Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
File: iBKgqAncPNH72JUaj4D2mSXhGQg.mft (raw, json)
Hash identifier: MnYySS0Cf0M7Yyc4BUUd7vpn+KXVHPR42I4u+dCX9Qg=
Subject key identifier: AF:26:C6:59:31:A4:CD:89:EC:69:B0:38:FA:D7:09:83:3D:07:49:1F
Authority key identifier: 88:12:A0:A8:09:DC:3C:D1:FB:D8:95:1A:8F:80:F6:99:25:E1:19:08
Certificate issuer: /CN=8812a0a809dc3cd1fbd8951a8f80f69925e11908
Certificate serial: 0197B820EC63BB3C1A74051BE1A2A0BDB02C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBKgqAncPNH72JUaj4D2mSXhGQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
Manifest number: 109A
Signing time: Sat 28 Jun 2025 20:00:54 +0000
Manifest this update: Sat 28 Jun 2025 20:00:54 +0000
Manifest next update: Sun 29 Jun 2025 20:00:54 +0000
Files and hashes: 1: gc6g1C2J1IjiC6a4YzgHVoMBVvE.roa (hash: l0wZmz1eeJH0pgzgb/M7lMO1lTKuzQbmbwUCcga2Ghs=)
2: iBKgqAncPNH72JUaj4D2mSXhGQg.crl (hash: 6dPNp+E1LajN30nLeyX0iRjhkurt6yj3TEQLST5q7wg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
rsync://rpki.ripe.net/repository/DEFAULT/iBKgqAncPNH72JUaj4D2mSXhGQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:20:ec:63:bb:3c:1a:74:05:1b:e1:a2:a0:bd:b0:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8812a0a809dc3cd1fbd8951a8f80f69925e11908
Validity
Not Before: Jun 28 20:00:54 2025 GMT
Not After : Jun 29 20:00:54 2025 GMT
Subject: CN=af26c65931a4cd89ec69b038fad709833d07491f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:9e:3b:81:68:1d:55:09:5a:6c:a9:92:12:16:
67:37:98:70:b0:6b:9d:09:2f:2d:b9:52:20:f5:a3:
91:53:c9:bd:f3:24:72:35:93:30:a3:e2:62:7d:e6:
ef:b4:71:5a:e5:eb:33:b6:de:7a:60:b4:e6:21:a6:
78:19:d3:3f:23:8a:c4:97:ed:e1:19:a1:f8:c2:ed:
54:a1:d3:40:cf:6d:c0:99:51:e9:2a:35:14:6a:f4:
c6:06:84:b5:95:ae:27:1c:52:d8:e7:6d:2d:d2:12:
77:3f:b4:a8:f3:b1:4a:53:20:06:f4:1a:11:77:6d:
bc:f5:df:59:55:00:3b:a6:a7:13:9f:a6:22:ab:3e:
ea:aa:26:20:34:9e:60:d2:45:61:47:8f:48:91:7b:
e4:18:11:5b:4a:82:1e:2f:48:a9:f4:15:ef:db:65:
86:6d:78:b9:2a:ab:25:92:c6:22:26:9b:80:21:c2:
ce:ad:94:e3:56:65:72:af:f9:2f:2a:2c:0a:a8:d1:
4b:37:5d:91:e6:37:cc:e3:db:e4:fd:a1:b6:8a:b1:
8e:08:d6:ba:e1:3e:40:40:09:f4:ab:57:67:bb:8f:
3d:ea:50:53:dc:d2:ca:10:9a:bf:07:18:31:6b:39:
5f:47:10:bb:a2:0f:44:2e:a4:7d:b1:95:a5:73:04:
15:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:26:C6:59:31:A4:CD:89:EC:69:B0:38:FA:D7:09:83:3D:07:49:1F
X509v3 Authority Key Identifier:
keyid:88:12:A0:A8:09:DC:3C:D1:FB:D8:95:1A:8F:80:F6:99:25:E1:19:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBKgqAncPNH72JUaj4D2mSXhGQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:77:6b:2a:67:82:36:a1:21:23:f5:d6:52:77:ea:4a:cc:57:
2b:06:a5:44:11:89:96:9d:35:12:6f:41:e6:a8:bd:9a:75:15:
ca:06:26:0b:ce:2c:0b:39:81:12:37:eb:62:83:d1:58:11:46:
78:34:04:8d:ea:e3:72:83:7a:7a:19:bd:96:67:9f:c9:07:c1:
a4:2b:69:62:62:64:76:2d:86:fa:e0:bf:52:ca:42:ef:10:86:
b4:bd:c9:51:81:31:14:e4:9a:74:49:47:26:e9:77:bd:c1:6e:
74:f9:0d:e4:7e:1d:61:7d:45:0b:a9:3f:01:ee:95:1a:25:54:
96:08:6e:e2:5a:24:ab:18:23:56:ef:f0:be:76:cb:71:35:7e:
c1:2d:66:77:75:f8:bb:a3:87:5d:7f:5e:4a:15:5a:c5:5e:b4:
f8:b2:a2:73:d5:75:e9:e0:38:96:d3:17:96:75:63:b1:c3:b3:
34:2b:39:c0:f4:f0:e1:85:0c:64:31:59:c8:24:dc:e8:0c:34:
1e:c0:ed:1d:b4:01:0b:d8:18:d6:94:f5:a4:a7:aa:93:10:13:
1c:e4:91:48:12:4f:38:50:a3:a8:b8:95:0c:f3:23:6a:70:82:
df:94:97:02:13:39:56:ae:a8:af:8c:b3:95:de:f5:bb:e9:0e:
0e:aa:28:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:46:44 2025 by rpki-client