Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/538194-7560-4456-b45c-ca26c22cfafd/1/imlbOroepOZUeIxRZBRYzJlXgEA.mft
File: imlbOroepOZUeIxRZBRYzJlXgEA.mft (raw, json)
Hash identifier: oBsmzUqSO9fRjvY6BQ6D3zSV759qNDtrYNwncIBIgvg=
Subject key identifier: B7:DF:BB:D9:15:58:00:9C:01:F4:56:61:42:18:5E:93:E6:CF:E4:C9
Authority key identifier: 8A:69:5B:3A:BA:1E:A4:E6:54:78:8C:51:64:14:58:CC:99:57:80:40
Certificate issuer: /CN=8a695b3aba1ea4e654788c51641458cc99578040
Certificate serial: 0199221F006565641252EDDD4C7BEC285C5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/imlbOroepOZUeIxRZBRYzJlXgEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/538194-7560-4456-b45c-ca26c22cfafd/1/imlbOroepOZUeIxRZBRYzJlXgEA.mft
Manifest number: 1670
Signing time: Sun 07 Sep 2025 03:01:21 +0000
Manifest this update: Sun 07 Sep 2025 03:01:21 +0000
Manifest next update: Mon 08 Sep 2025 03:01:21 +0000
Files and hashes: 1: imlbOroepOZUeIxRZBRYzJlXgEA.crl (hash: InNEJsAXM/Z0N1+mSKcIckzlBgs0TbpGB5Nf+sS+YnA=)
2: xXvpynv9RLlNuhH_ScFehFzRtz4.roa (hash: QSdQRW1EuXcu0ntbVvgh9fj5LXlqpMEhY2XBCGX6qp8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/538194-7560-4456-b45c-ca26c22cfafd/1/imlbOroepOZUeIxRZBRYzJlXgEA.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/538194-7560-4456-b45c-ca26c22cfafd/1/imlbOroepOZUeIxRZBRYzJlXgEA.mft
rsync://rpki.ripe.net/repository/DEFAULT/imlbOroepOZUeIxRZBRYzJlXgEA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1f:00:65:65:64:12:52:ed:dd:4c:7b:ec:28:5c:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a695b3aba1ea4e654788c51641458cc99578040
Validity
Not Before: Sep 7 03:01:21 2025 GMT
Not After : Sep 8 03:01:21 2025 GMT
Subject: CN=b7dfbbd91558009c01f4566142185e93e6cfe4c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:28:4d:1d:be:50:50:48:16:77:66:b3:79:ed:
41:de:a9:37:8c:63:38:63:77:e4:8a:d0:f5:44:91:
6d:8f:6d:c6:9f:f1:08:ca:09:bf:09:73:77:b9:b3:
50:c2:11:ad:24:08:9f:ea:6a:ac:d0:aa:ac:ec:2d:
db:3c:d5:60:26:be:0f:17:0f:ec:ce:76:a3:28:a9:
04:e9:8c:05:f5:17:7f:af:0b:a0:8d:7d:75:23:ee:
ee:83:e4:71:10:0e:48:4e:11:6f:0d:df:e3:75:5f:
c6:f2:47:8e:11:4a:53:84:66:b3:90:d7:83:d3:3a:
aa:1e:4c:d0:08:54:5d:e7:a7:9c:ac:bf:e4:05:76:
42:01:cd:ca:ba:65:5a:82:1c:01:12:ce:26:de:74:
f7:8a:e0:57:b9:f5:e6:f7:1a:b3:3e:a6:72:ee:be:
3f:de:c9:06:c2:82:e4:4e:a3:2a:32:45:34:2b:92:
ef:57:7f:63:2e:e5:70:e6:21:bc:b0:f5:8c:f4:84:
bf:f6:13:65:bf:51:4c:04:11:4c:9c:d5:a8:73:93:
9b:a3:bd:c4:3d:aa:66:83:b2:37:fa:54:92:0b:03:
e5:b4:1a:ce:e3:4d:cb:0f:75:07:a1:89:94:d6:00:
7f:fa:78:fc:07:27:cf:aa:fd:fd:92:f4:c4:f7:0a:
bd:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:DF:BB:D9:15:58:00:9C:01:F4:56:61:42:18:5E:93:E6:CF:E4:C9
X509v3 Authority Key Identifier:
keyid:8A:69:5B:3A:BA:1E:A4:E6:54:78:8C:51:64:14:58:CC:99:57:80:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/imlbOroepOZUeIxRZBRYzJlXgEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/538194-7560-4456-b45c-ca26c22cfafd/1/imlbOroepOZUeIxRZBRYzJlXgEA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/538194-7560-4456-b45c-ca26c22cfafd/1/imlbOroepOZUeIxRZBRYzJlXgEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:a3:b2:3f:22:b0:c8:f2:b8:ff:9f:d0:29:12:3b:9e:1a:d1:
b1:2c:50:33:c0:cb:6a:1e:13:26:6c:d4:59:68:4d:f3:5c:49:
3a:b8:8e:8f:22:cc:d0:7a:ed:0a:7d:aa:98:b6:d6:a8:d3:58:
93:50:2e:26:d0:7d:b0:18:76:5d:c9:f2:9d:31:c4:71:c6:46:
8f:71:89:68:89:4a:2e:91:78:ba:ca:97:5c:46:59:60:59:56:
98:f6:3f:a0:74:70:fb:84:cc:ff:c4:b5:7e:b5:81:01:b1:c0:
df:47:e7:c8:23:4c:7c:b5:bb:8b:5d:38:f2:ef:d8:22:5f:e5:
9e:a4:59:c5:cb:e4:86:83:d3:94:01:d4:4d:ac:77:8c:8a:2f:
da:5c:03:8b:a0:af:e3:96:50:ad:d6:30:8a:6a:49:7d:f8:23:
71:af:ad:86:a3:7c:07:14:27:f3:36:e0:28:43:19:bc:80:14:
19:27:a5:f5:ba:8e:ce:7b:4d:bd:f2:84:a4:0f:70:07:c6:0c:
92:38:7b:5f:62:8a:6d:d8:fd:89:fe:02:30:7e:24:8a:03:ed:
95:50:bf:05:b6:2d:58:5b:da:54:bf:e9:7b:0d:77:3c:01:98:
0d:79:e3:d8:80:7b:23:f9:b6:56:bd:32:28:80:f6:c6:15:e7:
d7:21:a5:2b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkiHwBlZWQSUu3dTHvsKFxeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhNjk1YjNhYmExZWE0ZTY1NDc4OGM1MTY0MTQ1OGNjOTk1
NzgwNDAwHhcNMjUwOTA3MDMwMTIxWhcNMjUwOTA4MDMwMTIxWjAzMTEwLwYDVQQD
EyhiN2RmYmJkOTE1NTgwMDljMDFmNDU2NjE0MjE4NWU5M2U2Y2ZlNGM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4ihNHb5QUEgWd2azee1B3qk3jGM4
Y3fkitD1RJFtj23Gn/EIygm/CXN3ubNQwhGtJAif6mqs0Kqs7C3bPNVgJr4PFw/s
znajKKkE6YwF9Rd/rwugjX11I+7ug+RxEA5IThFvDd/jdV/G8keOEUpThGazkNeD
0zqqHkzQCFRd56ecrL/kBXZCAc3KumVaghwBEs4m3nT3iuBXufXm9xqzPqZy7r4/
3skGwoLkTqMqMkU0K5LvV39jLuVw5iG8sPWM9IS/9hNlv1FMBBFMnNWoc5Obo73E
Papmg7I3+lSSCwPltBrO403LD3UHoYmU1gB/+nj8ByfPqv39kvTE9wq9bQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLffu9kVWACcAfRWYUIYXpPmz+TJMB8GA1UdIwQY
MBaAFIppWzq6HqTmVHiMUWQUWMyZV4BAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaW1sYk9yb2VwT1pVZUl4UlpCUll6SmxYZ0VBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC81MzgxOTQtNzU2MC00NDU2LWI0NWMt
Y2EyNmMyMmNmYWZkLzEvaW1sYk9yb2VwT1pVZUl4UlpCUll6SmxYZ0VBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC81MzgxOTQtNzU2MC00NDU2LWI0NWMtY2EyNmMyMmNmYWZk
LzEvaW1sYk9yb2VwT1pVZUl4UlpCUll6SmxYZ0VBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhaOyPyKw
yPK4/5/QKRI7nhrRsSxQM8DLah4TJmzUWWhN81xJOriOjyLM0HrtCn2qmLbWqNNY
k1AuJtB9sBh2XcnynTHEccZGj3GJaIlKLpF4usqXXEZZYFlWmPY/oHRw+4TM/8S1
frWBAbHA30fnyCNMfLW7i1048u/YIl/lnqRZxcvkhoPTlAHUTax3jIov2lwDi6Cv
45ZQrdYwimpJffgjca+thqN8BxQn8zbgKEMZvIAUGSel9bqOzntNvfKEpA9wB8YM
kjh7X2KKbdj9if4CMH4kigPtlVC/BbYtWFvaVL/pew13PAGYDXnj2IB7I/m2Vr0y
KID2xhXn1yGlKw==
-----END CERTIFICATE-----
Generated at Sun Sep 7 11:20:56 2025 by rpki-client