Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.mft
File: ImidD5E9Kcxj1skmy0Yssn8YRAg.mft (raw, json)
Hash identifier: QyY/ZZF8tUZIg34RzElDPnUB3CgqrU2iUzYHV5r8qDg=
Subject key identifier: BB:A3:AD:A2:4C:93:34:5E:BE:B8:74:B7:A9:AA:A5:EB:AD:59:66:6C
Authority key identifier: 22:68:9D:0F:91:3D:29:CC:63:D6:C9:26:CB:46:2C:B2:7F:18:44:08
Certificate issuer: /CN=22689d0f913d29cc63d6c926cb462cb27f184408
Certificate serial: 0197C9F1A57ADA798E0D808D2EB5147E9980
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ImidD5E9Kcxj1skmy0Yssn8YRAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.mft
Manifest number: 15BE
Signing time: Wed 02 Jul 2025 07:02:26 +0000
Manifest this update: Wed 02 Jul 2025 07:02:26 +0000
Manifest next update: Thu 03 Jul 2025 07:02:26 +0000
Files and hashes: 1: ImidD5E9Kcxj1skmy0Yssn8YRAg.crl (hash: sj5NuX+l1fayHVsP9cWf5RDMJr1ClEfrguMhboZKPjA=)
2: PnGxbbyenKRUkbRi2afvxfE-S9E.roa (hash: JW3Jf++XQ8LN1xPVRRNLBe2ZMK/kXqbkLdynsPQmUsw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ImidD5E9Kcxj1skmy0Yssn8YRAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 02:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c9:f1:a5:7a:da:79:8e:0d:80:8d:2e:b5:14:7e:99:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22689d0f913d29cc63d6c926cb462cb27f184408
Validity
Not Before: Jul 2 07:02:26 2025 GMT
Not After : Jul 3 07:02:26 2025 GMT
Subject: CN=bba3ada24c93345ebeb874b7a9aaa5ebad59666c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:fe:a9:00:1a:19:af:eb:b7:a6:3c:02:a1:c3:
de:67:1b:98:8d:9d:9b:e0:b1:4a:de:6e:34:67:ae:
16:21:70:4c:a6:7d:51:4b:ff:2a:ef:71:1e:2b:9f:
0a:13:5c:2d:18:6a:28:06:1a:92:74:e2:e8:52:83:
29:ae:52:74:15:99:86:a7:b2:7b:5d:1e:80:c5:06:
34:55:c3:7a:fe:07:37:3b:e8:5b:ed:b4:16:d4:9a:
48:d8:e7:87:6a:81:94:c9:6a:2f:ad:9a:15:52:8f:
8f:47:d7:9f:b4:c1:d0:77:94:dc:80:15:18:b1:01:
05:ae:9f:50:8a:3c:ba:d3:bf:09:17:aa:60:78:30:
a0:73:04:fd:4d:4b:56:52:d4:93:b0:30:70:d6:0a:
b1:53:25:be:62:d1:b3:c4:73:f3:22:0f:22:39:2c:
8a:6e:90:31:a3:3b:a1:17:ba:82:0f:99:3f:89:e6:
82:04:a4:a0:5d:32:31:1d:cf:a2:ad:99:4f:e7:56:
c5:28:c3:1f:26:df:83:56:ca:65:db:b3:13:5e:65:
41:5a:80:53:6a:22:56:5a:72:66:bc:ec:96:45:97:
50:d6:ca:f2:46:dc:bc:f9:78:12:7f:10:bf:80:4e:
2f:cb:c3:d3:69:94:04:81:0c:2e:47:4f:78:08:86:
b6:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:A3:AD:A2:4C:93:34:5E:BE:B8:74:B7:A9:AA:A5:EB:AD:59:66:6C
X509v3 Authority Key Identifier:
keyid:22:68:9D:0F:91:3D:29:CC:63:D6:C9:26:CB:46:2C:B2:7F:18:44:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ImidD5E9Kcxj1skmy0Yssn8YRAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:99:dc:65:53:6e:40:71:7a:6d:f2:49:7b:ba:10:71:97:00:
2b:fd:d5:f4:a4:cb:a6:9a:fc:88:18:a5:46:96:1b:1d:0f:16:
8f:b3:0b:8b:d4:5e:37:ce:ba:09:5a:33:d5:2f:75:56:58:2a:
c8:9e:21:8f:b2:4b:5d:60:c5:70:88:d4:df:b6:5d:aa:98:73:
4e:1b:34:b3:24:46:2f:1d:08:4f:79:c4:f1:0e:46:79:6c:fe:
dd:fe:e2:35:98:05:9b:97:48:e5:6e:1f:da:f1:cc:3c:3a:e5:
14:97:5a:18:f6:f0:3a:38:fa:93:20:49:e5:73:f6:96:66:fd:
bc:f3:fd:27:ee:74:66:7f:55:a5:4b:3c:94:9b:db:05:91:18:
f9:99:66:4d:a7:a8:d3:1d:1e:17:25:17:0b:f5:0a:b4:1f:de:
a6:8a:1c:26:ac:1f:df:cc:79:f1:8f:02:50:c8:82:8b:cd:81:
47:50:bb:c6:cf:cc:4c:93:40:3e:8e:5b:aa:6b:9a:58:78:eb:
d6:28:43:85:31:43:c5:0e:80:07:bf:e3:17:b3:9d:43:98:28:
8d:7d:2c:f1:9a:79:32:40:8d:66:82:2b:c1:b4:29:b5:d8:4e:
12:ff:4a:f4:b4:d0:f3:51:86:95:27:01:4a:06:97:0d:d4:12:
c3:38:4f:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 10:48:24 2025 by rpki-client