Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
File: iBKgqAncPNH72JUaj4D2mSXhGQg.mft (raw, json)
Hash identifier: hZQhMrJyTdgthFEXB8tIDQLVCNbZVNGXQKMTujWjiEI=
Subject key identifier: BC:32:86:EB:69:A3:FB:00:78:EC:92:D7:82:B0:DD:4A:E6:96:3A:F0
Authority key identifier: 88:12:A0:A8:09:DC:3C:D1:FB:D8:95:1A:8F:80:F6:99:25:E1:19:08
Certificate issuer: /CN=8812a0a809dc3cd1fbd8951a8f80f69925e11908
Certificate serial: 0198D5F178EE07F663AE7DD6B92B7D1CBE6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBKgqAncPNH72JUaj4D2mSXhGQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
Manifest number: 112E
Signing time: Sat 23 Aug 2025 08:00:28 +0000
Manifest this update: Sat 23 Aug 2025 08:00:28 +0000
Manifest next update: Sun 24 Aug 2025 08:00:28 +0000
Files and hashes: 1: gc6g1C2J1IjiC6a4YzgHVoMBVvE.roa (hash: l0wZmz1eeJH0pgzgb/M7lMO1lTKuzQbmbwUCcga2Ghs=)
2: iBKgqAncPNH72JUaj4D2mSXhGQg.crl (hash: VymnwfGjQAA1HXcgw4dlWxsmpAv3ORYxKpz0IdGcaJM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
rsync://rpki.ripe.net/repository/DEFAULT/iBKgqAncPNH72JUaj4D2mSXhGQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:78:ee:07:f6:63:ae:7d:d6:b9:2b:7d:1c:be:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8812a0a809dc3cd1fbd8951a8f80f69925e11908
Validity
Not Before: Aug 23 08:00:28 2025 GMT
Not After : Aug 24 08:00:28 2025 GMT
Subject: CN=bc3286eb69a3fb0078ec92d782b0dd4ae6963af0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:ed:0d:96:90:c9:28:c0:65:c7:c7:41:5a:d1:
af:e4:3f:63:73:72:63:75:93:f7:2f:f5:1b:92:d6:
3a:63:85:71:8b:e0:7d:d8:01:f6:dc:2e:c5:76:69:
53:a5:08:13:26:63:8b:d6:5a:51:69:5d:84:4d:77:
d4:ea:64:6b:59:37:0e:27:2e:bb:c4:d4:60:fa:bf:
e0:5c:ef:ff:3d:46:bd:a3:d2:b2:0c:16:c6:86:db:
83:b0:33:ab:e8:6e:bb:7a:6e:cb:f3:3b:ca:9b:15:
ab:a1:3a:3f:36:45:ac:c1:b9:50:96:cf:e3:23:c7:
de:76:35:b8:45:f0:00:b0:4b:cb:40:33:95:2e:6a:
bf:0c:62:a6:70:52:d6:bb:16:ad:25:c9:2d:c9:0f:
2d:d4:d8:d0:2f:ca:c3:a2:25:f7:9e:24:a3:7d:28:
f0:e7:d7:e4:84:e6:1d:89:a0:4c:06:52:9b:4a:bc:
b6:57:b2:0c:91:07:e0:7b:6c:68:d4:b3:79:fb:70:
85:a8:ef:a8:83:1f:df:59:7f:b1:4c:ae:1a:67:12:
ce:02:c3:16:db:c8:e5:1a:07:34:b6:1e:9d:0a:4a:
39:a3:f2:52:86:c4:71:56:81:14:67:1f:dd:e1:77:
48:c1:02:d2:b7:80:8a:ab:65:17:74:35:04:b5:b8:
e7:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:32:86:EB:69:A3:FB:00:78:EC:92:D7:82:B0:DD:4A:E6:96:3A:F0
X509v3 Authority Key Identifier:
keyid:88:12:A0:A8:09:DC:3C:D1:FB:D8:95:1A:8F:80:F6:99:25:E1:19:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBKgqAncPNH72JUaj4D2mSXhGQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:6e:f1:76:d5:bb:ad:53:0f:16:1f:2e:67:c9:d1:67:14:84:
2a:7d:47:70:68:67:e0:ae:02:5d:40:21:de:17:d3:4d:0a:14:
06:8f:8b:0a:8a:92:9a:02:8a:de:e5:6c:56:29:50:09:40:75:
04:a1:d2:56:db:77:70:f1:1d:15:d9:b9:cd:2e:94:d9:17:bc:
38:ed:cd:70:ff:b4:06:7d:54:9b:d4:e7:1c:66:a8:cd:3c:99:
52:c0:16:a8:7a:60:64:de:0e:a9:c6:27:cd:7c:51:00:a1:fd:
14:ea:2e:92:90:8d:a7:5b:23:d3:d2:ad:b1:46:82:28:71:62:
91:e6:df:43:32:84:b5:4a:8b:70:1e:b6:30:a0:0d:db:ff:9e:
cc:6c:43:d3:2d:fd:ee:ab:8f:c8:16:a5:b0:9c:77:27:23:b5:
68:76:0e:3e:4c:f9:38:f3:45:fe:27:e9:24:6d:2c:e6:d1:97:
40:5b:f6:b3:17:2b:38:56:d9:74:11:55:cd:91:aa:52:09:8e:
55:63:79:fb:b7:f8:73:a9:5a:14:0f:19:44:93:48:af:1e:f1:
db:53:b4:e7:fe:88:60:02:bf:0d:22:65:70:11:32:a8:d4:0d:
7a:01:a9:16:f5:15:92:82:13:74:2f:51:34:2b:83:03:fb:b8:
a3:12:f9:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:35:10 2025 by rpki-client