Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/538194-7560-4456-b45c-ca26c22cfafd/1/imlbOroepOZUeIxRZBRYzJlXgEA.mft
File: imlbOroepOZUeIxRZBRYzJlXgEA.mft (raw, json)
Hash identifier: VwOGHcwHlovLIcXdnTGxmrEWrh1Afs6/uf02J6eAxUE=
Subject key identifier: 5D:42:3D:F5:2C:22:D4:8E:0A:9D:1D:EC:86:68:B1:04:28:4B:ED:36
Authority key identifier: 8A:69:5B:3A:BA:1E:A4:E6:54:78:8C:51:64:14:58:CC:99:57:80:40
Certificate issuer: /CN=8a695b3aba1ea4e654788c51641458cc99578040
Certificate serial: 01975E390E2F290583210CE5ADE5B95D0D96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/imlbOroepOZUeIxRZBRYzJlXgEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/538194-7560-4456-b45c-ca26c22cfafd/1/imlbOroepOZUeIxRZBRYzJlXgEA.mft
Manifest number: 1586
Signing time: Wed 11 Jun 2025 09:01:26 +0000
Manifest this update: Wed 11 Jun 2025 09:01:26 +0000
Manifest next update: Thu 12 Jun 2025 09:01:26 +0000
Files and hashes: 1: imlbOroepOZUeIxRZBRYzJlXgEA.crl (hash: NKb/74yoMdyefeNigoXMghuIi6vcRnptr/t3ntz4cF8=)
2: xXvpynv9RLlNuhH_ScFehFzRtz4.roa (hash: QSdQRW1EuXcu0ntbVvgh9fj5LXlqpMEhY2XBCGX6qp8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/538194-7560-4456-b45c-ca26c22cfafd/1/imlbOroepOZUeIxRZBRYzJlXgEA.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/538194-7560-4456-b45c-ca26c22cfafd/1/imlbOroepOZUeIxRZBRYzJlXgEA.mft
rsync://rpki.ripe.net/repository/DEFAULT/imlbOroepOZUeIxRZBRYzJlXgEA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 08:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5e:39:0e:2f:29:05:83:21:0c:e5:ad:e5:b9:5d:0d:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a695b3aba1ea4e654788c51641458cc99578040
Validity
Not Before: Jun 11 09:01:26 2025 GMT
Not After : Jun 12 09:01:26 2025 GMT
Subject: CN=5d423df52c22d48e0a9d1dec8668b104284bed36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:0d:f7:1d:34:c7:b6:bb:5f:dc:74:d2:f0:ce:
6d:89:b3:a1:42:47:67:4b:81:22:d5:11:6a:6c:5c:
3e:35:4e:40:51:a8:cc:51:85:e7:17:2e:7d:53:4a:
62:fc:f3:5f:f1:44:ba:66:9f:2d:ad:a6:36:01:e5:
cb:e6:1c:30:9f:1c:f0:86:53:6f:23:01:21:0b:c3:
1a:3f:a8:8d:7d:4a:91:e3:fe:4e:51:56:ad:3c:f7:
74:cc:18:c1:96:18:7c:95:55:f1:5e:1b:0c:33:ef:
03:5e:4c:9f:b2:3f:eb:5a:83:9f:01:a0:aa:93:4e:
b9:2d:31:77:b6:aa:8f:3f:d0:34:6d:57:0c:0c:f9:
41:76:fd:e1:51:82:8f:ab:ec:6f:ce:e5:4b:98:8a:
6e:56:27:83:d7:19:7f:79:bc:84:29:ad:4d:a8:64:
fc:4a:7f:51:8d:bf:e1:33:8d:f1:67:d1:fc:25:92:
31:24:f2:4f:c8:8d:be:53:44:af:d6:94:16:de:6c:
67:2f:14:d0:c5:60:e1:76:c1:79:b9:89:66:2d:b6:
77:ae:f8:fc:88:20:a5:c2:45:35:08:2b:bf:96:3c:
d3:14:4d:31:12:37:99:66:64:53:8d:1a:83:43:51:
f1:11:dd:88:6c:dd:bb:3b:42:7f:f4:55:66:29:33:
35:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:42:3D:F5:2C:22:D4:8E:0A:9D:1D:EC:86:68:B1:04:28:4B:ED:36
X509v3 Authority Key Identifier:
keyid:8A:69:5B:3A:BA:1E:A4:E6:54:78:8C:51:64:14:58:CC:99:57:80:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/imlbOroepOZUeIxRZBRYzJlXgEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/538194-7560-4456-b45c-ca26c22cfafd/1/imlbOroepOZUeIxRZBRYzJlXgEA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/538194-7560-4456-b45c-ca26c22cfafd/1/imlbOroepOZUeIxRZBRYzJlXgEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:b6:8e:fd:c3:8e:f0:5a:32:0b:f8:01:a6:b6:9e:7f:8c:ca:
c2:0a:4d:0e:5b:b4:1c:d3:df:65:50:76:5b:4d:06:d4:c0:d6:
0d:00:ae:17:6d:b0:e5:2b:82:e1:81:43:32:72:c6:07:da:ee:
a8:8a:e2:a5:8c:74:ce:c2:07:8a:90:8c:20:a7:0f:36:46:46:
98:e6:ac:5d:ef:bb:0c:02:fa:87:c7:3a:be:51:2a:55:09:0c:
ad:40:4a:5f:72:5e:70:43:28:92:df:1f:31:37:29:f2:45:49:
dd:42:a1:66:a9:8c:20:aa:8e:92:97:ba:da:2f:42:bf:10:d9:
c4:6e:9f:c3:db:2b:7a:36:ae:44:bd:57:c4:67:f1:e8:e2:e5:
48:7e:e6:5f:d2:82:30:3d:2b:b4:ed:a9:ea:50:72:b6:39:1b:
3e:c4:2e:1a:71:8f:7c:21:2b:63:67:ba:a8:80:12:55:3c:54:
aa:d6:13:05:6f:61:ee:c7:67:22:8c:f6:b6:d1:28:bb:8b:b7:
4c:46:b1:e5:e6:64:54:e4:9f:2e:19:22:6b:96:06:65:76:0f:
35:84:29:16:2c:fb:67:a5:a0:77:72:01:00:66:45:9b:6c:4f:
2e:e6:18:f2:44:00:db:59:d1:b0:ed:80:2d:df:a2:b9:c5:8e:
c4:43:1f:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 13:50:14 2025 by rpki-client