
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.mft
File: immKFPthpoevCmP3xlXAAfZwEoI.mft (raw, json)
Hash identifier: Avv9uXbfEpqKcfiIZn4YksUFQWxInWIDCZZ83FyapsE=
Subject key identifier: 3C:7C:A7:41:14:79:AC:45:01:A7:92:74:0D:87:5A:7A:F4:91:90:98
Authority key identifier: 8A:69:8A:14:FB:61:A6:87:AF:0A:63:F7:C6:55:C0:01:F6:70:12:82
Certificate issuer: /CN=8a698a14fb61a687af0a63f7c655c001f6701282
Certificate serial: 019753474AEBA76C870D5ABD48F45E5D0F56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/immKFPthpoevCmP3xlXAAfZwEoI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.mft
Manifest number: 031B
Signing time: Mon 09 Jun 2025 06:01:10 +0000
Manifest this update: Mon 09 Jun 2025 06:01:10 +0000
Manifest next update: Tue 10 Jun 2025 06:01:10 +0000
Files and hashes: 1: P1m93kQnbl9hCPZ7gjvBSz2QduY.roa (hash: Vw3jwkUFPb+4FTO/pTKFTwQSjK1reP+BMicWKiuZXfs=)
2: immKFPthpoevCmP3xlXAAfZwEoI.crl (hash: kdc+AphZC08QLsyC4Nhnq0JuIrDXWUpj1h+6mpg/bmw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.mft
rsync://rpki.ripe.net/repository/DEFAULT/immKFPthpoevCmP3xlXAAfZwEoI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 06:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:53:47:4a:eb:a7:6c:87:0d:5a:bd:48:f4:5e:5d:0f:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a698a14fb61a687af0a63f7c655c001f6701282
Validity
Not Before: Jun 9 06:01:10 2025 GMT
Not After : Jun 10 06:01:10 2025 GMT
Subject: CN=3c7ca7411479ac4501a792740d875a7af4919098
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b0:1e:5d:6c:7a:95:fe:a7:22:ce:18:43:0b:
6b:91:0a:c2:42:50:04:2e:0a:74:9d:4a:24:71:99:
85:6f:9b:6d:40:7a:34:9c:3d:51:c9:84:c1:e5:8a:
80:9f:8c:35:03:39:c7:e6:cf:de:79:65:97:73:84:
83:d6:31:17:b7:0d:e4:b7:58:9c:42:d2:5f:be:b5:
81:af:bb:cc:c6:76:a4:1b:5b:71:c7:d7:fb:01:0b:
84:06:a8:0a:43:68:6b:ac:79:f3:6b:10:4e:da:93:
a8:63:a1:67:89:e4:d4:90:3f:8c:f2:92:24:93:ea:
a2:37:75:00:fe:7b:9f:1c:dd:fc:2e:3e:cb:67:a5:
6e:89:7a:61:ed:3d:cd:9b:4d:dc:52:a4:29:d7:a2:
58:37:6c:77:8c:63:d4:92:41:fe:5d:cb:ee:61:e1:
b2:a8:12:09:7e:1f:0d:39:ac:dd:e7:a5:5f:59:79:
a4:63:d1:bd:45:94:2c:d5:03:e8:7e:39:ee:e7:4d:
58:5b:2d:b2:a7:75:8c:48:d8:f7:8a:f7:69:81:f9:
ff:9b:08:40:fb:d6:3f:5a:8f:0b:2c:2b:d6:e5:b8:
23:87:d8:c1:cc:a3:90:e6:11:6e:a3:0f:c4:fc:63:
72:53:f3:c3:b2:68:7c:6e:52:39:4f:3a:7c:2b:e5:
6b:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:7C:A7:41:14:79:AC:45:01:A7:92:74:0D:87:5A:7A:F4:91:90:98
X509v3 Authority Key Identifier:
keyid:8A:69:8A:14:FB:61:A6:87:AF:0A:63:F7:C6:55:C0:01:F6:70:12:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/immKFPthpoevCmP3xlXAAfZwEoI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:dc:fa:16:6c:8d:cc:3a:d5:ac:57:d3:fd:a9:19:63:a5:1d:
f7:29:8a:98:29:66:e5:7c:81:c0:28:8b:3a:1e:9f:70:a1:da:
ac:01:c4:b1:be:52:7b:23:54:50:96:78:ff:7f:f1:2e:f7:ef:
ef:20:3c:2a:b1:4a:03:e7:19:0c:ba:d4:35:4d:20:04:33:bc:
ab:80:2f:d8:ee:82:02:2c:80:e5:d1:b1:13:51:fd:f5:44:79:
2c:2c:f1:ff:40:69:1b:00:87:35:03:e5:d9:a6:be:77:ac:0a:
d4:7d:37:67:11:7a:46:d0:12:fb:f8:cc:30:89:9f:c7:99:ab:
40:40:2c:06:f3:93:a9:63:69:8b:49:55:d0:73:e3:bb:b0:a8:
25:2c:c9:ee:3b:d9:67:24:6c:b4:5b:d5:f0:64:a0:23:67:12:
7b:ce:ec:06:b5:62:d2:80:2c:ff:99:67:b6:9d:6c:ba:07:14:
d9:67:31:12:fd:3a:69:14:9e:8a:2c:41:19:05:2d:0d:ed:7d:
ce:b9:ee:c1:1e:92:39:89:b4:c1:30:ab:9b:fc:a2:05:53:c6:
25:b6:c9:41:be:05:28:14:e9:93:71:a0:7c:35:bd:53:84:09:
e9:d3:94:b2:a8:67:55:a7:64:11:fe:b1:11:31:58:e1:60:d7:
7e:09:ab:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 13:32:22 2025 by rpki-client