Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.mft
File: imgZHKtu8GsyKwsSSHhdSEpFJPM.mft (raw, json)
Hash identifier: P6QQM9wayApFR/2pA1vrxWm1dBKJzqNWgxzWr//mHFQ=
Subject key identifier: 4D:0F:CE:71:3E:DE:A6:49:18:41:58:BB:B3:58:5C:2A:0E:84:AF:94
Authority key identifier: 8A:68:19:1C:AB:6E:F0:6B:32:2B:0B:12:48:78:5D:48:4A:45:24:F3
Certificate issuer: /CN=8a68191cab6ef06b322b0b1248785d484a4524f3
Certificate serial: 0198D4E06B35E080623E44FA056E92276D44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/imgZHKtu8GsyKwsSSHhdSEpFJPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.mft
Manifest number: 1098
Signing time: Sat 23 Aug 2025 03:02:13 +0000
Manifest this update: Sat 23 Aug 2025 03:02:13 +0000
Manifest next update: Sun 24 Aug 2025 03:02:13 +0000
Files and hashes: 1: U8GRHKScYdSNdnB2mr1xryjNCyA.roa (hash: gCSVLFeQA2Qb3RyGGtdWNAIaM4Y9u0sDXVDglP6HH5k=)
2: imgZHKtu8GsyKwsSSHhdSEpFJPM.crl (hash: t8K7Edufc0R3fRL3Kd4i8yWMFMJrLgRuQF/QWGFfWbg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.mft
rsync://rpki.ripe.net/repository/DEFAULT/imgZHKtu8GsyKwsSSHhdSEpFJPM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:6b:35:e0:80:62:3e:44:fa:05:6e:92:27:6d:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a68191cab6ef06b322b0b1248785d484a4524f3
Validity
Not Before: Aug 23 03:02:13 2025 GMT
Not After : Aug 24 03:02:13 2025 GMT
Subject: CN=4d0fce713edea649184158bbb3585c2a0e84af94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:7c:ae:f4:a6:b9:f2:bc:51:e3:dc:a5:2e:b0:
8f:05:69:58:17:68:ca:17:bc:41:bd:3c:21:fe:45:
22:6c:c4:29:93:7f:1b:29:75:5a:cd:f1:84:78:92:
c1:59:42:a7:c4:ec:d0:76:ea:0c:77:52:4c:0d:c6:
7f:64:a6:2e:fe:72:5e:d7:25:0f:d5:83:84:48:6d:
36:65:3a:5c:af:66:51:99:eb:9a:86:99:4a:3e:e3:
19:3f:34:f2:9c:13:cf:9d:d6:55:7a:96:31:f0:86:
50:3f:21:a7:13:e6:91:29:f4:b2:da:a5:e7:b7:1f:
39:3f:7e:34:d0:32:e2:e7:02:1e:f0:96:19:7c:e2:
fb:63:de:d9:1e:41:cd:5f:a8:ae:f2:39:4c:d2:f8:
5e:6c:dd:db:f7:22:24:fb:4c:f1:14:3b:ac:c4:99:
d0:87:66:42:3c:ce:08:cb:11:4a:30:70:95:83:61:
a9:57:d8:47:f5:d5:50:74:1f:90:75:0c:fb:6a:69:
b1:d8:d9:b9:32:ce:c0:09:70:7d:13:22:18:9a:0d:
b6:ee:e7:50:c8:28:e2:91:23:9e:67:2d:5e:4e:40:
83:62:f4:ee:a0:fc:ef:ad:f7:99:82:f0:1c:af:f0:
37:de:82:00:52:7f:c5:08:50:0a:17:57:5a:07:9f:
c9:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:0F:CE:71:3E:DE:A6:49:18:41:58:BB:B3:58:5C:2A:0E:84:AF:94
X509v3 Authority Key Identifier:
keyid:8A:68:19:1C:AB:6E:F0:6B:32:2B:0B:12:48:78:5D:48:4A:45:24:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/imgZHKtu8GsyKwsSSHhdSEpFJPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c9:80:8c:32:b4:ee:fb:75:f0:5f:08:6e:36:b8:6d:c6:f5:29:
ed:dc:f4:66:c2:32:c0:25:a5:99:3f:f8:ee:ef:d4:3c:6a:7a:
04:22:74:6d:a6:ed:b0:cb:18:e1:a5:ce:1a:0e:a9:d5:c1:0d:
39:52:38:18:29:15:82:da:e5:fa:ae:9d:e8:9b:aa:65:e6:44:
09:76:81:1c:6b:e0:b4:c9:18:b3:dc:6d:0b:7e:8b:36:a1:5e:
a8:db:f5:4e:e3:fe:f5:e6:ae:de:f5:1b:0f:8f:13:d0:43:f4:
11:ed:94:b9:05:a9:ea:11:a1:51:a2:a4:02:0b:9a:b2:92:11:
1a:5e:69:87:2c:91:a9:30:17:12:05:45:8f:f7:a6:a0:b1:20:
58:97:9a:5a:65:e5:0e:bf:18:72:3c:3c:1b:a8:96:bb:6e:26:
b1:18:3a:7f:d7:16:87:8f:bd:1c:2e:e1:24:81:cf:a4:ca:8d:
99:0e:84:58:9e:b1:c4:c3:d2:a8:88:7a:b1:cd:02:f4:b3:25:
02:47:1d:07:cd:d7:db:27:19:c2:c5:43:df:e0:05:c3:24:a3:
f9:48:ff:08:c6:b5:be:ae:9e:6a:d0:7c:95:12:48:5e:e0:36:
5c:9b:89:f9:dd:a2:08:ad:1f:56:c5:06:a1:9a:a7:b1:58:f9:
ad:1f:b1:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:06:36 2025 by rpki-client