Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/3841fe-dc49-4b9c-af9d-daa23ffb4cbf/1/IMZhH8hUYvC8yscvPfTFNRvlEN4.mft
File: IMZhH8hUYvC8yscvPfTFNRvlEN4.mft (raw, json)
Hash identifier: 2XTkQlob5hHUQS+2OsrPKSnvT1tPNT+IrvNoe1WyXXk=
Subject key identifier: 8D:53:68:A5:C9:33:3B:EF:EF:DC:43:03:B6:DF:0F:A8:D9:FF:BC:DE
Authority key identifier: 20:C6:61:1F:C8:54:62:F0:BC:CA:C7:2F:3D:F4:C5:35:1B:E5:10:DE
Certificate issuer: /CN=20c6611fc85462f0bccac72f3df4c5351be510de
Certificate serial: 01991687F9EE19B3AD993D33025796E24BA1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IMZhH8hUYvC8yscvPfTFNRvlEN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/3841fe-dc49-4b9c-af9d-daa23ffb4cbf/1/IMZhH8hUYvC8yscvPfTFNRvlEN4.mft
Manifest number: 4B
Signing time: Thu 04 Sep 2025 21:00:34 +0000
Manifest this update: Thu 04 Sep 2025 21:00:34 +0000
Manifest next update: Fri 05 Sep 2025 21:00:34 +0000
Files and hashes: 1: IMZhH8hUYvC8yscvPfTFNRvlEN4.crl (hash: MZRmApa3mYMiesrSXtUFdLMbeWYH/NDH7lWPI9Kt9SY=)
2: KGtn_CGJ9WQ0fMr4tUY-3i93MNg.roa (hash: 03IEtTQfIrx28kdxnAxm3chhufsP9RPQAiqL8u3FBkA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/3841fe-dc49-4b9c-af9d-daa23ffb4cbf/1/IMZhH8hUYvC8yscvPfTFNRvlEN4.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/3841fe-dc49-4b9c-af9d-daa23ffb4cbf/1/IMZhH8hUYvC8yscvPfTFNRvlEN4.mft
rsync://rpki.ripe.net/repository/DEFAULT/IMZhH8hUYvC8yscvPfTFNRvlEN4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Sep 2025 21:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:16:87:f9:ee:19:b3:ad:99:3d:33:02:57:96:e2:4b:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20c6611fc85462f0bccac72f3df4c5351be510de
Validity
Not Before: Sep 4 21:00:34 2025 GMT
Not After : Sep 5 21:00:34 2025 GMT
Subject: CN=8d5368a5c9333befefdc4303b6df0fa8d9ffbcde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:08:ed:2a:b7:5b:10:41:0b:66:9c:bd:22:44:
1e:00:0a:37:53:23:4f:f5:84:8f:e9:7f:5c:4d:d2:
6b:4b:95:6c:55:ca:ab:3e:3b:df:a3:c1:ae:aa:83:
f2:80:09:f0:cc:73:5f:98:a8:09:cf:8e:f5:60:45:
eb:16:34:20:ef:c2:e2:f3:46:6a:e6:89:88:ab:84:
a4:a1:48:b4:99:dd:e4:6a:69:f1:ad:ef:ec:1c:d4:
96:91:90:2f:40:ea:f7:25:9e:22:10:22:50:f4:30:
fd:0b:54:2f:77:99:dc:14:6d:b9:59:1a:80:34:df:
28:08:fc:8d:f6:b9:32:a5:e9:b4:20:a8:68:b2:75:
88:3c:bc:65:da:e0:aa:16:20:1c:c9:e6:a7:61:01:
24:b9:95:f3:f3:eb:8b:e9:70:88:b9:1b:6d:5f:32:
23:6a:e3:e8:29:d1:f4:b6:5d:47:c4:de:15:3b:56:
e2:13:52:71:70:f6:2a:55:ba:74:04:06:76:04:dc:
39:a2:cd:8f:38:d6:35:98:e1:ae:e8:f1:ab:e8:ea:
07:33:14:0c:71:6d:ce:23:bf:58:f4:ec:e4:e5:d2:
cc:8d:6c:45:bc:b9:69:88:13:2f:07:3b:f7:8d:83:
5e:4c:ce:66:e2:b2:50:f7:c7:f4:df:0b:9f:b9:d9:
71:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:53:68:A5:C9:33:3B:EF:EF:DC:43:03:B6:DF:0F:A8:D9:FF:BC:DE
X509v3 Authority Key Identifier:
keyid:20:C6:61:1F:C8:54:62:F0:BC:CA:C7:2F:3D:F4:C5:35:1B:E5:10:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IMZhH8hUYvC8yscvPfTFNRvlEN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/3841fe-dc49-4b9c-af9d-daa23ffb4cbf/1/IMZhH8hUYvC8yscvPfTFNRvlEN4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/3841fe-dc49-4b9c-af9d-daa23ffb4cbf/1/IMZhH8hUYvC8yscvPfTFNRvlEN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:38:87:e7:89:fe:a9:6d:d9:5e:f2:0e:16:82:16:a2:a6:15:
79:d2:ad:16:fa:a7:3f:ac:45:ef:d3:90:9f:19:11:a9:50:24:
bf:15:9d:26:bf:95:05:3a:52:61:9b:29:c8:8e:9f:83:d1:44:
f7:53:c2:9e:87:91:e3:3d:50:ce:03:d6:2d:cd:01:e7:f4:e3:
96:4b:65:b2:86:3f:4b:27:99:a9:74:99:a6:d6:75:5e:fc:9b:
7a:36:7e:0d:f6:37:d2:85:00:15:1b:92:06:52:37:29:f8:33:
c9:18:74:f8:8b:b5:d9:50:1e:d6:7b:23:ca:f3:8e:2f:1c:b3:
8e:ec:77:cd:40:6f:80:71:6f:e1:3a:93:94:98:6b:1c:19:d3:
8e:1c:68:13:b1:10:46:2d:36:cd:84:37:6d:2b:9f:76:ae:07:
c8:ff:d8:35:a1:73:00:ea:ad:e8:10:34:d6:95:fa:de:14:a7:
9c:00:55:a1:fd:2a:06:7e:f1:1e:c8:5f:1b:3e:15:0f:cc:1d:
da:37:25:9f:9c:f6:09:3e:d4:7d:31:be:8a:70:b9:73:67:14:
f7:ec:5f:65:25:61:f7:99:3a:4b:83:45:89:6d:65:77:62:c7:
c0:b6:e6:3e:29:bf:bc:27:02:79:5c:6d:66:88:15:03:80:27:
ac:50:64:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 06:10:23 2025 by rpki-client