Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.mft
File: ImidD5E9Kcxj1skmy0Yssn8YRAg.mft (raw, json)
Hash identifier: wgZZKBdG+r9h4h2PXimKMRbV6736U9D24+9H0f+UncY=
Subject key identifier: 40:BC:AC:B0:F9:C4:22:03:7F:19:FB:1C:52:AF:3F:47:22:FC:B2:A0
Authority key identifier: 22:68:9D:0F:91:3D:29:CC:63:D6:C9:26:CB:46:2C:B2:7F:18:44:08
Certificate issuer: /CN=22689d0f913d29cc63d6c926cb462cb27f184408
Certificate serial: 019921B071FE1AACD10F175748AEDCCDABBD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ImidD5E9Kcxj1skmy0Yssn8YRAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.mft
Manifest number: 1670
Signing time: Sun 07 Sep 2025 01:00:35 +0000
Manifest this update: Sun 07 Sep 2025 01:00:35 +0000
Manifest next update: Mon 08 Sep 2025 01:00:35 +0000
Files and hashes: 1: ImidD5E9Kcxj1skmy0Yssn8YRAg.crl (hash: KWmb73MQMJJmlGeJyAxKIN/VbgNjjDHsnTA31KMhKuk=)
2: PnGxbbyenKRUkbRi2afvxfE-S9E.roa (hash: JW3Jf++XQ8LN1xPVRRNLBe2ZMK/kXqbkLdynsPQmUsw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ImidD5E9Kcxj1skmy0Yssn8YRAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b0:71:fe:1a:ac:d1:0f:17:57:48:ae:dc:cd:ab:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22689d0f913d29cc63d6c926cb462cb27f184408
Validity
Not Before: Sep 7 01:00:35 2025 GMT
Not After : Sep 8 01:00:35 2025 GMT
Subject: CN=40bcacb0f9c422037f19fb1c52af3f4722fcb2a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:29:22:40:be:31:40:5e:b4:69:6b:1e:6e:0d:
0c:a1:16:1b:f5:e6:b0:28:e6:02:08:4e:cd:05:ea:
fb:d3:0f:c3:9b:3a:ad:9e:90:b7:97:6b:cd:96:af:
f1:ea:6e:36:5b:ca:10:c9:4b:05:d6:9f:e3:52:cc:
e5:c1:1d:1e:24:fa:68:37:a4:ac:72:22:92:8c:a4:
7f:4e:50:41:d7:6b:db:6a:24:10:0d:56:73:54:62:
64:fd:f1:a3:02:1b:24:eb:41:f7:d6:42:6b:97:31:
26:4f:c9:be:1c:1a:62:39:ce:cd:f0:08:30:78:77:
49:0f:2a:c9:18:09:21:0c:03:be:b1:c7:90:cd:8c:
cb:3f:b5:c3:43:a8:18:ea:e0:bc:18:31:06:34:2d:
05:5b:78:9c:27:2a:2b:02:86:4f:c9:0a:a0:8d:22:
a9:01:45:be:33:96:b0:7a:9e:a0:f8:40:d9:40:4b:
57:ea:9f:78:89:7a:1d:7e:fe:d8:51:fb:f1:da:6e:
da:e1:cf:fc:8f:43:6f:da:63:1c:9a:21:77:d9:d5:
de:6f:75:14:d2:6b:89:0d:be:41:d6:f6:36:ec:cf:
a8:12:d9:01:77:45:65:09:98:c7:76:db:60:55:71:
cc:b6:c4:e0:68:5c:42:98:0b:06:bc:f9:26:bc:29:
84:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:BC:AC:B0:F9:C4:22:03:7F:19:FB:1C:52:AF:3F:47:22:FC:B2:A0
X509v3 Authority Key Identifier:
keyid:22:68:9D:0F:91:3D:29:CC:63:D6:C9:26:CB:46:2C:B2:7F:18:44:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ImidD5E9Kcxj1skmy0Yssn8YRAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:92:fb:c3:c7:cb:f9:08:36:40:b3:da:38:a4:87:33:62:57:
4a:8c:76:e3:32:4c:85:d8:9a:65:f5:67:bd:fa:6d:08:23:c5:
bd:cc:f1:7c:78:a8:e9:54:8d:00:61:c3:92:2d:1b:fb:b9:7f:
e8:e3:1b:36:04:2c:61:49:24:97:f6:90:4f:79:0e:f8:70:c6:
f5:af:0f:f0:16:86:13:b5:17:36:bd:23:e8:2c:b3:de:b5:ef:
9f:26:cc:40:3d:bd:91:59:00:f4:31:a1:99:4d:4e:5e:93:39:
5f:19:b8:3e:34:82:d6:ba:2c:9d:94:6a:2f:bd:7e:84:a8:41:
75:2a:3c:f1:58:15:90:6b:32:2b:6e:70:90:93:6a:22:d4:4a:
a8:d8:95:aa:30:36:5a:27:d9:a1:b9:1e:ef:2f:54:17:8e:ec:
95:51:f2:4d:54:e9:e2:b7:61:12:ab:f0:0d:54:3a:63:57:40:
a0:0e:4f:72:e1:22:36:ad:b2:26:ab:31:d9:a7:c9:66:71:34:
99:19:56:cf:d6:94:75:59:58:96:80:87:47:f1:b7:0e:a0:0f:
48:5e:16:6a:1a:58:bb:a3:1a:4a:d6:08:03:83:51:3c:d4:a7:
a5:3f:49:98:8d:67:00:92:8d:5d:a7:b9:4a:27:4c:32:80:7a:
99:4d:20:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 09:50:49 2025 by rpki-client