
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
File: iBmVbdzq4CLP4SPaNzxrERZANo0.mft (raw, json)
Hash identifier: bY1kPK+8xBtf0cYWyu6eTM8mJbP6kKbEfP7tH0qeFsI=
Subject key identifier: F2:B0:89:DE:B0:7E:0F:91:13:62:11:99:D6:36:63:F6:15:53:90:CF
Authority key identifier: 88:19:95:6D:DC:EA:E0:22:CF:E1:23:DA:37:3C:6B:11:16:40:36:8D
Certificate issuer: /CN=8819956ddceae022cfe123da373c6b111640368d
Certificate serial: 019762BA0EED942D3581B7A132C3617A9BD3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
Manifest number: 119B
Signing time: Thu 12 Jun 2025 06:00:50 +0000
Manifest this update: Thu 12 Jun 2025 06:00:50 +0000
Manifest next update: Fri 13 Jun 2025 06:00:50 +0000
Files and hashes: 1: JZQSwG4wbJPMZQTbI1xSGViuvto.roa (hash: 7nxSYve4K7+DiIBeaX8vSWVp7u4kFJYyJFHRolTK/UI=)
2: iBmVbdzq4CLP4SPaNzxrERZANo0.crl (hash: zQeY8Y71VN7DHCnFzotFHh7+/pIDYw71Q/Hs27MNH1U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 06:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:62:ba:0e:ed:94:2d:35:81:b7:a1:32:c3:61:7a:9b:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8819956ddceae022cfe123da373c6b111640368d
Validity
Not Before: Jun 12 06:00:50 2025 GMT
Not After : Jun 13 06:00:50 2025 GMT
Subject: CN=f2b089deb07e0f9113621199d63663f6155390cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:27:06:cc:f1:0d:61:d0:f4:e6:19:77:d2:6b:
7a:ef:8c:9e:15:c9:29:76:49:30:c9:18:4c:59:d0:
17:e9:c3:48:cc:02:2b:13:83:8f:f4:5c:b2:64:54:
20:e0:06:b5:a4:88:49:10:30:ba:ed:8b:23:9e:6c:
d7:dd:1e:46:56:ef:82:8f:4f:b6:4d:fb:43:5d:67:
8c:91:02:5b:a9:9b:ea:08:54:0e:a3:fd:63:2f:54:
86:7c:66:07:0c:6c:87:b8:eb:a1:7f:27:85:8f:a3:
60:d0:8a:0b:8d:a3:95:8e:df:3a:55:df:8c:79:8c:
57:0d:80:b5:bf:1e:a2:c1:70:0c:5a:20:13:29:7d:
99:07:bf:6a:55:c1:45:e0:3d:c8:76:f9:f3:0a:d8:
c8:f9:a4:3f:ee:5f:66:37:20:79:45:6e:49:f7:f7:
21:ee:b3:6d:bc:26:86:87:01:c0:ac:96:1d:03:35:
fe:c5:83:fe:28:38:b8:96:2e:01:40:fe:6a:60:09:
ab:32:4c:23:d9:d7:ef:5b:65:31:84:12:01:c8:48:
d8:bb:73:53:06:ee:1c:3c:22:0b:e9:40:f4:f0:a4:
82:be:6b:a9:45:57:df:64:20:11:13:f3:3e:f4:6e:
ee:dd:7f:69:8f:46:21:77:35:f8:86:42:03:ce:cc:
e2:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:B0:89:DE:B0:7E:0F:91:13:62:11:99:D6:36:63:F6:15:53:90:CF
X509v3 Authority Key Identifier:
keyid:88:19:95:6D:DC:EA:E0:22:CF:E1:23:DA:37:3C:6B:11:16:40:36:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:ab:14:cb:cd:1f:d6:c8:d6:73:03:7c:e5:86:6b:e6:4a:a6:
83:55:ba:75:ec:17:05:3b:84:3a:c5:dd:58:6b:87:f7:0b:75:
8c:12:b1:22:89:13:50:af:b5:63:ec:e9:ed:8f:a1:4e:1d:7e:
b9:ac:fe:44:8c:38:2e:52:c0:03:65:58:10:92:18:38:b5:f4:
cf:96:94:51:46:19:c1:d5:99:9e:03:36:1a:cf:3c:1d:79:b6:
f1:e2:95:d2:98:3c:09:1a:15:cb:da:ea:ce:27:7a:10:5b:a4:
a3:e4:6d:f1:e6:92:6b:33:92:d9:c7:c8:12:ac:37:be:26:99:
de:e9:65:8f:cc:c0:a3:d4:44:be:ae:d8:e7:0b:5e:cd:e4:a6:
fa:bb:4f:84:a2:3e:0a:7d:07:69:14:06:25:98:f6:26:09:21:
49:85:9b:0d:62:f3:7b:a9:75:b9:65:3b:c0:36:8c:92:22:8f:
18:d0:86:b9:fc:7d:43:5b:84:1e:88:52:7d:bf:19:bf:a7:d6:
1c:10:37:5a:97:0b:28:78:df:b1:75:17:57:8f:1b:92:3c:98:
60:4e:9f:e6:ce:37:3b:f8:d0:29:c9:50:2c:a6:ac:a9:cc:d1:
4b:f8:f2:25:1d:54:0e:18:86:81:c4:aa:27:7b:32:bf:9a:88:
99:11:d9:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 14:06:50 2025 by rpki-client