Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
File: iBKgqAncPNH72JUaj4D2mSXhGQg.mft (raw, json)
Hash identifier: OjVIqTgjO4P9fHEpVUXkk7bWS9PHDtVGwVvIJcFh3Jc=
Subject key identifier: 28:B7:88:5F:49:A7:59:D1:D8:45:EB:E7:CE:A0:5E:0E:E3:95:04:6E
Authority key identifier: 88:12:A0:A8:09:DC:3C:D1:FB:D8:95:1A:8F:80:F6:99:25:E1:19:08
Certificate issuer: /CN=8812a0a809dc3cd1fbd8951a8f80f69925e11908
Certificate serial: 0197481E47ED7BCC48B20CEF27B46D6AEA30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBKgqAncPNH72JUaj4D2mSXhGQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
Manifest number: 1060
Signing time: Sat 07 Jun 2025 02:00:33 +0000
Manifest this update: Sat 07 Jun 2025 02:00:33 +0000
Manifest next update: Sun 08 Jun 2025 02:00:33 +0000
Files and hashes: 1: gc6g1C2J1IjiC6a4YzgHVoMBVvE.roa (hash: l0wZmz1eeJH0pgzgb/M7lMO1lTKuzQbmbwUCcga2Ghs=)
2: iBKgqAncPNH72JUaj4D2mSXhGQg.crl (hash: CPRcn+aQHYqvQGcRtKHnH4jmNjvaL2jLDe/tzYgBKbM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
rsync://rpki.ripe.net/repository/DEFAULT/iBKgqAncPNH72JUaj4D2mSXhGQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:1e:47:ed:7b:cc:48:b2:0c:ef:27:b4:6d:6a:ea:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8812a0a809dc3cd1fbd8951a8f80f69925e11908
Validity
Not Before: Jun 7 02:00:33 2025 GMT
Not After : Jun 8 02:00:33 2025 GMT
Subject: CN=28b7885f49a759d1d845ebe7cea05e0ee395046e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:62:00:8e:d2:3f:d0:1e:3b:0c:36:35:08:49:
ba:c6:18:0c:8c:3a:cf:68:b3:80:ea:48:1a:db:a9:
90:0a:d8:6c:bd:df:5e:5d:03:c8:30:5b:a7:4b:9d:
39:d3:97:88:99:9f:6e:ce:e8:ac:eb:72:a2:df:00:
e4:0a:82:b9:af:ca:81:d7:a0:fb:c2:09:bb:94:8b:
02:d5:56:f5:ae:c1:15:c9:da:67:5a:00:e6:d1:48:
9b:25:31:22:3e:87:2d:08:db:f4:b2:4e:79:5e:ff:
7c:c1:b1:5e:9b:1b:78:8c:1a:e0:b5:d3:11:05:8c:
38:ae:28:63:db:4b:54:11:02:02:f1:f3:6b:92:9e:
e5:f4:98:9b:42:a9:b5:6d:61:18:c2:ac:da:99:38:
ac:ee:c7:05:18:3a:b2:fe:5c:91:70:24:71:e0:7b:
80:96:35:1d:f5:34:90:bd:50:c8:f8:14:a7:c8:0a:
43:21:ac:95:7e:0b:40:90:e1:6a:a8:9a:26:b3:cc:
60:f0:14:65:d7:8f:cd:ab:24:5d:2c:94:c7:05:d3:
36:70:b7:52:ab:a5:16:13:31:b9:b3:64:d5:91:b0:
2f:bf:c5:0c:ca:95:16:26:46:ae:5c:b8:d4:f1:b2:
34:c2:85:11:d2:81:60:53:54:7d:5a:1f:6b:46:2d:
47:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:B7:88:5F:49:A7:59:D1:D8:45:EB:E7:CE:A0:5E:0E:E3:95:04:6E
X509v3 Authority Key Identifier:
keyid:88:12:A0:A8:09:DC:3C:D1:FB:D8:95:1A:8F:80:F6:99:25:E1:19:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBKgqAncPNH72JUaj4D2mSXhGQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:5e:0f:e7:ab:87:3f:da:73:69:be:e8:0d:e0:51:77:74:18:
4e:77:99:65:3e:68:08:40:76:86:b0:1a:6d:8a:96:14:f6:77:
91:85:91:09:eb:88:5d:2b:7e:24:92:8e:95:38:8b:a1:bf:24:
e2:be:93:1f:1e:7e:cc:4b:ed:a1:c7:f1:c3:2b:94:1c:20:6a:
33:36:a0:65:6a:cd:54:50:c3:d3:59:0e:04:98:36:c0:20:04:
d1:df:4f:b7:ed:42:fc:f5:e6:0e:00:77:01:cb:d4:54:f2:ce:
ae:86:44:e5:94:84:22:a4:0a:1b:a6:84:23:1e:d6:b8:c2:d9:
d1:b3:05:d2:52:13:75:af:0a:f8:60:3a:7a:a2:09:43:40:cb:
e9:05:1a:a2:76:ef:43:c5:3c:2c:7a:ba:1f:26:a9:a7:ac:e9:
ce:8e:b1:fe:ab:00:cd:00:29:5e:34:1e:22:eb:09:a4:03:6f:
b4:c9:77:4b:16:d1:ed:f4:f4:b1:41:f7:52:79:ff:09:9a:f8:
18:be:b0:48:81:f7:f5:03:46:7c:63:4a:c7:80:62:94:95:09:
c0:48:49:18:81:81:40:99:72:71:ec:ae:0f:c8:c0:da:a6:a8:
63:63:e8:47:6e:f2:6a:f7:57:b0:fd:ba:e1:a9:0e:08:1f:c8:
8b:3d:7b:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 07:50:43 2025 by rpki-client