Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/d9dd82-9bb9-484c-81cb-83bdcad02047/1/IwbLbMzQnnXtGfwG-1kkzyejmMM.mft
File: IwbLbMzQnnXtGfwG-1kkzyejmMM.mft (raw, json)
Hash identifier: d5Qpn5vCyurOKkhRvqgV3OvN6mo/n6Nkuwe8x32pW8U=
Subject key identifier: 3D:9C:97:05:A4:49:08:9B:DB:D6:D3:C4:C5:9D:0D:29:6E:66:95:D0
Authority key identifier: 23:06:CB:6C:CC:D0:9E:75:ED:19:FC:06:FB:59:24:CF:27:A3:98:C3
Certificate issuer: /CN=2306cb6cccd09e75ed19fc06fb5924cf27a398c3
Certificate serial: 01989035650A658A14F8C23246FC39935E1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IwbLbMzQnnXtGfwG-1kkzyejmMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/d9dd82-9bb9-484c-81cb-83bdcad02047/1/IwbLbMzQnnXtGfwG-1kkzyejmMM.mft
Manifest number: 03A1
Signing time: Sat 09 Aug 2025 19:01:14 +0000
Manifest this update: Sat 09 Aug 2025 19:01:14 +0000
Manifest next update: Sun 10 Aug 2025 19:01:14 +0000
Files and hashes: 1: IwbLbMzQnnXtGfwG-1kkzyejmMM.crl (hash: L87fSuusy4zqlbgQsjjBw/CVoY9V91sABSuBYVD9jGM=)
2: YYev6Pek4prQk97zPtNDo2u2KRU.roa (hash: wJZbyHz8STJ6eKcT9ZVX0wVCLZZb2WUlXYfMJ35kaXE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/d9dd82-9bb9-484c-81cb-83bdcad02047/1/IwbLbMzQnnXtGfwG-1kkzyejmMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/d9dd82-9bb9-484c-81cb-83bdcad02047/1/IwbLbMzQnnXtGfwG-1kkzyejmMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/IwbLbMzQnnXtGfwG-1kkzyejmMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 18:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:90:35:65:0a:65:8a:14:f8:c2:32:46:fc:39:93:5e:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2306cb6cccd09e75ed19fc06fb5924cf27a398c3
Validity
Not Before: Aug 9 19:01:14 2025 GMT
Not After : Aug 10 19:01:14 2025 GMT
Subject: CN=3d9c9705a449089bdbd6d3c4c59d0d296e6695d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:7a:db:6d:f1:95:6c:d7:c9:89:b8:1a:87:91:
9d:74:b4:9b:91:0e:9a:12:70:29:a2:99:b3:e1:85:
a7:85:27:6f:62:fe:6d:50:a2:b6:99:af:6c:ba:86:
e7:2a:f2:a9:9d:cc:c7:8f:4c:7b:dc:6f:bf:3f:1d:
25:56:a1:71:98:37:38:c3:45:da:30:d2:9f:a7:52:
d0:c6:83:86:f7:ab:04:75:b6:e9:16:f2:8f:f0:44:
22:0c:ed:b5:d2:b6:a1:5c:91:c8:2c:af:27:6f:52:
31:38:cb:94:e5:81:8f:b8:ed:bf:2e:54:d2:f4:b7:
a5:52:be:95:6f:92:d4:9b:b5:e9:72:42:39:7d:c2:
b0:35:ab:72:c3:ff:4c:8c:86:18:0a:b7:e4:db:62:
09:06:25:92:53:14:03:fa:90:28:3d:ab:44:11:47:
52:8b:e6:16:11:42:61:e9:cd:80:a5:bf:88:77:fa:
a7:25:25:a1:db:46:42:57:e5:a3:74:52:2e:a2:39:
dc:40:87:23:34:fc:10:2f:f1:da:a4:bc:aa:31:fc:
d6:c6:ba:c7:d3:dd:8a:19:a2:82:fe:07:3d:fa:34:
33:08:41:94:c7:19:e7:13:f7:0c:1d:b7:41:c7:a3:
18:7c:dd:6e:ff:10:3e:9b:f7:61:cf:d0:cc:fb:9a:
d3:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:9C:97:05:A4:49:08:9B:DB:D6:D3:C4:C5:9D:0D:29:6E:66:95:D0
X509v3 Authority Key Identifier:
keyid:23:06:CB:6C:CC:D0:9E:75:ED:19:FC:06:FB:59:24:CF:27:A3:98:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IwbLbMzQnnXtGfwG-1kkzyejmMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/d9dd82-9bb9-484c-81cb-83bdcad02047/1/IwbLbMzQnnXtGfwG-1kkzyejmMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/d9dd82-9bb9-484c-81cb-83bdcad02047/1/IwbLbMzQnnXtGfwG-1kkzyejmMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:de:13:c4:88:53:dc:02:34:b9:20:a3:a8:38:e6:d2:2e:23:
02:23:d9:4f:d9:09:fe:1d:ff:bc:ea:ca:8b:7f:37:ee:8f:da:
6b:e4:da:3c:b1:e2:f7:9a:3f:6b:31:67:e4:dd:19:a0:12:76:
8e:70:10:89:81:ef:db:6b:6c:7a:57:50:db:87:03:a9:c1:af:
0e:0e:6e:a7:9d:ee:6f:c3:aa:3c:7e:5d:19:72:8a:e1:f8:0f:
87:b0:b6:6d:da:48:0a:71:23:bc:66:f3:80:52:03:f4:1c:56:
83:71:d8:fa:e3:df:d0:10:9c:0c:37:9e:52:8b:13:dd:5e:33:
8a:b4:72:37:75:5b:80:3f:ec:bc:5c:22:3a:c0:f7:6f:7d:cc:
9d:8f:0f:35:ea:85:74:c1:e3:1a:ee:77:42:a7:5d:0b:be:37:
fb:46:c4:1d:9a:6f:d1:37:aa:99:88:07:5d:d0:ce:32:bc:d5:
e3:b8:aa:a9:be:6c:89:91:42:68:0d:ac:30:be:98:45:8e:e7:
bd:ba:84:0f:8d:36:f6:ed:4c:a7:8e:e0:5e:81:45:ce:4c:70:
04:a7:b0:72:9d:10:8a:e0:4b:85:02:bf:6c:07:77:b4:c2:29:
96:0f:8e:8b:36:4b:31:ab:9a:cb:0d:90:05:1f:bd:d7:f5:b2:
f3:f6:2b:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 04:46:56 2025 by rpki-client