Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/d9dd82-9bb9-484c-81cb-83bdcad02047/1/IwbLbMzQnnXtGfwG-1kkzyejmMM.mft
File: IwbLbMzQnnXtGfwG-1kkzyejmMM.mft (raw, json)
Hash identifier: v8EcMTydMUFEWm/anOJtlq6LVaixoniaxJabBIOu8K0=
Subject key identifier: C5:44:DD:34:2D:A5:A9:11:83:9C:5C:E1:39:CD:94:91:6E:16:B0:CE
Authority key identifier: 23:06:CB:6C:CC:D0:9E:75:ED:19:FC:06:FB:59:24:CF:27:A3:98:C3
Certificate issuer: /CN=2306cb6cccd09e75ed19fc06fb5924cf27a398c3
Certificate serial: 019922FA5F3510301928DB886F21E2D72CE6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IwbLbMzQnnXtGfwG-1kkzyejmMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/d9dd82-9bb9-484c-81cb-83bdcad02047/1/IwbLbMzQnnXtGfwG-1kkzyejmMM.mft
Manifest number: 03ED
Signing time: Sun 07 Sep 2025 07:00:57 +0000
Manifest this update: Sun 07 Sep 2025 07:00:57 +0000
Manifest next update: Mon 08 Sep 2025 07:00:57 +0000
Files and hashes: 1: IwbLbMzQnnXtGfwG-1kkzyejmMM.crl (hash: CWKU/eFnH6DMJQl97ibU4nhEVLmPvOt4ShPubtQLJBU=)
2: YYev6Pek4prQk97zPtNDo2u2KRU.roa (hash: wJZbyHz8STJ6eKcT9ZVX0wVCLZZb2WUlXYfMJ35kaXE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/d9dd82-9bb9-484c-81cb-83bdcad02047/1/IwbLbMzQnnXtGfwG-1kkzyejmMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/d9dd82-9bb9-484c-81cb-83bdcad02047/1/IwbLbMzQnnXtGfwG-1kkzyejmMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/IwbLbMzQnnXtGfwG-1kkzyejmMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:5f:35:10:30:19:28:db:88:6f:21:e2:d7:2c:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2306cb6cccd09e75ed19fc06fb5924cf27a398c3
Validity
Not Before: Sep 7 07:00:57 2025 GMT
Not After : Sep 8 07:00:57 2025 GMT
Subject: CN=c544dd342da5a911839c5ce139cd94916e16b0ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:04:56:51:12:42:23:ff:79:73:cc:f0:82:2c:
b9:5f:3e:07:2b:92:5e:ae:f1:60:06:78:95:4e:bd:
4d:76:a1:ce:a5:3c:36:c9:99:57:c7:56:7b:47:7d:
fc:f5:75:8e:30:cf:c2:10:95:07:df:54:3d:41:ea:
5c:0e:a6:53:5f:f4:84:2f:07:00:1c:6b:7c:bc:2e:
db:ea:31:da:6b:7d:4c:ac:40:f8:7b:cf:34:25:67:
b5:db:25:26:1b:43:2c:db:80:eb:f9:dd:ff:47:4b:
33:6e:0c:a6:3e:ba:bd:57:64:59:5c:66:e5:24:97:
08:34:51:5b:43:0d:bf:03:b2:5e:fa:ea:9a:65:b2:
ed:4e:8f:14:9b:b1:9a:85:4f:71:08:58:5e:3b:86:
bc:1c:c8:3f:98:7a:7f:55:7f:77:13:6c:08:0f:7c:
ae:f6:60:1b:c7:5e:b8:ac:8d:8a:88:0f:82:b4:04:
da:05:94:f0:a2:25:71:80:1c:76:af:88:1e:75:f9:
a2:9a:18:c8:a8:49:a0:9e:48:5e:c9:e8:61:dd:16:
28:3e:95:3f:4c:3e:23:8c:00:09:bd:bb:a0:51:e2:
9d:b7:1a:d3:1a:f4:cf:dd:08:60:57:27:e4:3b:f2:
47:fd:f3:11:e8:bb:f1:1b:f2:23:c1:a0:8b:0f:8f:
c2:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:44:DD:34:2D:A5:A9:11:83:9C:5C:E1:39:CD:94:91:6E:16:B0:CE
X509v3 Authority Key Identifier:
keyid:23:06:CB:6C:CC:D0:9E:75:ED:19:FC:06:FB:59:24:CF:27:A3:98:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IwbLbMzQnnXtGfwG-1kkzyejmMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/d9dd82-9bb9-484c-81cb-83bdcad02047/1/IwbLbMzQnnXtGfwG-1kkzyejmMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/d9dd82-9bb9-484c-81cb-83bdcad02047/1/IwbLbMzQnnXtGfwG-1kkzyejmMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:c5:fe:e5:20:b7:b6:62:cd:85:60:45:e2:11:a2:a8:2f:40:
72:f9:13:a8:46:0d:fa:9a:c9:94:86:2c:38:4c:30:68:b1:f3:
27:4a:b7:d9:28:c1:50:53:14:75:e0:49:92:c6:1d:8a:9f:af:
50:5d:a3:18:0e:a2:52:62:c7:bb:e5:70:ff:ca:1d:1c:b3:fa:
29:e8:02:88:8c:94:8c:c5:1d:45:43:33:c7:48:e4:15:22:71:
de:be:22:2b:b6:9f:d9:ad:eb:65:fb:42:fb:98:70:87:4c:e9:
0d:0f:a7:b0:c3:74:89:fc:50:e5:f6:81:39:b5:57:0a:a6:2e:
f6:0e:c9:a0:da:c7:61:5f:c4:64:d4:e7:cd:a0:41:66:41:bf:
95:cc:4f:83:62:05:fe:70:33:91:cf:0e:35:37:2b:e2:6f:b1:
5b:38:7a:69:ac:2b:07:8f:39:97:08:cd:5b:a7:38:fa:cb:a1:
8c:8c:60:e0:04:85:63:15:47:1b:4b:64:2c:41:cb:cd:10:93:
94:74:11:27:3c:c1:e1:b7:b1:fe:eb:e5:19:07:7c:07:8e:0b:
3c:d9:03:bb:ce:cb:83:0a:ed:7e:a5:20:8a:04:7c:41:41:5a:
e5:c7:af:a4:97:eb:4c:eb:39:4d:5c:fd:ce:ac:d8:ec:0f:24:
97:40:3f:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:12:04 2025 by rpki-client