Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
File: iBmVbdzq4CLP4SPaNzxrERZANo0.mft (raw, json)
Hash identifier: fGJdISIum7d41RodgMfsIn0iMDMsbm8sqWmwsgsCbhs=
Subject key identifier: 40:C4:AA:CB:63:6C:E8:9E:14:56:C1:73:8D:F4:F3:C6:46:30:FA:58
Authority key identifier: 88:19:95:6D:DC:EA:E0:22:CF:E1:23:DA:37:3C:6B:11:16:40:36:8D
Certificate issuer: /CN=8819956ddceae022cfe123da373c6b111640368d
Certificate serial: 0198A15FD4968BE9A21CF6FFD2BFB1400C4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
Manifest number: 1240
Signing time: Wed 13 Aug 2025 03:01:08 +0000
Manifest this update: Wed 13 Aug 2025 03:01:08 +0000
Manifest next update: Thu 14 Aug 2025 03:01:08 +0000
Files and hashes: 1: JZQSwG4wbJPMZQTbI1xSGViuvto.roa (hash: 7nxSYve4K7+DiIBeaX8vSWVp7u4kFJYyJFHRolTK/UI=)
2: iBmVbdzq4CLP4SPaNzxrERZANo0.crl (hash: IVeN+cHdFkrC4EXJaL5D9eRDlSqDF0gyPQglUhBZbyk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 22:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a1:5f:d4:96:8b:e9:a2:1c:f6:ff:d2:bf:b1:40:0c:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8819956ddceae022cfe123da373c6b111640368d
Validity
Not Before: Aug 13 03:01:08 2025 GMT
Not After : Aug 14 03:01:08 2025 GMT
Subject: CN=40c4aacb636ce89e1456c1738df4f3c64630fa58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:7b:19:85:d7:a8:28:d9:e0:49:6c:41:6d:87:
72:fc:22:b2:09:98:99:4c:d9:cf:a8:bf:74:bf:ff:
81:b5:b7:d0:75:13:f5:12:97:76:cf:df:74:51:34:
98:fd:8c:17:7b:78:2c:3f:65:8b:36:e5:f2:e1:d6:
45:92:34:82:a2:9b:52:00:6f:22:08:2a:7c:77:cf:
b2:17:27:eb:35:80:6a:b4:66:d0:38:64:9b:00:25:
58:f1:c5:bc:a7:c4:ec:a6:cb:cf:eb:8f:c9:88:47:
8b:cd:cd:a9:c4:c0:6d:2e:11:44:0c:f0:b5:d5:05:
9b:18:c4:ba:16:cb:7b:99:ae:36:87:fa:16:f7:a2:
ab:74:75:31:9a:ec:53:4c:3b:88:22:92:28:b5:32:
c3:92:18:a1:1e:73:e9:36:cf:db:d0:fe:fb:9a:1c:
88:a3:75:28:50:cd:ab:4d:bc:45:5a:bc:05:cf:5f:
3a:e7:e7:6f:5e:88:51:be:aa:dc:f8:48:fa:af:98:
df:20:82:8d:ee:9c:64:35:9e:9e:43:c7:53:e6:8b:
41:dc:c8:b2:b2:59:0e:4e:d2:bb:92:2e:4f:7f:e3:
88:93:4e:cd:d3:74:e9:1b:62:6c:34:e0:56:4c:56:
55:9a:5c:5f:a1:0a:18:24:fc:28:18:65:e3:85:93:
9f:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:C4:AA:CB:63:6C:E8:9E:14:56:C1:73:8D:F4:F3:C6:46:30:FA:58
X509v3 Authority Key Identifier:
keyid:88:19:95:6D:DC:EA:E0:22:CF:E1:23:DA:37:3C:6B:11:16:40:36:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d0:44:99:35:59:7d:2d:a4:71:26:8c:00:02:bd:df:f1:97:b9:
37:2d:f2:aa:8b:d2:84:c7:71:6e:1f:70:12:7a:54:e1:1c:0a:
14:0a:1e:fd:94:dc:db:22:e6:0d:63:7d:89:77:7b:22:45:2e:
e0:90:69:24:1d:e2:46:95:53:be:37:f3:8e:73:90:dc:b5:42:
e2:57:6a:1c:69:7a:b0:9e:4c:1c:a0:5d:8c:78:5b:82:34:30:
49:4b:fc:d5:17:fa:d4:67:3c:61:1c:bb:ea:76:c3:3c:07:c8:
99:02:f6:24:30:5b:6a:1c:de:a8:01:ee:f1:93:13:00:ef:d9:
fa:43:08:f6:c2:21:b5:a3:6b:de:09:5c:ce:43:fe:1a:5f:34:
44:9d:0d:7a:58:7c:cd:4e:1a:ab:ee:ff:f4:03:39:cd:35:99:
22:cd:2d:d3:d4:e1:99:49:14:84:d8:43:49:d9:7f:55:2b:8f:
67:71:06:fb:1a:d6:97:80:af:b0:ed:b5:e9:6d:a3:64:41:06:
7b:e8:72:ab:89:cd:6b:a1:6b:8a:0b:c1:e3:24:22:ac:62:67:
54:34:26:7f:e3:5f:3f:b5:e9:3b:9f:be:e5:55:a7:04:ae:ca:
4c:b0:7c:0d:30:83:9a:c8:c6:d7:85:63:9d:83:9b:22:ed:0f:
64:7a:54:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 05:29:09 2025 by rpki-client