
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
File: iBmVbdzq4CLP4SPaNzxrERZANo0.mft (raw, json)
Hash identifier: fOcHNoeWQ5GBUYEsuvOFGkwglThwTTx9YwF+Rj3Ym64=
Subject key identifier: 24:AC:B1:47:B7:89:4E:93:D7:28:2E:B4:26:32:87:ED:38:BF:46:68
Authority key identifier: 88:19:95:6D:DC:EA:E0:22:CF:E1:23:DA:37:3C:6B:11:16:40:36:8D
Certificate issuer: /CN=8819956ddceae022cfe123da373c6b111640368d
Certificate serial: 01976696D62A24B8A4C0A9248BAC1C7201F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
Manifest number: 119D
Signing time: Fri 13 Jun 2025 00:00:50 +0000
Manifest this update: Fri 13 Jun 2025 00:00:50 +0000
Manifest next update: Sat 14 Jun 2025 00:00:50 +0000
Files and hashes: 1: JZQSwG4wbJPMZQTbI1xSGViuvto.roa (hash: 7nxSYve4K7+DiIBeaX8vSWVp7u4kFJYyJFHRolTK/UI=)
2: iBmVbdzq4CLP4SPaNzxrERZANo0.crl (hash: jAPBNOo7f00gE3bHvJ+QSqYOLWNwKRjjQlKrXuOtzxA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 22:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:66:96:d6:2a:24:b8:a4:c0:a9:24:8b:ac:1c:72:01:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8819956ddceae022cfe123da373c6b111640368d
Validity
Not Before: Jun 13 00:00:50 2025 GMT
Not After : Jun 14 00:00:50 2025 GMT
Subject: CN=24acb147b7894e93d7282eb4263287ed38bf4668
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:4e:a6:24:d7:3d:ee:80:40:a0:dd:c6:97:9f:
cf:14:3b:43:d9:47:92:4a:85:3e:0f:93:6e:ad:15:
e4:89:8a:5c:01:cc:5a:4c:43:41:00:f5:d1:82:74:
e7:3f:1f:b5:ce:33:99:49:aa:7a:eb:83:6b:2c:5c:
cb:e4:e6:eb:7c:b0:07:a1:dc:a4:cc:62:dd:f0:bd:
16:75:7e:0a:56:07:65:bb:13:cb:f6:50:24:91:96:
67:b8:4d:9e:b3:43:0f:8a:05:16:11:5c:ab:ae:f2:
43:ef:67:4e:0d:c0:f4:9b:e5:23:3e:d9:75:a4:45:
0c:79:76:29:49:f2:e3:91:31:4f:d7:80:ba:11:76:
7d:3a:ce:da:f7:0a:f0:5c:3a:5c:e7:76:68:e3:4e:
1f:e9:fe:c4:ee:c9:6d:ca:8f:b3:eb:86:7a:82:d3:
47:11:84:a1:0b:8f:be:c8:45:80:72:aa:3e:90:bf:
d4:3e:c4:44:bd:52:90:81:39:84:62:05:a7:cd:45:
c0:bd:0b:4e:4c:43:96:65:d1:bf:2e:e6:b4:16:ea:
fb:0d:22:db:b9:46:d1:74:3f:6d:d8:23:a9:1a:09:
17:67:20:c1:c2:69:37:50:72:02:06:43:41:75:30:
6d:17:c4:46:67:0c:3e:a6:5f:c0:ce:fc:55:6e:99:
3e:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:AC:B1:47:B7:89:4E:93:D7:28:2E:B4:26:32:87:ED:38:BF:46:68
X509v3 Authority Key Identifier:
keyid:88:19:95:6D:DC:EA:E0:22:CF:E1:23:DA:37:3C:6B:11:16:40:36:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:1c:6f:f3:34:3f:ed:f9:10:4d:51:10:30:26:2d:aa:b2:93:
ac:24:ef:a4:44:66:cb:f0:0a:8c:5c:7a:32:18:83:fd:0a:bc:
b7:12:70:67:47:c6:57:eb:bb:08:94:bc:d1:e3:e4:ff:d2:51:
22:13:1f:8a:44:06:3b:11:7e:17:34:85:ed:91:14:dc:9f:d9:
90:9d:82:cb:89:ad:f6:dd:a1:e0:de:01:9f:b0:72:f2:fd:bd:
ca:76:d4:96:a8:8d:0f:a7:51:78:b8:56:67:bc:3b:6d:ae:95:
b5:ba:ca:3e:17:c5:2e:8b:1a:26:18:1f:dc:cf:a2:2f:fa:9f:
4b:bb:64:e6:12:c6:4b:a6:07:86:3a:84:8e:ba:91:d4:82:3f:
9a:5a:bd:e8:4a:07:ec:6f:7b:aa:e9:92:14:61:f7:15:e9:68:
40:4e:bb:ae:b9:26:fd:57:aa:a9:2d:b2:bd:d9:7f:e8:da:e2:
a9:a4:a2:a4:cd:b1:92:8b:fd:da:dc:c9:b0:dc:60:b5:25:ad:
df:a5:f1:e3:b5:40:3f:58:75:d8:7c:d9:df:7d:1a:ce:75:0e:
e5:d6:db:cf:64:76:51:e0:96:17:f8:76:a8:08:3f:32:6d:a1:
d1:0b:81:48:79:80:c0:5e:87:12:85:47:63:39:1f:59:76:ae:
09:07:26:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 01:38:28 2025 by rpki-client