Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
File: iBmVbdzq4CLP4SPaNzxrERZANo0.mft (raw, json)
Hash identifier: EgzgkT5Wtsx0uKBzl7qRu5LJEsvZukaMR2WqO4zM8xE=
Subject key identifier: 2A:93:27:37:3D:A6:CC:14:FC:CB:59:AF:F6:20:5C:48:4A:95:18:46
Authority key identifier: 88:19:95:6D:DC:EA:E0:22:CF:E1:23:DA:37:3C:6B:11:16:40:36:8D
Certificate issuer: /CN=8819956ddceae022cfe123da373c6b111640368d
Certificate serial: 0196C83B15767562770314B101F66CD04906
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
Manifest number: 114B
Signing time: Tue 13 May 2025 06:00:37 +0000
Manifest this update: Tue 13 May 2025 06:00:37 +0000
Manifest next update: Wed 14 May 2025 06:00:37 +0000
Files and hashes: 1: JZQSwG4wbJPMZQTbI1xSGViuvto.roa (hash: 7nxSYve4K7+DiIBeaX8vSWVp7u4kFJYyJFHRolTK/UI=)
2: iBmVbdzq4CLP4SPaNzxrERZANo0.crl (hash: zPSMe4UjJD87rd2awE16vytyYQ2N5r2A4TxIqUV2Zyo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c8:3b:15:76:75:62:77:03:14:b1:01:f6:6c:d0:49:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8819956ddceae022cfe123da373c6b111640368d
Validity
Not Before: May 13 06:00:37 2025 GMT
Not After : May 14 06:00:37 2025 GMT
Subject: CN=2a9327373da6cc14fccb59aff6205c484a951846
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:07:68:6e:99:2d:fa:76:45:d2:27:03:81:db:
99:0a:9d:97:8b:06:d1:af:90:19:21:24:ef:19:cf:
6b:f9:03:09:e2:48:c6:c5:8b:7e:ea:d2:cc:25:eb:
aa:c7:3a:8e:79:dc:db:3d:63:fd:05:5c:fc:64:41:
97:e9:49:67:50:50:46:f3:b8:c1:e6:c9:62:43:02:
69:97:38:46:49:3d:53:e1:63:23:67:3f:86:bf:15:
4a:13:fb:a7:a7:eb:4c:76:ea:f0:a1:52:10:f0:c0:
71:13:f4:80:d8:02:6f:6c:79:a4:ff:e5:45:a8:4f:
88:a4:dd:ce:ff:c1:37:37:85:78:d8:53:bf:49:27:
cc:aa:4f:34:71:5c:01:af:a8:b7:0d:56:0f:ca:0d:
cf:f1:28:10:05:33:b9:52:bf:77:1c:8d:17:58:6d:
15:8d:2a:27:6d:cd:38:2b:39:8c:cd:6c:7d:7f:f3:
a4:b0:f8:7f:15:40:47:53:f9:21:c5:93:c7:c7:a5:
44:cf:92:30:32:50:8b:42:67:32:d5:9d:e3:17:93:
9a:80:9d:ec:1a:4c:cc:be:06:06:ac:bb:fd:8b:38:
12:ad:7b:1f:58:6d:55:48:2f:9f:59:84:e9:38:c0:
21:80:44:b7:60:5e:0d:2d:9a:ed:2b:01:36:de:3d:
8a:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:93:27:37:3D:A6:CC:14:FC:CB:59:AF:F6:20:5C:48:4A:95:18:46
X509v3 Authority Key Identifier:
keyid:88:19:95:6D:DC:EA:E0:22:CF:E1:23:DA:37:3C:6B:11:16:40:36:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:db:6c:69:7f:b6:38:4e:0b:87:29:63:b5:43:c5:f3:a6:12:
7a:fb:87:4e:5a:66:5d:21:59:de:dd:2b:11:67:6b:d9:b0:61:
8d:64:74:d1:75:ce:f6:df:0d:84:e5:6a:c7:2f:14:f6:46:b9:
c3:c3:33:94:34:53:a4:ea:e5:79:85:46:38:53:17:8b:ee:10:
a2:ae:a8:72:95:10:b8:7c:ee:5c:34:e4:c2:d4:64:6d:c2:cb:
e5:21:8b:12:fe:2e:9f:84:34:4c:bf:c6:61:8f:83:c1:92:b2:
86:ea:20:30:06:b4:06:dc:3b:28:6b:c3:91:19:5f:8c:a6:b2:
db:2d:7b:09:3e:f4:d3:93:a8:b2:f1:c4:da:31:d0:eb:b7:61:
80:bf:20:15:4f:62:90:b5:43:18:8a:12:ed:b1:d0:70:8d:0b:
d7:cb:80:6f:2c:40:23:d0:1d:35:d1:f3:4e:97:98:5c:9c:ed:
18:89:ae:cc:5b:91:50:98:01:aa:f7:ab:bd:1a:2f:b7:cd:3d:
32:f7:e9:3c:3b:b1:fa:aa:94:59:62:35:3b:77:ec:a3:18:05:
be:69:49:96:f3:17:17:f8:70:4d:f8:44:20:3e:0a:ef:d9:a9:
ef:71:cb:96:1c:da:06:58:11:8e:aa:7e:b4:41:e3:82:ce:65:
de:03:a1:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 09:12:05 2025 by rpki-client