Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.mft
File: immKFPthpoevCmP3xlXAAfZwEoI.mft (raw, json)
Hash identifier: U07iZE/JYfbaHZBqauGk/9FROC22o5rDwvIiB/6zT/8=
Subject key identifier: 3A:A6:18:F7:20:4C:9F:DC:79:06:3A:63:10:BC:88:0D:6D:2C:84:64
Authority key identifier: 8A:69:8A:14:FB:61:A6:87:AF:0A:63:F7:C6:55:C0:01:F6:70:12:82
Certificate issuer: /CN=8a698a14fb61a687af0a63f7c655c001f6701282
Certificate serial: 019922C38F4EE8D04D58D421665073FCF06B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/immKFPthpoevCmP3xlXAAfZwEoI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.mft
Manifest number: 040B
Signing time: Sun 07 Sep 2025 06:01:05 +0000
Manifest this update: Sun 07 Sep 2025 06:01:05 +0000
Manifest next update: Mon 08 Sep 2025 06:01:05 +0000
Files and hashes: 1: P1m93kQnbl9hCPZ7gjvBSz2QduY.roa (hash: Vw3jwkUFPb+4FTO/pTKFTwQSjK1reP+BMicWKiuZXfs=)
2: immKFPthpoevCmP3xlXAAfZwEoI.crl (hash: amHUDm5ymSixCoWXPp/WeC4y3c53Cmyu39aFvSoDJsg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.mft
rsync://rpki.ripe.net/repository/DEFAULT/immKFPthpoevCmP3xlXAAfZwEoI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:8f:4e:e8:d0:4d:58:d4:21:66:50:73:fc:f0:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a698a14fb61a687af0a63f7c655c001f6701282
Validity
Not Before: Sep 7 06:01:05 2025 GMT
Not After : Sep 8 06:01:05 2025 GMT
Subject: CN=3aa618f7204c9fdc79063a6310bc880d6d2c8464
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:26:8f:d8:d1:77:1b:01:f4:70:e4:33:0b:ed:
a3:c0:b9:a2:d4:8a:05:a3:f3:45:31:de:c8:97:68:
3f:e3:24:cb:ae:e9:63:37:b7:03:96:fe:91:a8:70:
80:96:3d:51:65:33:0c:d3:a1:a3:8c:04:e5:2f:d2:
98:7c:83:9b:da:f6:c1:39:b3:75:88:bb:d2:1b:9f:
3f:ec:9c:31:d6:11:b6:b9:d5:29:04:52:c2:75:d0:
d5:a1:e3:1f:bb:61:bb:93:7a:2a:97:b8:4b:29:bd:
c4:99:28:9d:1c:89:96:a7:0e:52:8e:8d:61:ef:d2:
46:c7:22:c9:66:cf:be:62:58:28:ab:c3:5d:cc:31:
4e:dd:0b:25:de:cc:d8:5f:8e:2d:b4:d4:bb:6a:04:
a1:2d:52:05:60:8c:c7:46:58:a5:ab:0c:07:02:81:
6e:bd:28:c5:94:48:14:10:e2:b2:5c:66:5c:aa:fa:
48:35:c8:cc:2e:2b:b2:fb:32:2e:4d:99:60:0c:de:
fc:4e:fa:6d:fd:20:4e:d3:83:f4:52:35:a0:aa:9e:
da:b0:40:ff:29:34:fa:e1:fc:ae:83:2c:19:76:e3:
48:97:37:ad:cc:ed:2e:95:7d:b3:92:e0:3f:28:c1:
63:77:cb:7c:07:d6:1a:0e:6e:04:7d:09:39:bf:2e:
e7:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:A6:18:F7:20:4C:9F:DC:79:06:3A:63:10:BC:88:0D:6D:2C:84:64
X509v3 Authority Key Identifier:
keyid:8A:69:8A:14:FB:61:A6:87:AF:0A:63:F7:C6:55:C0:01:F6:70:12:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/immKFPthpoevCmP3xlXAAfZwEoI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:c8:19:9f:73:ef:e8:e8:ab:c9:23:31:47:90:91:d5:ff:27:
4f:78:65:3a:7f:11:66:57:c0:91:11:2b:2b:76:28:08:cc:db:
07:03:78:9d:51:73:57:f6:e4:ec:88:fd:7b:3a:7a:6c:64:b7:
55:9a:e4:b6:96:ed:d0:4f:76:6a:f6:66:64:52:28:2b:cb:87:
b0:02:42:97:94:68:50:5c:a0:c4:82:83:92:db:d0:f3:c6:49:
da:62:eb:85:c0:3f:55:cc:bc:1a:fe:b3:78:94:34:ec:76:cd:
ee:89:48:0a:07:8c:cf:1a:ab:d0:4e:20:d5:6f:2c:27:3e:90:
8a:13:e8:46:e2:28:c2:7e:35:c2:fa:02:27:7d:da:d8:ea:e4:
f7:36:41:8d:02:1a:60:14:3a:46:79:7b:33:53:e4:18:d5:b9:
9c:66:7f:ce:1b:42:c7:88:ff:50:b6:6a:00:72:9d:07:65:ca:
e7:68:26:17:cf:47:c1:8f:6d:5d:2d:16:12:03:6a:4b:06:c1:
95:b3:40:34:c0:d4:58:4a:ec:cd:ba:af:34:1a:79:f9:4b:11:
a0:39:97:d1:cc:2e:63:7e:f5:50:01:eb:c3:c0:7f:82:20:45:
fa:8a:43:48:d5:7f:d5:9c:1d:bb:61:ac:4b:ba:59:06:f4:69:
6e:d7:b7:a7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkiw49O6NBNWNQhZlBz/PBrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhNjk4YTE0ZmI2MWE2ODdhZjBhNjNmN2M2NTVjMDAxZjY3
MDEyODIwHhcNMjUwOTA3MDYwMTA1WhcNMjUwOTA4MDYwMTA1WjAzMTEwLwYDVQQD
EygzYWE2MThmNzIwNGM5ZmRjNzkwNjNhNjMxMGJjODgwZDZkMmM4NDY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsyaP2NF3GwH0cOQzC+2jwLmi1IoF
o/NFMd7Il2g/4yTLruljN7cDlv6RqHCAlj1RZTMM06GjjATlL9KYfIOb2vbBObN1
iLvSG58/7Jwx1hG2udUpBFLCddDVoeMfu2G7k3oql7hLKb3EmSidHImWpw5Sjo1h
79JGxyLJZs++Ylgoq8NdzDFO3Qsl3szYX44ttNS7agShLVIFYIzHRlilqwwHAoFu
vSjFlEgUEOKyXGZcqvpINcjMLiuy+zIuTZlgDN78Tvpt/SBO04P0UjWgqp7asED/
KTT64fyugywZduNIlzetzO0ulX2zkuA/KMFjd8t8B9YaDm4EfQk5vy7n6QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDqmGPcgTJ/ceQY6YxC8iA1tLIRkMB8GA1UdIwQY
MBaAFIppihT7YaaHrwpj98ZVwAH2cBKCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaW1tS0ZQdGhwb2V2Q21QM3hsWEFBZlp3RW9JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS8zM2QyMjYtN2M0My00YzgzLTk0YWQt
MjE4Mjg5ZDgxYzUzLzEvaW1tS0ZQdGhwb2V2Q21QM3hsWEFBZlp3RW9JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS8zM2QyMjYtN2M0My00YzgzLTk0YWQtMjE4Mjg5ZDgxYzUz
LzEvaW1tS0ZQdGhwb2V2Q21QM3hsWEFBZlp3RW9JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADsgZn3Pv
6OirySMxR5CR1f8nT3hlOn8RZlfAkRErK3YoCMzbBwN4nVFzV/bk7Ij9ezp6bGS3
VZrktpbt0E92avZmZFIoK8uHsAJCl5RoUFygxIKDktvQ88ZJ2mLrhcA/Vcy8Gv6z
eJQ07HbN7olICgeMzxqr0E4g1W8sJz6QihPoRuIown41wvoCJ33a2Ork9zZBjQIa
YBQ6Rnl7M1PkGNW5nGZ/zhtCx4j/ULZqAHKdB2XK52gmF89HwY9tXS0WEgNqSwbB
lbNANMDUWErszbqvNBp5+UsRoDmX0cwuY371UAHrw8B/giBF+opDSNV/1Zwdu2Gs
S7pZBvRpbte3pw==
-----END CERTIFICATE-----
Generated at Sun Sep 7 11:20:47 2025 by rpki-client