Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.mft
File: immKFPthpoevCmP3xlXAAfZwEoI.mft (raw, json)
Hash identifier: ulzeDQm4+umeof00lfwSg0mvC1Y1zWPxBTXB+xnl8xw=
Subject key identifier: 75:9F:C9:AD:14:A5:7D:AA:36:A2:DD:50:4D:FB:30:85:D9:3C:41:25
Authority key identifier: 8A:69:8A:14:FB:61:A6:87:AF:0A:63:F7:C6:55:C0:01:F6:70:12:82
Certificate issuer: /CN=8a698a14fb61a687af0a63f7c655c001f6701282
Certificate serial: 01976C61F870D4E0EFEB79B1CEE25E33AA99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/immKFPthpoevCmP3xlXAAfZwEoI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.mft
Manifest number: 0328
Signing time: Sat 14 Jun 2025 03:00:49 +0000
Manifest this update: Sat 14 Jun 2025 03:00:49 +0000
Manifest next update: Sun 15 Jun 2025 03:00:49 +0000
Files and hashes: 1: P1m93kQnbl9hCPZ7gjvBSz2QduY.roa (hash: Vw3jwkUFPb+4FTO/pTKFTwQSjK1reP+BMicWKiuZXfs=)
2: immKFPthpoevCmP3xlXAAfZwEoI.crl (hash: QFCTa03j6Th3ImY6eTDGY4/3Yzg3X7XUtsyUZVaY3Wo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.mft
rsync://rpki.ripe.net/repository/DEFAULT/immKFPthpoevCmP3xlXAAfZwEoI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:61:f8:70:d4:e0:ef:eb:79:b1:ce:e2:5e:33:aa:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a698a14fb61a687af0a63f7c655c001f6701282
Validity
Not Before: Jun 14 03:00:49 2025 GMT
Not After : Jun 15 03:00:49 2025 GMT
Subject: CN=759fc9ad14a57daa36a2dd504dfb3085d93c4125
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:25:f1:46:bf:59:a3:d7:1a:be:bb:b3:bd:f6:
d9:74:36:bf:54:fd:56:04:dc:e6:ec:93:d7:73:c2:
4e:14:4c:65:c2:87:98:98:ae:76:f4:d0:6d:ef:63:
0c:55:0e:9d:98:01:41:9b:a0:ae:3a:e3:d7:8c:1e:
1d:c9:f8:44:56:fc:77:41:c3:7b:ad:dc:10:48:b5:
a4:d1:0b:0f:16:6e:ce:e2:9b:8a:82:00:94:ad:aa:
16:35:6a:d9:b4:f5:1b:77:79:28:8d:ad:b2:03:7b:
18:64:f7:56:49:ce:4f:1a:65:f3:4b:d1:83:91:64:
f3:bc:02:aa:74:5c:5a:d8:cb:3c:2c:6b:cd:f1:fc:
b3:2c:f4:ed:b3:4c:82:61:f3:1d:d7:b1:43:c9:1a:
04:ea:cf:28:b5:6e:72:f3:bd:ba:a7:67:21:5d:a0:
10:f8:39:ed:b1:61:9f:c8:6f:79:ff:82:a3:33:d2:
66:4b:af:4a:5a:ea:ce:65:e8:74:a8:9d:fd:a0:fe:
03:58:7d:d7:5a:76:ab:c2:81:1f:3b:1f:fd:58:63:
0d:67:10:a4:77:84:7d:97:e3:44:5c:7a:e7:56:af:
cf:3a:bb:d0:a0:5f:5f:bb:be:a2:7d:52:65:0e:82:
6b:a5:95:50:d9:ac:d9:90:4d:63:55:d6:ec:22:eb:
c0:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:9F:C9:AD:14:A5:7D:AA:36:A2:DD:50:4D:FB:30:85:D9:3C:41:25
X509v3 Authority Key Identifier:
keyid:8A:69:8A:14:FB:61:A6:87:AF:0A:63:F7:C6:55:C0:01:F6:70:12:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/immKFPthpoevCmP3xlXAAfZwEoI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:44:4f:39:81:17:4d:db:8c:18:a6:b8:3e:e5:d1:ad:2d:89:
1f:9e:0e:c2:ea:1e:1f:02:7d:39:46:2b:12:52:8f:cb:28:88:
8f:b0:53:27:71:db:14:53:84:aa:ba:2b:da:24:dd:7a:c2:09:
b8:27:7f:56:62:57:4d:49:df:3e:5c:38:b8:a3:ef:9e:52:a9:
01:23:33:d9:fc:2c:2b:1e:91:be:24:05:72:87:1c:b0:3e:b7:
83:3f:4e:a8:e1:6e:f2:29:78:48:be:a6:5d:fd:13:ba:1d:c3:
fc:3b:83:8f:1b:ad:5f:fa:12:d9:5c:b4:1e:d7:ef:df:e0:fd:
7e:90:7a:57:f2:6f:cd:ab:3b:87:de:8f:7f:e3:2a:92:bb:dd:
45:2e:22:59:e7:9a:38:93:eb:17:fd:13:41:2f:7a:e9:45:61:
df:07:3d:ee:06:8d:65:6a:30:8b:ae:f1:1c:9a:d8:a4:1a:e8:
a8:a6:4f:cc:ca:a0:5f:b3:07:9c:3b:4c:2d:3b:ed:58:22:71:
97:2f:35:c5:f9:f5:0a:1f:e1:6e:20:60:1c:d4:f1:8d:01:3c:
14:89:f8:7c:24:81:9a:7e:ed:8a:3f:6d:d5:8e:ee:69:a2:35:
5b:bc:30:d9:31:ed:6a:00:20:10:6a:ac:b5:2a:a6:4c:10:fe:
79:51:9f:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 13:02:53 2025 by rpki-client