Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/538194-7560-4456-b45c-ca26c22cfafd/1/imlbOroepOZUeIxRZBRYzJlXgEA.mft
File: imlbOroepOZUeIxRZBRYzJlXgEA.mft (raw, json)
Hash identifier: O26p/hXoTf/fvf+X0aME+QowSmvhfAHcIJxNFxkZqeQ=
Subject key identifier: D6:2E:E6:9E:1C:B4:2F:AF:C0:3E:96:A3:4C:B5:3F:BB:9B:C7:B1:0E
Authority key identifier: 8A:69:5B:3A:BA:1E:A4:E6:54:78:8C:51:64:14:58:CC:99:57:80:40
Certificate issuer: /CN=8a695b3aba1ea4e654788c51641458cc99578040
Certificate serial: 019A72266C307579818F0D6F8C032E292F99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/imlbOroepOZUeIxRZBRYzJlXgEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/538194-7560-4456-b45c-ca26c22cfafd/1/imlbOroepOZUeIxRZBRYzJlXgEA.mft
Manifest number: 171E
Signing time: Tue 11 Nov 2025 09:01:51 +0000
Manifest this update: Tue 11 Nov 2025 09:01:51 +0000
Manifest next update: Wed 12 Nov 2025 09:01:51 +0000
Files and hashes: 1: imlbOroepOZUeIxRZBRYzJlXgEA.crl (hash: TnbyUaHkjTUZOZhXSV9BT+t1bLi3N/rT5MHpb35yJ7I=)
2: xXvpynv9RLlNuhH_ScFehFzRtz4.roa (hash: QSdQRW1EuXcu0ntbVvgh9fj5LXlqpMEhY2XBCGX6qp8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/538194-7560-4456-b45c-ca26c22cfafd/1/imlbOroepOZUeIxRZBRYzJlXgEA.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/538194-7560-4456-b45c-ca26c22cfafd/1/imlbOroepOZUeIxRZBRYzJlXgEA.mft
rsync://rpki.ripe.net/repository/DEFAULT/imlbOroepOZUeIxRZBRYzJlXgEA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:26:6c:30:75:79:81:8f:0d:6f:8c:03:2e:29:2f:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a695b3aba1ea4e654788c51641458cc99578040
Validity
Not Before: Nov 11 09:01:51 2025 GMT
Not After : Nov 12 09:01:51 2025 GMT
Subject: CN=d62ee69e1cb42fafc03e96a34cb53fbb9bc7b10e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:fc:a6:39:1d:dd:e3:db:ba:06:4f:31:ed:1a:
b2:02:81:d9:4a:c9:d2:f9:32:34:8e:98:5c:77:8a:
cc:07:96:c5:c3:fb:e4:75:58:4b:8e:60:b6:64:11:
05:9d:a3:98:c9:b7:69:79:fe:4d:ea:da:2c:cc:9b:
96:03:eb:65:f1:24:da:7e:53:8d:f4:d0:b8:4c:9b:
21:33:7c:27:5b:9c:d4:36:3a:67:ac:99:43:ac:60:
71:4a:0f:84:01:b0:e6:26:9a:71:31:5b:ad:e4:31:
bc:05:8c:d5:ee:11:c0:13:d9:16:06:e6:4c:6c:e5:
e6:93:fa:30:85:24:0b:e1:88:b1:ed:36:93:59:78:
3a:f8:6e:0a:3e:84:87:5c:f2:9f:6b:cc:0e:ed:fc:
01:01:b6:14:f0:94:ea:2d:de:e8:5e:a4:28:51:77:
42:2f:a5:df:54:a0:07:89:eb:66:64:31:0c:bd:fb:
07:66:be:d2:db:e7:63:78:b4:a6:78:6b:3e:0a:3c:
1d:6a:1d:5e:d9:b1:70:cf:fc:8a:61:df:45:13:00:
4c:2c:3a:b0:3d:5c:f3:e1:57:f4:7c:83:b4:b2:a4:
8d:4f:26:cb:1e:f2:ee:c8:77:17:b0:0e:0b:51:c7:
da:0d:01:95:9c:fd:e1:8c:10:2e:ff:f1:1f:29:96:
ab:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:2E:E6:9E:1C:B4:2F:AF:C0:3E:96:A3:4C:B5:3F:BB:9B:C7:B1:0E
X509v3 Authority Key Identifier:
keyid:8A:69:5B:3A:BA:1E:A4:E6:54:78:8C:51:64:14:58:CC:99:57:80:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/imlbOroepOZUeIxRZBRYzJlXgEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/538194-7560-4456-b45c-ca26c22cfafd/1/imlbOroepOZUeIxRZBRYzJlXgEA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/538194-7560-4456-b45c-ca26c22cfafd/1/imlbOroepOZUeIxRZBRYzJlXgEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:c8:2d:20:c4:d5:59:92:b6:75:ab:aa:66:c1:81:2d:4a:cb:
01:e4:cc:aa:94:79:52:7d:66:52:18:c6:08:dd:06:2b:18:31:
99:e8:35:49:91:77:d7:03:7c:5b:46:dd:b1:ad:3e:72:e2:35:
ee:45:57:b9:1a:78:77:6c:b5:63:bf:7d:09:50:4e:a6:0f:48:
ed:e8:90:49:da:59:4f:03:a6:94:b3:22:c1:70:b6:07:37:ab:
1d:67:bc:d0:47:c6:d9:9f:f4:14:a2:56:dd:d5:b0:1d:79:7d:
1d:44:66:3c:cc:0f:0c:86:10:2f:99:80:6b:dc:ee:e0:8f:d9:
69:5f:14:df:53:05:d7:63:a6:c7:bb:74:74:c8:4a:89:40:a3:
7b:fc:14:7c:06:65:38:70:c1:b6:c9:c5:95:cf:2c:ba:03:5d:
0c:8a:9c:c6:19:d3:04:5a:a5:a2:2a:83:9f:b6:68:d8:db:9c:
ae:c1:b5:d1:b3:c1:b4:ac:c2:2e:75:e0:95:85:5c:9b:4c:94:
d6:fd:dc:c8:40:b1:31:74:0f:95:bb:b4:29:fe:73:2b:dc:5b:
7b:6b:39:6b:de:64:7f:b0:38:87:43:15:de:88:eb:5d:d3:63:
4c:17:0c:ec:2f:4f:92:70:ac:d8:07:6c:f2:93:cd:45:ec:e6:
3e:8e:63:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:16:18 2025 by rpki-client