Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
File: IkCgcYD88zY191fMFEng1dvU_bg.mft (raw, json)
Hash identifier: tExYhZvOL+1nWafEQGXlXOP7VsFVFmJgbfBByqWZBwY=
Subject key identifier: BB:49:49:2A:73:26:B1:AE:D0:88:F9:C3:EF:41:F4:D4:FC:EB:69:DB
Authority key identifier: 22:40:A0:71:80:FC:F3:36:35:F7:57:CC:14:49:E0:D5:DB:D4:FD:B8
Certificate issuer: /CN=2240a07180fcf33635f757cc1449e0d5dbd4fdb8
Certificate serial: 01987307120CDA5FBA57F59197B4DFFA74CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IkCgcYD88zY191fMFEng1dvU_bg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
Manifest number: 01FE
Signing time: Mon 04 Aug 2025 03:01:39 +0000
Manifest this update: Mon 04 Aug 2025 03:01:39 +0000
Manifest next update: Tue 05 Aug 2025 03:01:39 +0000
Files and hashes: 1: IkCgcYD88zY191fMFEng1dvU_bg.crl (hash: u5aIgPDZZ16p9FfELsELA5VJQtlokpP6kyYT6Lp5PaM=)
2: nvx0QRZQO1QzuvMN00Bva6hTGZw.roa (hash: Gw59i4bicuVuHEY8V6dHsuW9MPHvsYhnw1rq0LLdv8I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
rsync://rpki.ripe.net/repository/DEFAULT/IkCgcYD88zY191fMFEng1dvU_bg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:07:12:0c:da:5f:ba:57:f5:91:97:b4:df:fa:74:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2240a07180fcf33635f757cc1449e0d5dbd4fdb8
Validity
Not Before: Aug 4 03:01:39 2025 GMT
Not After : Aug 5 03:01:39 2025 GMT
Subject: CN=bb49492a7326b1aed088f9c3ef41f4d4fceb69db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:d1:31:03:fe:e6:07:e7:25:a8:73:86:a5:d6:
1f:c0:e3:b4:43:35:30:22:96:75:0f:2e:13:47:26:
fb:ec:9c:c6:72:26:e6:ee:65:09:d6:d5:d2:89:04:
19:ff:3d:ad:70:45:67:18:d3:24:f7:cd:4a:30:be:
35:eb:41:70:0e:4a:9f:14:99:0b:08:84:5a:75:69:
f8:d2:ec:f2:44:b9:88:51:99:5d:38:ec:39:db:83:
88:48:bc:75:57:cc:e0:29:c6:02:f9:34:fb:2e:a2:
2b:5e:36:5f:99:32:53:6c:3f:5a:e1:5b:83:67:8a:
a3:d4:67:9a:d7:89:9e:46:63:55:9e:61:60:aa:03:
b3:b6:03:cf:a1:a3:5e:38:bc:a8:88:fb:d1:de:13:
43:79:39:95:69:85:a5:c6:85:0d:31:77:0f:e2:dc:
1f:7e:5d:ed:a8:55:9b:35:06:9a:00:96:0c:48:42:
cd:0e:f1:17:f6:a9:60:69:02:63:44:7b:47:75:06:
90:1c:cc:cb:35:5f:09:72:9c:d9:b2:cb:24:0f:41:
65:3c:01:0d:ae:fc:a9:2b:91:42:f2:51:10:70:31:
8c:4b:73:ac:95:7a:2f:0a:b1:f8:7b:13:c3:6c:70:
ad:8d:91:77:62:8c:71:90:ed:28:26:4d:b8:55:bd:
cc:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:49:49:2A:73:26:B1:AE:D0:88:F9:C3:EF:41:F4:D4:FC:EB:69:DB
X509v3 Authority Key Identifier:
keyid:22:40:A0:71:80:FC:F3:36:35:F7:57:CC:14:49:E0:D5:DB:D4:FD:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IkCgcYD88zY191fMFEng1dvU_bg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:3b:36:be:c4:c8:73:36:02:5e:7e:c9:da:bc:f3:cf:02:23:
db:07:98:01:d5:7f:9d:87:b7:44:44:62:15:8f:e7:d8:60:8e:
77:f5:5d:10:b5:5e:fa:ce:c6:36:22:35:c6:da:d2:ac:ff:49:
3b:5b:39:a4:84:ea:7d:ee:91:21:78:7b:1c:97:0f:89:da:92:
bb:df:1d:b0:ff:a6:7d:5d:06:fb:5e:2f:c5:c7:65:ed:2e:bd:
a9:ef:f4:02:ef:22:16:61:d3:eb:0a:d4:f1:d2:b1:a5:cb:3a:
c9:a2:b3:7c:19:9f:4c:9f:c6:42:4c:4f:b8:a9:19:b9:de:5a:
7b:f6:6e:c2:3e:2e:2d:99:68:b2:27:28:a2:81:75:2b:bd:ed:
8e:7e:42:26:60:d5:ed:09:20:53:40:4e:0a:c3:80:14:b0:fe:
ae:4f:30:0d:21:1b:90:20:a8:61:fb:af:11:51:34:a8:c0:9a:
21:69:1f:1e:96:1d:2a:9b:a0:a4:a9:1b:89:eb:21:47:58:01:
07:7d:28:21:02:d5:dd:96:fc:29:ed:df:66:e7:f0:57:85:55:
e0:10:86:2f:f9:03:b6:68:24:8a:4e:74:14:d6:bb:05:93:1b:
a8:ab:e3:3d:1f:f2:fb:7e:98:22:ff:a6:fc:52:03:5a:f3:6d:
4a:bf:d4:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:27:25 2025 by rpki-client