Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.mft
File: iaBBZwABZgo3ILd9dk2DaFIZATg.mft (raw, json)
Hash identifier: 5ForBOE3JWGarvEHWP6MBYjOOF+5WJBn+ns3CUP+RYU=
Subject key identifier: EA:27:CA:60:6B:15:0D:87:30:3C:8F:70:8F:23:60:44:BC:97:2B:C5
Authority key identifier: 89:A0:41:67:00:01:66:0A:37:20:B7:7D:76:4D:83:68:52:19:01:38
Certificate issuer: /CN=89a041670001660a3720b77d764d836852190138
Certificate serial: 0199500B46F8A1D4BB7D3228E0D176119DC5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iaBBZwABZgo3ILd9dk2DaFIZATg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.mft
Manifest number: 048E
Signing time: Tue 16 Sep 2025 01:02:20 +0000
Manifest this update: Tue 16 Sep 2025 01:02:20 +0000
Manifest next update: Wed 17 Sep 2025 01:02:20 +0000
Files and hashes: 1: ZFhZ1BqFreky-hMCFILR09_VVoM.roa (hash: qamEtLvOwpZ40vLyeg6d8oLlWWQ1GcUWvt7i4vqtvFc=)
2: iaBBZwABZgo3ILd9dk2DaFIZATg.crl (hash: 3xASADZb6o6TeQVn3vIfs9FCtLZlrjZ0UIZ4FhawRkw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.mft
rsync://rpki.ripe.net/repository/DEFAULT/iaBBZwABZgo3ILd9dk2DaFIZATg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 16 Sep 2025 22:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:50:0b:46:f8:a1:d4:bb:7d:32:28:e0:d1:76:11:9d:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89a041670001660a3720b77d764d836852190138
Validity
Not Before: Sep 16 01:02:20 2025 GMT
Not After : Sep 17 01:02:20 2025 GMT
Subject: CN=ea27ca606b150d87303c8f708f236044bc972bc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:7d:2c:93:35:05:32:e5:38:1a:67:f9:85:13:
81:f3:32:e4:3b:ea:de:08:d0:42:e0:f5:37:be:af:
7d:0f:42:c3:0b:e8:c6:cf:f0:5f:9c:bb:1a:45:30:
dc:98:90:f6:0f:32:76:17:c4:f1:2e:00:52:8f:d5:
08:54:4a:09:e3:f0:33:a0:e2:e6:de:3e:e2:51:8d:
e0:1a:cd:1f:d8:96:e3:70:7a:3e:68:e9:82:82:5b:
d6:e4:20:f6:9a:f3:d1:de:01:4a:ed:31:26:05:a5:
ae:9a:08:23:15:58:35:c2:d4:4e:fd:f2:a4:33:30:
23:b7:81:a9:47:3b:a4:ff:bf:3d:38:c5:ee:c3:84:
d4:8a:7c:6e:da:f7:eb:c0:8e:10:e3:94:00:6a:96:
bf:96:db:1c:74:20:22:63:a2:2e:11:4a:48:9a:51:
b9:96:b3:2e:2b:7c:50:ae:8c:0e:12:b9:77:d4:60:
4d:4e:4b:25:70:d2:74:b2:b6:68:f1:c1:d6:90:52:
ca:3d:44:6a:ec:99:fb:f0:5c:81:db:02:41:9c:a2:
2e:21:b6:7f:d0:2c:0e:75:e7:73:c6:15:d6:4d:1d:
8f:8a:db:10:4e:c4:ff:bf:10:03:d1:20:bf:c7:db:
0a:6e:26:33:89:eb:eb:9f:49:39:f1:92:b8:9a:0e:
9a:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:27:CA:60:6B:15:0D:87:30:3C:8F:70:8F:23:60:44:BC:97:2B:C5
X509v3 Authority Key Identifier:
keyid:89:A0:41:67:00:01:66:0A:37:20:B7:7D:76:4D:83:68:52:19:01:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iaBBZwABZgo3ILd9dk2DaFIZATg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:10:6f:11:9d:05:17:61:85:a7:df:fd:f3:72:0b:e0:d9:5e:
5b:73:86:a8:71:c2:3b:3f:ca:97:04:a0:e0:67:de:58:6b:6c:
fa:28:9d:98:ce:b2:15:ba:e1:37:f4:31:44:8a:5d:90:a1:77:
d1:6a:b4:e9:e2:7a:d4:a9:db:9c:42:99:dc:8b:0d:fe:dc:bf:
9c:3d:a8:db:bb:e0:06:a6:e5:fb:8b:43:3f:22:50:14:7e:af:
27:0a:90:d9:19:25:19:ed:48:6b:e7:3c:9d:2f:02:80:ec:be:
39:aa:19:0e:11:d4:7d:00:dd:e8:f4:2f:33:3a:99:b6:63:c3:
d7:9a:69:27:42:10:76:4a:53:b3:3b:74:24:f9:71:f6:09:cb:
10:fd:18:fb:59:66:94:29:0d:a5:a5:da:8a:de:67:55:f5:c2:
b3:b6:30:f0:48:10:cf:67:e7:d8:6f:a0:5a:cd:1f:b4:ce:c2:
ad:3a:7f:b1:ff:2e:bc:c7:00:cb:46:b2:d3:43:f6:30:71:d7:
48:b7:76:f5:60:34:d9:a0:8d:b9:ba:5b:6b:df:6d:1c:a1:83:
28:63:82:af:0c:4b:81:6e:14:b7:5a:df:a0:83:0b:ca:e9:1f:
02:60:c9:df:84:3f:ef:56:1f:c3:e3:2f:74:44:77:dd:08:49:
9e:22:79:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 16 07:17:58 2025 by rpki-client