Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.mft
File: imgZHKtu8GsyKwsSSHhdSEpFJPM.mft (raw, json)
Hash identifier: ufcRo+kXUnSIKaiX9KLHIPGhLsRav2JFsjSRMSPAITI=
Subject key identifier: 5C:E5:79:53:67:56:39:80:F6:AD:4A:9F:28:85:05:39:06:18:1B:64
Authority key identifier: 8A:68:19:1C:AB:6E:F0:6B:32:2B:0B:12:48:78:5D:48:4A:45:24:F3
Certificate issuer: /CN=8a68191cab6ef06b322b0b1248785d484a4524f3
Certificate serial: 01991688BCCF307B62931B4EE7EF255981DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/imgZHKtu8GsyKwsSSHhdSEpFJPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.mft
Manifest number: 10BA
Signing time: Thu 04 Sep 2025 21:01:23 +0000
Manifest this update: Thu 04 Sep 2025 21:01:23 +0000
Manifest next update: Fri 05 Sep 2025 21:01:23 +0000
Files and hashes: 1: U8GRHKScYdSNdnB2mr1xryjNCyA.roa (hash: gCSVLFeQA2Qb3RyGGtdWNAIaM4Y9u0sDXVDglP6HH5k=)
2: imgZHKtu8GsyKwsSSHhdSEpFJPM.crl (hash: c5w9glvi69whzgPcydT/ZgPL9uItymyp1q08L4tVGuU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.mft
rsync://rpki.ripe.net/repository/DEFAULT/imgZHKtu8GsyKwsSSHhdSEpFJPM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Sep 2025 19:46:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:16:88:bc:cf:30:7b:62:93:1b:4e:e7:ef:25:59:81:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a68191cab6ef06b322b0b1248785d484a4524f3
Validity
Not Before: Sep 4 21:01:23 2025 GMT
Not After : Sep 5 21:01:23 2025 GMT
Subject: CN=5ce5795367563980f6ad4a9f2885053906181b64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:26:f6:c5:ef:33:f5:42:6e:e0:40:3e:cd:64:
f7:5e:a6:b7:06:14:a7:c6:20:84:af:18:d3:49:59:
3d:c9:c1:ba:ad:c6:87:57:29:60:58:0c:13:42:4a:
46:95:82:9c:8e:5c:12:39:8c:89:44:c9:a6:41:a5:
14:4a:27:3e:7e:d5:67:07:61:d5:1b:26:a9:ef:1d:
74:ed:dd:a4:1f:19:5d:e7:d7:6b:76:d8:64:91:47:
23:36:3f:e9:73:f5:2e:d8:57:8a:ba:7f:3a:a3:ea:
e0:10:7c:41:bc:43:b9:9a:03:ca:19:84:84:d0:08:
8e:0a:8c:40:ce:e8:b9:36:8b:d7:91:6b:0a:13:03:
37:41:9e:c4:3e:de:17:92:8e:86:1c:ce:7a:cd:5b:
cb:ce:fa:ee:03:a2:3e:3d:a3:a0:99:b7:64:83:bf:
8f:82:c8:41:7f:2a:98:5d:f5:b8:81:d2:6e:0c:15:
0d:76:4a:0b:91:e2:b2:59:da:14:16:a1:ed:f8:75:
85:f6:dc:f8:3b:a6:1f:16:8f:b6:1b:45:3e:11:96:
69:5e:33:f2:ef:1e:d6:7c:70:18:6a:d5:5b:35:3c:
f6:c0:57:dc:50:ca:9f:86:25:0e:04:5c:1a:ea:01:
ec:5e:9a:ec:b1:d7:3d:ea:f4:15:b1:ca:eb:a5:c7:
74:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:E5:79:53:67:56:39:80:F6:AD:4A:9F:28:85:05:39:06:18:1B:64
X509v3 Authority Key Identifier:
keyid:8A:68:19:1C:AB:6E:F0:6B:32:2B:0B:12:48:78:5D:48:4A:45:24:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/imgZHKtu8GsyKwsSSHhdSEpFJPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:a1:ca:7c:d2:22:17:2d:c6:3c:84:07:d4:a3:d2:39:aa:72:
2f:e8:7e:3f:f5:c5:b3:77:57:11:a0:07:cf:4a:f5:c8:4d:9e:
ec:c4:94:c7:57:fc:db:06:19:e3:8f:38:21:7e:68:18:c3:43:
4d:33:64:86:c6:d7:4c:6b:19:ac:2f:62:91:03:bf:12:c5:b7:
79:21:95:98:49:fc:e2:66:40:ac:95:10:2e:e4:e7:31:43:67:
26:f9:82:6f:69:6d:82:65:67:1c:2f:56:78:3c:13:6c:1f:26:
c3:46:92:ae:bc:9c:ce:10:78:51:94:17:78:6f:35:e2:7f:8d:
b1:98:b3:15:af:27:fb:30:74:43:f0:1d:75:f2:e9:8c:06:a4:
b4:5e:c8:28:46:b3:38:e0:de:6b:d8:18:bb:85:f9:8a:94:e5:
90:f5:ec:a1:43:8f:05:61:73:15:04:01:38:60:03:cc:dc:7d:
86:cb:00:9a:50:5f:93:e2:00:4f:09:eb:0f:47:97:c6:93:d9:
bc:ea:fe:b2:63:b9:fe:56:4f:b4:c5:de:50:db:0c:2e:54:03:
a5:4f:1c:3b:f5:e9:0e:4c:70:d9:5b:b2:a9:cf:16:90:da:70:
6c:25:a7:7b:48:bc:22:3d:43:84:54:a2:e6:ff:3b:8c:7f:98:
1c:26:d7:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 04:27:17 2025 by rpki-client