Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/d9dd82-9bb9-484c-81cb-83bdcad02047/1/IwbLbMzQnnXtGfwG-1kkzyejmMM.mft
File: IwbLbMzQnnXtGfwG-1kkzyejmMM.mft (raw, json)
Hash identifier: 3M/4Fz3YqrDULZWuenNHYZU8sAu3wKuGf4jKZYXBUlU=
Subject key identifier: 33:D0:E0:24:BB:57:40:08:CA:9A:65:06:F2:B8:98:1D:D7:F1:54:5B
Authority key identifier: 23:06:CB:6C:CC:D0:9E:75:ED:19:FC:06:FB:59:24:CF:27:A3:98:C3
Certificate issuer: /CN=2306cb6cccd09e75ed19fc06fb5924cf27a398c3
Certificate serial: 019A71132C015D91E9BB6FADD15B79499C21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IwbLbMzQnnXtGfwG-1kkzyejmMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/d9dd82-9bb9-484c-81cb-83bdcad02047/1/IwbLbMzQnnXtGfwG-1kkzyejmMM.mft
Manifest number: 049A
Signing time: Tue 11 Nov 2025 04:01:13 +0000
Manifest this update: Tue 11 Nov 2025 04:01:13 +0000
Manifest next update: Wed 12 Nov 2025 04:01:13 +0000
Files and hashes: 1: IwbLbMzQnnXtGfwG-1kkzyejmMM.crl (hash: 4iwbvWNkxa2R/Erwi5PG2C3V2VyrIrsVXkRCwk2YC8c=)
2: YYev6Pek4prQk97zPtNDo2u2KRU.roa (hash: wJZbyHz8STJ6eKcT9ZVX0wVCLZZb2WUlXYfMJ35kaXE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/d9dd82-9bb9-484c-81cb-83bdcad02047/1/IwbLbMzQnnXtGfwG-1kkzyejmMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/d9dd82-9bb9-484c-81cb-83bdcad02047/1/IwbLbMzQnnXtGfwG-1kkzyejmMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/IwbLbMzQnnXtGfwG-1kkzyejmMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:13:2c:01:5d:91:e9:bb:6f:ad:d1:5b:79:49:9c:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2306cb6cccd09e75ed19fc06fb5924cf27a398c3
Validity
Not Before: Nov 11 04:01:13 2025 GMT
Not After : Nov 12 04:01:13 2025 GMT
Subject: CN=33d0e024bb574008ca9a6506f2b8981dd7f1545b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:40:d2:c4:d1:09:fa:9d:20:c1:bb:ab:04:97:
c4:88:ec:14:37:dd:c3:49:b0:12:91:bd:9b:ba:e0:
b4:97:a8:05:c9:40:e9:8f:22:ec:e2:47:14:b0:5e:
7a:ed:05:af:5e:bd:2d:ce:ee:3d:57:db:e0:5a:a0:
ca:46:ca:79:05:7d:af:9e:cb:2d:9a:32:02:e2:a6:
bd:19:fb:25:1b:eb:76:46:3c:e5:9a:d7:95:5f:48:
69:c9:a9:fc:c1:af:21:97:f8:12:1c:cd:96:90:64:
2c:a6:b7:0e:ed:33:42:d3:b8:50:1d:a6:9b:eb:5c:
d3:34:ce:c7:66:c4:99:53:2a:18:e1:e9:07:93:e2:
42:f2:80:3a:e4:88:27:9b:01:d5:aa:da:82:73:56:
b8:aa:41:7a:1a:d9:68:3b:c4:38:e5:e4:95:c5:74:
94:2d:69:f7:86:62:58:5e:9b:60:15:4b:db:0d:1e:
26:2b:d0:ee:6b:72:72:57:54:8c:aa:21:40:eb:b4:
fe:65:57:79:df:68:73:d3:cf:17:18:4b:09:1e:b9:
e7:9e:84:c1:57:09:9d:09:4d:8d:10:fb:84:80:ea:
f8:6c:af:d8:a4:0a:c4:c6:82:7f:0d:42:46:b7:f4:
7b:93:cb:31:43:49:a5:5f:5a:09:26:de:81:48:cd:
2e:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:D0:E0:24:BB:57:40:08:CA:9A:65:06:F2:B8:98:1D:D7:F1:54:5B
X509v3 Authority Key Identifier:
keyid:23:06:CB:6C:CC:D0:9E:75:ED:19:FC:06:FB:59:24:CF:27:A3:98:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IwbLbMzQnnXtGfwG-1kkzyejmMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/d9dd82-9bb9-484c-81cb-83bdcad02047/1/IwbLbMzQnnXtGfwG-1kkzyejmMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/d9dd82-9bb9-484c-81cb-83bdcad02047/1/IwbLbMzQnnXtGfwG-1kkzyejmMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:47:1a:7a:18:95:dd:7a:fa:62:81:1a:07:e6:51:f8:37:7c:
30:56:9e:e3:0a:a6:aa:e3:ec:42:80:36:61:7c:9f:bc:a9:7a:
79:b8:fa:14:0d:88:26:f6:52:be:92:e2:45:bc:8e:63:a1:ed:
f1:d8:93:0d:d9:e5:04:02:ee:b2:34:f6:78:bd:f6:62:98:a8:
73:28:ac:1b:84:27:0e:da:7e:1d:79:07:a5:6d:4b:b6:0c:bd:
39:9f:ad:a8:d6:76:7d:f6:d4:b1:6c:e6:36:41:91:a6:e6:44:
b5:46:e1:14:8c:86:9d:61:e4:17:de:88:78:25:91:43:57:14:
5d:52:ff:94:d5:ec:2b:9d:d6:9c:84:9b:12:df:b5:df:60:04:
81:33:73:78:6f:17:8d:b1:45:05:77:88:c9:12:f4:b5:15:ab:
bd:9f:1f:1f:57:cc:54:53:0f:f8:5c:30:6b:82:e8:ad:0e:f0:
c4:b4:50:a3:78:58:27:2e:84:42:95:9b:af:25:31:09:ea:a1:
d0:bf:93:8b:dc:41:b0:7b:f9:84:e2:b1:f8:dc:86:af:e2:ae:
11:8a:05:ef:e5:6b:09:99:04:a9:02:fd:6a:91:4b:5d:39:9f:
1c:75:19:5b:31:cb:b2:1c:ac:ea:33:e3:5c:81:76:7f:3e:ea:
9e:94:d6:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:19:45 2025 by rpki-client