Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
File: iBmVbdzq4CLP4SPaNzxrERZANo0.mft (raw, json)
Hash identifier: H6eFdQMeAzOkE/P91lIpFVYA3Xs4I7OQwf25eFwOC0s=
Subject key identifier: F4:FD:4C:BC:5E:FB:01:48:35:B7:92:40:00:05:27:CF:AC:99:2F:A2
Authority key identifier: 88:19:95:6D:DC:EA:E0:22:CF:E1:23:DA:37:3C:6B:11:16:40:36:8D
Certificate issuer: /CN=8819956ddceae022cfe123da373c6b111640368d
Certificate serial: 0198D583C1B4A0162B633DA666A5E7C94639
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
Manifest number: 125B
Signing time: Sat 23 Aug 2025 06:00:38 +0000
Manifest this update: Sat 23 Aug 2025 06:00:38 +0000
Manifest next update: Sun 24 Aug 2025 06:00:38 +0000
Files and hashes: 1: JZQSwG4wbJPMZQTbI1xSGViuvto.roa (hash: 7nxSYve4K7+DiIBeaX8vSWVp7u4kFJYyJFHRolTK/UI=)
2: iBmVbdzq4CLP4SPaNzxrERZANo0.crl (hash: tAW4l2ftbGS+QtEmgCL6sjUBEfQHuxTgB0LpWUy4QH8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:c1:b4:a0:16:2b:63:3d:a6:66:a5:e7:c9:46:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8819956ddceae022cfe123da373c6b111640368d
Validity
Not Before: Aug 23 06:00:38 2025 GMT
Not After : Aug 24 06:00:38 2025 GMT
Subject: CN=f4fd4cbc5efb014835b79240000527cfac992fa2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:b5:3b:01:cc:8a:4d:47:55:27:3a:17:96:8e:
7f:a9:cb:4c:8d:83:cd:ce:3a:37:2f:cf:d7:f9:e1:
66:68:58:6c:e1:b8:e8:02:23:9f:32:1d:cb:d9:03:
e5:34:11:35:fb:23:41:76:f5:7e:05:d4:00:e9:02:
a0:35:58:85:6d:36:51:fd:79:e6:fa:dd:c7:56:2d:
8f:3e:46:9b:f8:03:fa:a3:6d:3e:28:47:7d:5b:b1:
51:2c:24:ad:bd:f3:61:41:33:23:46:c3:8e:cd:55:
e7:62:79:68:56:8a:35:07:3c:fe:fb:e5:ef:85:3a:
47:6c:b6:e5:07:9f:44:e5:02:bd:5b:61:8c:f4:9c:
ca:e9:38:b9:a1:5e:e0:61:90:70:a0:0c:73:2b:a5:
f5:c5:5f:ff:2e:9d:5f:94:fc:7f:12:db:8b:cf:ea:
b9:1c:57:5b:76:fb:a5:e9:86:13:22:27:ba:9d:5d:
4c:e2:c0:39:da:10:4d:b9:78:b4:b2:64:36:ce:d8:
41:6f:b9:0d:9d:58:66:0e:01:2f:64:9f:fc:b1:41:
f4:2d:56:11:9a:73:66:e1:11:86:01:ad:ba:fa:0b:
1a:f9:7b:64:75:3f:c0:4c:cc:85:43:64:b7:48:a6:
bb:7c:3f:4e:16:41:6d:d8:80:32:d2:4d:43:80:2f:
d4:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:FD:4C:BC:5E:FB:01:48:35:B7:92:40:00:05:27:CF:AC:99:2F:A2
X509v3 Authority Key Identifier:
keyid:88:19:95:6D:DC:EA:E0:22:CF:E1:23:DA:37:3C:6B:11:16:40:36:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:2d:e5:e6:5a:94:e6:65:61:1a:0e:62:87:f7:75:97:e2:9e:
79:af:1b:98:71:eb:95:a0:62:10:71:4c:49:81:91:af:20:e1:
3c:00:87:19:fd:36:19:1d:20:da:90:15:50:ce:46:82:e8:f1:
75:d1:a6:40:40:62:e9:20:fd:50:a3:ee:d6:13:74:d8:34:f4:
a0:1d:c4:83:2b:ef:05:9f:68:46:41:92:99:99:32:20:dd:29:
cf:8f:92:79:b5:a8:cf:8e:8e:c4:46:86:39:46:58:64:0f:bf:
21:c1:2e:ba:de:2c:d1:75:23:4b:50:84:1c:89:30:58:20:03:
d1:ba:42:0c:60:35:14:01:27:65:bf:15:ce:2b:bf:d0:b4:42:
19:25:58:01:1e:d0:cf:65:76:bc:34:56:d9:58:1f:49:b8:3a:
49:68:f5:36:01:c7:cc:b9:75:34:95:55:3c:fe:e7:1b:0f:73:
e6:02:80:06:47:de:6b:05:c8:03:81:92:6a:48:5f:8b:90:a0:
16:ae:77:05:64:a0:a9:ec:97:cc:d0:1a:7a:fc:2f:49:aa:d9:
44:16:c8:52:66:2f:0f:ba:83:33:6c:ab:55:db:3e:ee:32:4a:
59:30:78:1a:3b:57:f8:96:11:98:b7:0f:a8:dd:73:b5:84:19:
69:01:0c:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:39:46 2025 by rpki-client