Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
File: IM1XQoSmAY5bA2Neml1lj99XNPA.mft (raw, json)
Hash identifier: aP/dnLuVW4+MQunADMxKpzwCZvGnpVMI8DrpvqsYdAA=
Subject key identifier: 61:36:05:7C:0E:14:8A:AB:8E:80:94:95:55:38:E5:42:1B:C1:9A:47
Authority key identifier: 20:CD:57:42:84:A6:01:8E:5B:03:63:5E:9A:5D:65:8F:DF:57:34:F0
Certificate issuer: /CN=20cd574284a6018e5b03635e9a5d658fdf5734f0
Certificate serial: 019A21AD83DA738A7ECFDF07BEB67494898F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
Manifest number: 143B
Signing time: Sun 26 Oct 2025 18:00:10 +0000
Manifest this update: Sun 26 Oct 2025 18:00:10 +0000
Manifest next update: Mon 27 Oct 2025 18:00:10 +0000
Files and hashes: 1: IM1XQoSmAY5bA2Neml1lj99XNPA.crl (hash: gY00vwaq5cuy4V6OT1/4b+uHC8RHwezgi7yKMGUWyuM=)
2: MWwIJyVW-xGM8HHmiPSGu90ysVM.roa (hash: 9euJkhmoCQb1LOfkGIPpqowd4pomSIjB0l7bFL7u4Yg=)
3: PiMCmpetvGyOad9hAP8fiU1Qa8U.roa (hash: W2k0p2aLpcmF1pGu+mKgyVPY0tAWg3LNT6+Z7BuBqqY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:21:ad:83:da:73:8a:7e:cf:df:07:be:b6:74:94:89:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20cd574284a6018e5b03635e9a5d658fdf5734f0
Validity
Not Before: Oct 26 18:00:10 2025 GMT
Not After : Oct 27 18:00:10 2025 GMT
Subject: CN=6136057c0e148aab8e8094955538e5421bc19a47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:44:4e:5b:8e:4d:e8:f0:1a:d8:ae:47:ba:97:
18:c5:ce:49:c0:dc:67:a7:3d:85:30:4b:df:69:bd:
0e:2b:77:20:bd:4a:9b:36:a9:b4:be:9f:35:19:c2:
9c:02:4a:a2:97:95:9f:4a:2a:1e:1f:66:40:a2:d6:
05:da:a9:61:29:43:1a:20:6a:26:68:e7:47:26:e5:
b8:07:5e:26:a3:c3:26:53:e0:0e:7f:55:e5:bf:c2:
bc:3d:2e:2a:7f:d6:4d:a3:84:af:bd:57:77:f4:04:
29:76:5b:9f:92:49:9e:fe:3c:69:36:a9:da:33:4c:
3b:f7:8e:e0:0e:7e:ef:08:67:24:2d:00:aa:65:0f:
7c:4f:4b:76:c1:a2:2c:34:3e:63:48:61:ee:01:4a:
8d:da:cc:3b:3c:87:ed:82:29:ea:ef:40:13:e8:71:
9e:e9:8f:ac:64:11:62:44:c4:6c:60:e9:49:d2:6c:
c7:e0:aa:87:34:d8:ba:d1:2f:b5:e6:3d:f3:26:78:
9a:04:fa:02:1f:e0:e2:94:62:73:02:41:ef:50:b1:
33:57:6f:f9:96:4a:62:7b:e1:3d:ab:e8:ed:59:a8:
df:0e:d8:d7:41:45:37:98:27:cb:31:8c:19:5a:82:
7f:82:88:23:26:a4:14:70:14:96:5b:68:6f:62:fd:
75:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:36:05:7C:0E:14:8A:AB:8E:80:94:95:55:38:E5:42:1B:C1:9A:47
X509v3 Authority Key Identifier:
keyid:20:CD:57:42:84:A6:01:8E:5B:03:63:5E:9A:5D:65:8F:DF:57:34:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c5:38:cb:19:60:6b:b8:1c:ef:d1:81:0c:5b:d7:19:59:df:0a:
68:69:f9:3f:f6:13:f0:01:e7:a4:30:a0:3c:8c:d0:54:10:61:
65:a7:8a:da:e6:2e:a2:71:94:ee:44:f2:4d:d2:d4:d7:89:04:
b5:d0:c2:b3:c9:6d:13:f5:e8:19:d4:6f:5c:03:d8:b2:02:04:
00:73:25:7d:81:1d:0c:52:76:c2:84:77:62:cf:08:f7:02:87:
cc:cc:00:00:20:6f:94:51:6f:ee:cc:85:68:0e:24:85:64:5f:
b2:c9:90:6e:1a:1b:2c:d9:84:8d:17:db:a3:71:6c:d8:c0:f4:
ca:9c:25:ab:b5:58:0e:2e:5f:32:40:b6:f6:39:d4:64:1b:31:
55:8c:d2:cf:0c:dd:99:cf:18:cb:cd:a3:8f:d9:8c:37:11:30:
f1:3a:82:3e:20:9f:4c:a9:c2:59:8b:0a:fb:29:59:5b:6a:24:
76:24:f3:06:ba:f2:01:94:44:4d:65:d4:da:7d:20:b4:a0:ea:
a8:92:d9:7e:7c:6f:f3:fa:ee:29:7d:86:56:5a:f1:4d:26:14:
ba:64:c9:d9:7c:1e:dd:1d:05:3d:12:0c:a3:89:ae:7c:23:de:
04:90:b1:2d:8b:69:73:bc:96:af:98:77:d7:06:b8:2d:66:ed:
04:b6:6b:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 04:37:48 2025 by rpki-client