
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
File: iBmVbdzq4CLP4SPaNzxrERZANo0.mft (raw, json)
Hash identifier: fqRGHf/5De9lxdE1tQJtii3TzmZ9xO+VqKDYo2wIoJ0=
Subject key identifier: 67:3C:1E:52:45:C6:96:A3:A7:45:B7:B5:C4:45:FF:DF:FE:27:F5:BA
Authority key identifier: 88:19:95:6D:DC:EA:E0:22:CF:E1:23:DA:37:3C:6B:11:16:40:36:8D
Certificate issuer: /CN=8819956ddceae022cfe123da373c6b111640368d
Certificate serial: 01975B0053B31204E6AEDE6752ABB9505412
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
Manifest number: 1197
Signing time: Tue 10 Jun 2025 18:00:37 +0000
Manifest this update: Tue 10 Jun 2025 18:00:37 +0000
Manifest next update: Wed 11 Jun 2025 18:00:37 +0000
Files and hashes: 1: JZQSwG4wbJPMZQTbI1xSGViuvto.roa (hash: 7nxSYve4K7+DiIBeaX8vSWVp7u4kFJYyJFHRolTK/UI=)
2: iBmVbdzq4CLP4SPaNzxrERZANo0.crl (hash: NYh9hfhB0RmVR80ZrAdKJiFEVniks/Evo1MOTCFMiAs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 14:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5b:00:53:b3:12:04:e6:ae:de:67:52:ab:b9:50:54:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8819956ddceae022cfe123da373c6b111640368d
Validity
Not Before: Jun 10 18:00:37 2025 GMT
Not After : Jun 11 18:00:37 2025 GMT
Subject: CN=673c1e5245c696a3a745b7b5c445ffdffe27f5ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:b6:93:f0:e5:b8:33:0e:53:81:cd:4a:94:8a:
95:1c:89:e0:39:40:56:77:38:da:40:aa:07:a4:dd:
28:16:fe:38:63:ff:0c:ad:91:36:17:21:6d:ec:c0:
3a:1c:5c:18:b0:7f:fd:a0:a0:d5:69:f6:3e:8f:47:
cd:67:95:c3:2b:1e:4e:db:6e:30:96:4e:d5:be:7a:
9d:08:37:67:88:16:7e:36:43:ff:ee:e1:23:9e:f3:
02:26:6f:b1:57:0e:3d:c0:82:66:e2:35:dd:8c:e4:
58:c0:68:99:52:46:50:95:67:a1:60:10:71:ff:69:
fe:9d:cf:25:b4:24:eb:a7:48:8a:30:e5:8d:c0:db:
60:9e:c9:c7:86:2d:19:81:b4:dd:d9:5b:fe:eb:fc:
15:12:69:f3:e2:cc:77:5c:0d:9f:18:82:89:0e:cc:
ae:19:bd:89:eb:96:e5:24:4e:cc:2a:52:03:9c:51:
f5:4d:c0:9d:54:af:3d:74:84:5f:b4:90:8c:5c:85:
59:b1:ec:17:53:b6:13:7b:7b:c6:65:4a:a8:16:43:
0a:f8:cc:99:aa:43:cf:fe:07:cd:e2:0f:20:cc:dd:
a6:03:26:9f:e5:19:41:74:97:5a:4b:0e:bf:23:58:
2e:eb:64:f1:69:62:55:99:de:06:eb:7d:b4:ef:1e:
60:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:3C:1E:52:45:C6:96:A3:A7:45:B7:B5:C4:45:FF:DF:FE:27:F5:BA
X509v3 Authority Key Identifier:
keyid:88:19:95:6D:DC:EA:E0:22:CF:E1:23:DA:37:3C:6B:11:16:40:36:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:03:0b:8e:03:4b:58:20:67:a4:46:4a:80:76:b3:b7:52:91:
29:83:30:f8:0d:86:57:09:c2:2d:35:f3:04:8e:f8:27:11:b6:
8b:b2:fc:4f:83:0e:65:78:f7:f7:5b:1d:f8:86:d6:a1:a8:51:
8c:54:f4:75:89:40:a8:00:a6:4a:1c:88:ad:a6:c9:e6:11:6c:
e8:9b:89:dc:79:f5:68:d3:f0:68:44:98:0b:a9:95:05:7e:c6:
02:94:ee:b9:e7:ef:1d:c9:2d:2e:f9:b1:fa:54:66:66:4f:50:
bb:67:f0:89:b7:8b:14:2e:a1:58:48:6e:80:e2:74:17:28:e2:
6a:96:9e:28:f9:2a:d9:0b:04:f3:86:2f:e9:1d:a3:51:0b:32:
3f:99:54:88:a2:eb:67:cc:a2:29:a8:fa:d6:79:25:20:09:37:
96:da:3e:fe:24:f0:48:54:f2:32:35:21:82:57:83:79:98:f7:
e7:98:0b:1d:b5:3e:41:e4:63:4d:7b:2a:f2:f0:66:cb:fb:b7:
2e:0b:82:ea:0c:b3:80:41:77:66:a9:db:ad:97:92:4b:a3:7f:
eb:ed:b9:bc:ec:82:b9:f5:de:ce:23:8f:de:d3:c0:f2:ee:a5:
0b:ef:0a:c0:49:c7:4f:d8:08:d1:3c:89:9e:3e:19:1f:31:db:
82:39:a8:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 00:41:17 2025 by rpki-client