Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.mft
File: iaBBZwABZgo3ILd9dk2DaFIZATg.mft (raw, json)
Hash identifier: 2Elck94V5FATcYFuO/hyogDL9AoFz+bl9u7ZX9z99V4=
Subject key identifier: AA:79:D3:DB:BA:1E:C2:1F:9F:9A:EB:8D:E3:68:F0:CD:B3:93:6A:3D
Authority key identifier: 89:A0:41:67:00:01:66:0A:37:20:B7:7D:76:4D:83:68:52:19:01:38
Certificate issuer: /CN=89a041670001660a3720b77d764d836852190138
Certificate serial: 01976929EC9543DBC5582A19CE775F805E9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iaBBZwABZgo3ILd9dk2DaFIZATg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.mft
Manifest number: 0392
Signing time: Fri 13 Jun 2025 12:00:44 +0000
Manifest this update: Fri 13 Jun 2025 12:00:44 +0000
Manifest next update: Sat 14 Jun 2025 12:00:44 +0000
Files and hashes: 1: ZFhZ1BqFreky-hMCFILR09_VVoM.roa (hash: qamEtLvOwpZ40vLyeg6d8oLlWWQ1GcUWvt7i4vqtvFc=)
2: iaBBZwABZgo3ILd9dk2DaFIZATg.crl (hash: xytA+XlXC8OMkTtMYCdkp3SQO2uPs8K9iNdABXo2L3s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.mft
rsync://rpki.ripe.net/repository/DEFAULT/iaBBZwABZgo3ILd9dk2DaFIZATg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 12:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:29:ec:95:43:db:c5:58:2a:19:ce:77:5f:80:5e:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89a041670001660a3720b77d764d836852190138
Validity
Not Before: Jun 13 12:00:44 2025 GMT
Not After : Jun 14 12:00:44 2025 GMT
Subject: CN=aa79d3dbba1ec21f9f9aeb8de368f0cdb3936a3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:84:6d:a0:9b:04:ea:dc:b3:e8:70:75:12:e7:
94:f7:89:8d:4c:64:40:3c:9c:1a:e4:0f:50:d6:e7:
b4:d2:59:61:61:ae:9a:82:18:2b:08:a3:b0:a2:1e:
9e:4a:93:1d:90:14:66:f3:b4:1d:6d:93:1b:ed:9f:
9f:fa:25:f3:32:0a:1f:25:e3:e0:47:9e:d6:e8:7f:
ab:c5:52:65:6a:e9:51:50:0a:8b:4a:2b:dd:38:db:
8e:7e:41:75:bb:6e:65:2c:00:4e:fe:f9:08:5c:94:
af:37:49:c8:b6:52:7f:45:a9:c2:b0:57:67:70:22:
82:69:3c:bb:b9:43:18:dd:28:a3:60:0a:4b:1b:68:
b3:a6:e0:d7:05:cd:c6:b9:95:ce:ac:9e:b8:f1:7c:
56:b8:97:18:65:f5:6d:35:a0:54:2f:eb:43:91:ff:
56:24:fc:57:55:7e:d2:35:b3:e0:aa:14:90:e5:23:
c2:31:2d:af:46:1a:ea:40:64:ac:9f:e5:3e:50:ef:
e6:23:0c:4e:45:db:0b:aa:a0:0f:bc:79:59:b8:b3:
53:ab:ad:e2:3d:37:5a:7c:a7:a7:42:f2:08:dd:b7:
93:9e:f0:59:4d:8e:ec:82:69:59:e8:f1:99:5d:86:
52:34:17:13:b1:d1:eb:5b:44:35:26:80:5a:c9:00:
20:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:79:D3:DB:BA:1E:C2:1F:9F:9A:EB:8D:E3:68:F0:CD:B3:93:6A:3D
X509v3 Authority Key Identifier:
keyid:89:A0:41:67:00:01:66:0A:37:20:B7:7D:76:4D:83:68:52:19:01:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iaBBZwABZgo3ILd9dk2DaFIZATg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:29:0a:79:29:5b:08:7d:f9:cb:c7:dc:99:75:c7:d1:b5:c0:
99:06:bb:c8:3c:14:bd:ef:c2:c4:08:98:53:dd:b7:89:74:b6:
9f:f5:7a:19:42:b4:6d:1b:3d:45:a5:68:95:b4:bc:83:3c:ef:
7e:fa:26:2c:65:df:de:93:b1:86:00:52:99:8b:28:3b:61:f1:
55:5d:f8:91:23:e6:c5:f8:0e:07:fe:62:9c:02:a1:9e:45:0f:
21:87:d3:de:c5:d3:4f:a9:c7:c6:e2:80:91:ca:8e:26:4f:7b:
2e:c6:e6:12:49:9e:f5:c3:18:61:d4:52:74:f5:4d:51:fc:97:
76:77:40:ca:4c:aa:ff:8a:7a:a3:f2:2c:97:90:61:a5:de:f8:
c3:52:24:c7:a7:39:1c:15:34:6a:6b:5d:c6:14:d2:a4:f2:a2:
a9:f5:d9:cb:fe:68:78:50:7c:0f:03:f2:3e:df:84:49:99:8d:
55:0d:9f:11:b3:c9:ad:6c:72:04:d6:99:77:07:33:4e:58:6e:
11:7f:74:94:87:24:89:d8:4a:aa:cb:32:a6:de:64:f9:7d:d4:
07:4e:65:1d:40:de:82:c7:69:aa:a7:2f:3a:d9:84:b5:78:4c:
1d:49:35:d5:aa:b9:a6:85:f9:08:50:37:53:fd:24:f6:fb:a5:
5c:d3:e3:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:00:11 2025 by rpki-client