Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft
File: IbgvyO2I-ZyrV9doAxdusnqfC_o.mft (raw, json)
Hash identifier: BLv8tP9Z5IUD4gKV/Pl3pdROCqXCsRpGgsKQj+G+hVk=
Subject key identifier: 67:E3:8C:96:93:87:46:08:6D:47:E3:BA:7F:CA:D1:92:BA:AE:FD:BB
Authority key identifier: 21:B8:2F:C8:ED:88:F9:9C:AB:57:D7:68:03:17:6E:B2:7A:9F:0B:FA
Certificate issuer: /CN=21b82fc8ed88f99cab57d76803176eb27a9f0bfa
Certificate serial: 0198D472FF4F503F6D6D7C27E82CE0F1AE00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IbgvyO2I-ZyrV9doAxdusnqfC_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft
Manifest number: 0DD5
Signing time: Sat 23 Aug 2025 01:02:42 +0000
Manifest this update: Sat 23 Aug 2025 01:02:42 +0000
Manifest next update: Sun 24 Aug 2025 01:02:42 +0000
Files and hashes: 1: IbgvyO2I-ZyrV9doAxdusnqfC_o.crl (hash: dO2zOi/v7lGE/oYaga4aX31JzIPJ2SWgW4pPhwBUv5Y=)
2: ItUhScrgPwKkKUyhqEMMP6UQG5o.roa (hash: gmpeHaOEVGgSYmwc/n6Xey1Y6I6lJR2qqLtWqmrTzmc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft
rsync://rpki.ripe.net/repository/DEFAULT/IbgvyO2I-ZyrV9doAxdusnqfC_o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:ff:4f:50:3f:6d:6d:7c:27:e8:2c:e0:f1:ae:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21b82fc8ed88f99cab57d76803176eb27a9f0bfa
Validity
Not Before: Aug 23 01:02:42 2025 GMT
Not After : Aug 24 01:02:42 2025 GMT
Subject: CN=67e38c96938746086d47e3ba7fcad192baaefdbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:a3:aa:c3:c5:06:b9:b5:fd:a3:a8:fa:ba:d6:
99:ad:d4:62:6b:d1:65:dd:87:1f:10:e9:38:af:af:
cd:b7:9c:fa:3b:51:8c:ca:c3:b8:08:12:28:05:4f:
5b:ec:93:f3:bf:c3:d4:87:26:cf:2d:46:85:9a:88:
07:2f:5e:56:3e:fc:71:76:01:f4:53:36:0d:72:73:
89:8f:de:50:09:e9:d9:c1:de:0c:20:e9:73:55:2a:
75:ec:ad:1e:c8:b4:df:95:99:2f:ff:cb:48:44:01:
52:55:0d:d6:73:04:11:20:8a:e0:c3:37:41:2e:45:
4d:55:03:c1:de:59:a3:15:83:fe:9d:0b:23:2b:1e:
44:a9:d0:17:8d:e8:af:81:5a:3e:c9:44:d4:d6:5d:
61:c6:db:98:ff:56:5f:5a:53:81:05:7d:66:db:9a:
07:63:ba:ca:b1:9a:21:7e:b5:ed:ba:3d:3b:36:8d:
32:5c:0a:29:11:cf:72:12:07:b3:e0:a1:d8:b8:3f:
57:da:3d:7e:d6:d4:52:29:60:21:a1:48:3c:fa:83:
41:b0:11:86:0f:c1:b8:f7:d0:4f:60:59:4b:b3:5d:
58:08:03:1f:f8:33:ce:f4:aa:1f:60:e8:41:36:8a:
76:a1:d3:97:27:21:13:dc:db:07:a5:77:b4:c9:55:
87:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:E3:8C:96:93:87:46:08:6D:47:E3:BA:7F:CA:D1:92:BA:AE:FD:BB
X509v3 Authority Key Identifier:
keyid:21:B8:2F:C8:ED:88:F9:9C:AB:57:D7:68:03:17:6E:B2:7A:9F:0B:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IbgvyO2I-ZyrV9doAxdusnqfC_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:b7:e8:a3:41:04:db:d4:15:4f:23:f9:ef:7c:10:57:a1:82:
40:6b:4c:cd:a9:0a:58:6b:8a:8b:91:f8:bc:20:8d:b5:d3:c7:
71:ea:64:10:f2:d3:60:41:c1:05:f4:e1:bf:03:fe:26:d8:ef:
1a:bb:f8:5f:fb:42:c3:4f:a0:da:83:27:86:d8:32:09:92:e3:
44:ae:7a:b7:72:3c:20:0d:7b:a3:fb:85:9b:22:4c:ce:98:82:
aa:93:c7:2b:35:fd:48:8a:1a:0d:3f:96:6b:29:ab:39:fa:a0:
20:ec:39:67:60:11:d5:42:95:b1:ed:05:9c:33:69:fa:82:94:
ec:20:3a:23:ca:26:f2:a0:b6:56:91:b5:e6:d3:f0:5d:6a:63:
b2:ec:be:8b:85:8f:3a:5d:56:1a:f4:48:50:fb:f7:0e:9e:cf:
83:68:18:ef:df:d4:77:1b:41:c5:91:de:3d:e7:f2:cb:c2:3a:
18:ea:f4:dc:c6:3d:ae:01:08:3a:4e:f6:53:08:ba:65:8a:81:
17:da:48:e9:36:b8:f2:0a:80:55:16:47:80:08:67:d2:f9:ad:
af:a3:36:26:d6:75:9b:dc:30:d3:4c:63:e4:60:e2:2c:69:28:
24:bf:cf:d9:fc:a6:43:bc:78:8e:d8:ab:3e:2f:09:f7:25:fa:
2b:91:f5:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:51:55 2025 by rpki-client