
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.mft
File: immKFPthpoevCmP3xlXAAfZwEoI.mft (raw, json)
Hash identifier: HbFtVhiVb0WBtleXjftK90qfldRT4G3YLjdpN5OIQzA=
Subject key identifier: 5F:D7:38:53:B0:FB:88:ED:B6:28:A9:FE:A6:7E:B0:3F:29:C8:AF:DA
Authority key identifier: 8A:69:8A:14:FB:61:A6:87:AF:0A:63:F7:C6:55:C0:01:F6:70:12:82
Certificate issuer: /CN=8a698a14fb61a687af0a63f7c655c001f6701282
Certificate serial: 019762B9DEC53B0ED1680095693BA8ADC650
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/immKFPthpoevCmP3xlXAAfZwEoI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.mft
Manifest number: 0323
Signing time: Thu 12 Jun 2025 06:00:37 +0000
Manifest this update: Thu 12 Jun 2025 06:00:37 +0000
Manifest next update: Fri 13 Jun 2025 06:00:37 +0000
Files and hashes: 1: P1m93kQnbl9hCPZ7gjvBSz2QduY.roa (hash: Vw3jwkUFPb+4FTO/pTKFTwQSjK1reP+BMicWKiuZXfs=)
2: immKFPthpoevCmP3xlXAAfZwEoI.crl (hash: /hs+BFdNc/Nxcxji3jIpSvwq2h5GGD74rCOpRXltvuM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.mft
rsync://rpki.ripe.net/repository/DEFAULT/immKFPthpoevCmP3xlXAAfZwEoI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 06:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:62:b9:de:c5:3b:0e:d1:68:00:95:69:3b:a8:ad:c6:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a698a14fb61a687af0a63f7c655c001f6701282
Validity
Not Before: Jun 12 06:00:37 2025 GMT
Not After : Jun 13 06:00:37 2025 GMT
Subject: CN=5fd73853b0fb88edb628a9fea67eb03f29c8afda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:68:f5:5b:1d:f9:13:6b:87:3f:63:3c:db:b6:
6f:26:28:f0:eb:ab:84:95:6e:29:2c:f0:49:f5:75:
cd:5c:85:e7:37:c3:a1:52:1e:c7:e4:a3:88:d0:cd:
47:18:1c:09:d8:42:f1:b7:bf:e0:17:51:90:c3:78:
2e:d8:48:69:e6:c7:b0:4a:03:ce:f0:2d:15:a6:7a:
c9:75:6f:fc:1b:e5:a5:de:c9:20:7d:2d:2d:4c:b3:
79:72:b9:bb:7f:68:cd:5c:37:c3:3c:8d:d1:56:cb:
6b:29:44:d4:6c:9b:03:5e:bb:13:79:09:4d:29:f1:
ca:b3:c6:99:44:bc:67:4f:fe:b9:9a:50:c1:14:18:
f0:6c:00:64:17:5f:53:c6:d7:74:93:8d:5b:db:df:
6a:76:9f:eb:6c:af:48:91:97:19:6c:69:93:db:bf:
68:d4:09:22:2d:c2:e8:a5:a2:19:51:96:d3:a0:e7:
3e:ca:bd:95:87:4d:77:d8:12:92:fe:2c:6d:be:0c:
20:df:ee:1a:0c:0f:93:da:e8:8f:86:8a:31:36:0b:
00:0e:7d:af:e8:ea:4f:e6:45:8a:f4:a0:54:9d:32:
a2:95:20:58:91:10:72:a4:7c:95:40:a3:fe:3e:3b:
c4:cd:6a:bc:be:85:2b:69:9a:ce:1f:83:ee:f5:ae:
6b:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:D7:38:53:B0:FB:88:ED:B6:28:A9:FE:A6:7E:B0:3F:29:C8:AF:DA
X509v3 Authority Key Identifier:
keyid:8A:69:8A:14:FB:61:A6:87:AF:0A:63:F7:C6:55:C0:01:F6:70:12:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/immKFPthpoevCmP3xlXAAfZwEoI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bd:f2:eb:c9:c2:ad:a8:91:55:a9:81:ae:f9:a0:3c:7b:eb:25:
db:e6:50:59:33:20:73:b8:d5:7d:66:f2:ae:e3:08:45:34:5c:
4b:7f:c0:1e:7c:59:44:48:08:f9:e4:32:99:0e:6a:c3:1a:d3:
9c:2f:88:61:5f:dc:23:92:61:41:f8:36:f9:da:ee:77:2a:f3:
61:fc:7c:eb:87:75:59:97:0b:1a:fc:ac:67:fa:bf:3a:c7:a1:
3b:c2:f7:08:69:b0:dd:32:6b:76:52:33:1c:e2:fb:a8:35:81:
35:53:22:73:02:dc:c2:4e:1e:10:88:eb:b9:bf:46:d2:fe:c6:
9c:c3:ec:85:67:0f:94:15:f4:25:f2:0e:36:bc:77:0d:b2:46:
c3:aa:3f:8c:7e:88:8f:20:57:bd:c4:9a:94:ee:c9:38:90:5b:
3a:2d:32:ef:c6:09:10:58:c2:87:0b:38:76:12:f7:2c:fe:e9:
41:97:24:ef:12:7a:37:9f:4d:bc:f1:45:cc:9f:15:37:ee:18:
e4:60:15:72:cd:74:ab:39:34:c7:51:19:76:11:bc:48:94:54:
5c:d4:36:77:ab:46:67:35:f8:d2:4b:38:28:24:d8:df:71:6e:
77:a6:e4:e8:35:4f:05:9f:fc:32:e7:ca:24:50:2c:3b:19:de:
0c:94:b3:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 16:06:40 2025 by rpki-client