Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
File: iBKgqAncPNH72JUaj4D2mSXhGQg.mft (raw, json)
Hash identifier: i3WgXSUWFvyN/TVCGwOhJJ7k2ry8X+2910zxZT+6O3g=
Subject key identifier: 7F:43:54:2E:81:BC:D3:3E:89:D3:80:30:CD:A7:9E:B8:DF:C5:2D:E3
Authority key identifier: 88:12:A0:A8:09:DC:3C:D1:FB:D8:95:1A:8F:80:F6:99:25:E1:19:08
Certificate issuer: /CN=8812a0a809dc3cd1fbd8951a8f80f69925e11908
Certificate serial: 019932A3FB7A132F747692DD6F6DE0675B86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBKgqAncPNH72JUaj4D2mSXhGQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
Manifest number: 115E
Signing time: Wed 10 Sep 2025 08:00:31 +0000
Manifest this update: Wed 10 Sep 2025 08:00:31 +0000
Manifest next update: Thu 11 Sep 2025 08:00:31 +0000
Files and hashes: 1: gc6g1C2J1IjiC6a4YzgHVoMBVvE.roa (hash: l0wZmz1eeJH0pgzgb/M7lMO1lTKuzQbmbwUCcga2Ghs=)
2: iBKgqAncPNH72JUaj4D2mSXhGQg.crl (hash: E8/nrW2kuha1pnckcVDG/OsklUdFbZ6RAy+xgBHuqlw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
rsync://rpki.ripe.net/repository/DEFAULT/iBKgqAncPNH72JUaj4D2mSXhGQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 08:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:32:a3:fb:7a:13:2f:74:76:92:dd:6f:6d:e0:67:5b:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8812a0a809dc3cd1fbd8951a8f80f69925e11908
Validity
Not Before: Sep 10 08:00:31 2025 GMT
Not After : Sep 11 08:00:31 2025 GMT
Subject: CN=7f43542e81bcd33e89d38030cda79eb8dfc52de3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:51:c2:2a:97:10:b4:b9:b9:a6:c5:d3:9e:44:
90:58:ec:4c:31:27:69:b0:5e:5f:4b:fc:fd:a6:9d:
d0:4d:12:ad:75:4a:82:d6:41:37:6a:87:e6:2b:66:
e2:87:2b:14:d2:52:88:94:74:f2:3f:27:c7:4d:eb:
30:7a:41:36:d6:5a:1c:7e:ea:37:d0:9b:b8:d3:97:
81:74:7c:84:05:a0:83:ea:98:ed:c3:97:93:d3:4a:
4b:97:da:e7:dd:05:c0:70:29:6c:e6:f6:92:1b:e8:
4c:17:b8:ad:fa:5e:e9:55:6e:c0:69:2c:1f:4b:99:
64:b7:7e:ca:8c:66:7c:60:f1:e9:aa:e4:8d:86:9a:
87:60:28:4f:06:04:e3:29:1d:b1:9a:b1:0b:f6:3a:
7a:06:e0:89:62:57:87:da:fd:eb:a8:76:d5:aa:40:
d0:07:6d:2e:f6:1f:29:f9:22:b7:78:6f:cc:89:5f:
9f:01:57:8f:22:09:37:0e:50:76:d5:b2:be:a9:21:
49:af:9d:62:8a:ab:fa:7f:06:d1:bf:08:42:eb:01:
6b:21:3b:15:0e:ef:df:ce:26:41:7e:e1:ee:45:0f:
0e:6d:15:fb:c0:ad:51:cf:32:04:b3:ff:d0:b5:96:
51:ff:b1:c9:0a:dc:c2:36:50:5c:8f:56:70:da:82:
fc:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:43:54:2E:81:BC:D3:3E:89:D3:80:30:CD:A7:9E:B8:DF:C5:2D:E3
X509v3 Authority Key Identifier:
keyid:88:12:A0:A8:09:DC:3C:D1:FB:D8:95:1A:8F:80:F6:99:25:E1:19:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBKgqAncPNH72JUaj4D2mSXhGQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:3b:de:c6:d9:88:42:90:c1:01:4e:cb:e8:7d:dc:45:c0:10:
75:8f:dc:e2:67:68:f9:42:b2:95:1b:71:97:39:fd:dc:3f:90:
1a:9e:56:0d:69:c0:20:be:dd:ed:10:c9:98:dc:de:89:c4:06:
34:4c:6f:9e:fc:96:6a:3d:84:fc:17:db:fd:96:b1:fe:dc:45:
6f:94:ce:26:6b:af:96:f8:d5:04:b5:9c:52:ec:07:6f:b0:59:
03:f2:ff:89:ae:7e:77:05:66:b2:ac:f4:4a:e9:35:f9:74:30:
dd:1a:34:29:dd:91:26:17:38:27:39:4e:0b:d7:5b:45:7b:68:
d9:ce:39:c3:15:b2:9c:44:67:b4:9c:52:97:be:57:1d:6b:6c:
0c:b9:2a:11:24:05:db:58:00:83:b6:81:37:2f:60:9f:0e:fd:
01:5f:7d:ed:58:2f:33:fb:19:2d:db:2d:fa:16:a3:9e:aa:68:
21:62:73:a8:17:09:fb:50:54:f5:8c:a2:71:5e:48:74:32:cc:
a5:7d:f4:7f:a2:a1:c5:64:c0:68:39:a2:26:72:a2:47:13:74:
53:62:63:6e:59:7d:99:77:6b:c3:f6:09:a4:c7:21:7f:e5:81:
59:e7:68:00:08:9c:c4:af:30:34:9a:23:03:58:fb:a4:d3:23:
d6:42:73:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 17:34:43 2025 by rpki-client