:3c:8c:2c:39:4c:b1:f0:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89a041670001660a3720b77d764d836852190138
Validity
Not Before: Jun 28 13:00:49 2025 GMT
Not After : Jun 29 13:00:49 2025 GMT
Subject: CN=a63c558ead16bc6c68cf4bcb8c87b0bd7dec0c2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:58:0e:e5:07:dc:f0:1d:87:90:e9:9f:d7:97:
54:f8:76:f5:b1:0a:33:e8:51:b3:86:59:af:50:c9:
4d:fc:45:a1:5e:83:f9:85:d3:93:e4:d3:fe:7c:a0:
4e:2f:94:ef:d7:89:2f:e4:db:d4:30:7c:b9:9c:20:
d8:39:92:75:ec:a1:ce:81:74:e7:df:b4:e9:0d:c7:
b6:f1:e2:50:d4:fd:fe:98:be:7c:47:27:ec:0c:46:
ae:3b:7f:ea:0d:93:32:81:68:f9:82:8f:3a:7e:49:
27:53:ee:d8:71:34:bf:f1:80:1e:fc:86:43:0c:26:
bf:69:4f:fb:7e:eb:e8:5b:fa:4a:77:45:ab:01:6c:
53:f7:d9:40:f9:89:55:f0:84:aa:53:a2:10:d3:b0:
7e:60:8d:42:c9:68:55:19:e4:03:d3:fc:ad:ed:d8:
65:cb:61:36:fc:83:34:94:97:50:60:2c:c6:ac:e6:
8f:57:73:87:88:0d:97:24:fd:9a:93:9e:d9:db:16:
76:1b:f9:92:2f:12:8b:13:03:15:ce:3b:b0:3c:39:
0c:21:6c:89:86:17:d9:25:b2:52:3d:4a:79:e1:8b:
85:0a:0d:a7:f2:f4:ef:a8:ab:a8:00:a3:72:90:36:
c2:da:40:59:42:ac:22:d2:89:19:cb:c1:67:f0:9c:
74:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:3C:55:8E:AD:16:BC:6C:68:CF:4B:CB:8C:87:B0:BD:7D:EC:0C:2F
X509v3 Authority Key Identifier:
keyid:89:A0:41:67:00:01:66:0A:37:20:B7:7D:76:4D:83:68:52:19:01:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iaBBZwABZgo3ILd9dk2DaFIZATg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:40:24:36:26:96:97:6f:4c:bf:a7:ff:e2:b7:ac:51:9c:cf:
99:cd:49:aa:d3:23:83:ed:df:37:4b:06:1f:97:cf:10:81:3c:
61:2d:5e:c5:73:b3:cd:e8:6c:aa:af:75:db:5d:57:52:16:9d:
ef:d1:d6:8d:e3:59:cb:cb:f9:80:d8:9e:26:76:d0:e9:7e:f9:
52:bb:36:04:e0:f0:36:f0:35:2b:63:ff:4c:5a:8e:43:46:79:
40:1d:6e:37:4c:85:ee:1e:35:9a:e8:c3:c5:b9:fa:4a:31:c5:
6d:2f:e6:b6:81:9a:2c:3b:7a:d0:90:a4:e6:87:13:6c:1c:d8:
fd:42:7d:45:6c:91:a6:96:f8:5e:df:76:3d:0b:69:80:2b:84:
70:fc:0d:50:57:a2:dd:bd:d7:37:d1:f5:47:71:53:33:3d:b3:
ff:36:0a:56:5c:0a:66:d5:4b:34:c9:ac:7d:ec:3f:b1:65:d7:
a7:7a:72:ba:1c:bb:8b:c4:1f:08:21:2b:69:73:2f:60:a4:55:
d2:bf:c4:ea:02:d8:e7:ac:d6:4a:0f:85:0c:f4:10:87:d6:48:
4a:4d:71:1e:a4:89:29:68:26:17:e5:70:66:58:94:08:84:dc:
77:18:d1:87:37:9b:64:5f:99:5e:93:e4:32:82:b8:9a:e7:cc:
f2:2a:3c:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:35:29 2025 by rpki-client