Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.mft
File: ImidD5E9Kcxj1skmy0Yssn8YRAg.mft (raw, json)
Hash identifier: vmS9zdAW4HMFY8FlZTCcWCRLjQCyHGP5dkucSdgkBHU=
Subject key identifier: 4B:98:60:50:9F:01:7B:7F:33:24:61:AC:59:2E:66:9B:05:3F:B4:2B
Authority key identifier: 22:68:9D:0F:91:3D:29:CC:63:D6:C9:26:CB:46:2C:B2:7F:18:44:08
Certificate issuer: /CN=22689d0f913d29cc63d6c926cb462cb27f184408
Certificate serial: 019A71B7A0FE00BF8B7955F3F34AC768F8DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ImidD5E9Kcxj1skmy0Yssn8YRAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.mft
Manifest number: 171E
Signing time: Tue 11 Nov 2025 07:00:50 +0000
Manifest this update: Tue 11 Nov 2025 07:00:50 +0000
Manifest next update: Wed 12 Nov 2025 07:00:50 +0000
Files and hashes: 1: ImidD5E9Kcxj1skmy0Yssn8YRAg.crl (hash: GdgIKsiY1l/Rvv26okMqCZoTjD+1oPhlxWqnZSjeURI=)
2: PnGxbbyenKRUkbRi2afvxfE-S9E.roa (hash: JW3Jf++XQ8LN1xPVRRNLBe2ZMK/kXqbkLdynsPQmUsw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ImidD5E9Kcxj1skmy0Yssn8YRAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:a0:fe:00:bf:8b:79:55:f3:f3:4a:c7:68:f8:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22689d0f913d29cc63d6c926cb462cb27f184408
Validity
Not Before: Nov 11 07:00:50 2025 GMT
Not After : Nov 12 07:00:50 2025 GMT
Subject: CN=4b9860509f017b7f332461ac592e669b053fb42b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:4b:44:6a:55:3f:cc:1a:fb:5c:ae:4e:16:a9:
97:73:4c:3d:e7:e5:17:3c:b0:5b:20:c1:cd:95:67:
d8:dd:63:ba:8e:db:c4:ac:e7:b7:1f:2a:e9:fb:3b:
fb:49:e1:64:36:fb:42:4e:92:1d:39:1d:1a:e1:69:
83:b6:1d:39:87:75:2a:e7:a8:00:1b:8d:22:6c:9d:
bd:83:d9:ee:be:a4:35:8d:da:2f:19:67:f5:16:56:
1c:1e:2f:fc:c8:fd:e5:17:89:0f:50:1d:1f:20:7c:
a7:70:44:e3:7a:ce:0f:bc:e0:f7:99:80:d2:dd:55:
f2:2d:ed:c3:64:29:8c:39:27:8d:77:f4:df:af:d1:
5b:54:02:28:56:89:05:6d:aa:58:08:e9:c0:7f:48:
c1:9f:d7:cc:91:f1:fa:85:a4:45:5a:ab:81:b3:35:
eb:47:91:0a:fc:19:21:ac:52:ac:a1:14:dc:da:4e:
ba:94:eb:55:af:d6:c1:de:37:6b:71:13:89:86:dc:
8c:9c:44:46:db:17:99:3f:a9:82:50:76:e6:13:cd:
c3:8b:79:de:0c:48:76:ee:76:4d:98:53:f7:b5:a5:
8b:56:b8:9c:c4:1a:9f:1f:9b:ec:25:73:ce:09:b9:
c1:b4:78:0c:c6:52:28:22:d2:2d:4b:09:17:ee:3c:
91:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:98:60:50:9F:01:7B:7F:33:24:61:AC:59:2E:66:9B:05:3F:B4:2B
X509v3 Authority Key Identifier:
keyid:22:68:9D:0F:91:3D:29:CC:63:D6:C9:26:CB:46:2C:B2:7F:18:44:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ImidD5E9Kcxj1skmy0Yssn8YRAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:46:f5:3c:b1:89:83:2d:0a:5c:4b:72:5f:0c:0a:36:07:bc:
ac:55:d6:62:33:04:1c:bd:2e:ca:dd:1d:d0:5c:35:80:ac:bf:
59:1b:07:33:a3:ab:b2:16:a4:51:8e:7f:60:3e:5d:26:34:b6:
b6:98:32:f6:e9:4f:97:a0:51:5f:28:3a:b0:0b:82:e0:bf:c6:
10:b0:16:40:2d:a7:f3:65:49:da:da:9b:8e:f6:62:70:2a:42:
72:18:fc:b6:db:a9:56:af:a2:d3:21:8f:be:47:f6:f1:0c:4d:
f1:8d:a3:ca:b8:6a:e4:26:69:08:d5:5d:f7:6e:ee:fd:48:10:
7a:42:3f:fc:21:c9:2b:64:19:5e:be:be:9e:0f:bf:1f:34:61:
f3:32:a8:ef:b8:6e:e3:17:fd:59:df:ae:20:e3:89:23:a4:62:
61:f4:aa:0e:7b:ed:b6:9b:92:bb:5a:67:36:ed:d8:69:02:bd:
76:97:af:a0:b3:66:0a:c6:d7:32:9c:83:74:b4:95:47:22:ff:
d4:6b:2d:15:d8:6b:ae:58:75:5a:f0:39:3d:4c:6a:10:4f:8f:
9a:bd:bf:a0:09:58:19:bd:24:b3:e3:00:b6:3d:e7:6e:a6:66:
f9:87:f8:5c:13:4f:05:d1:3a:8a:c0:bf:59:86:a4:6e:63:27:
01:e5:dc:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:39:09 2025 by rpki-client