Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.mft
File: imgZHKtu8GsyKwsSSHhdSEpFJPM.mft (raw, json)
Hash identifier: 8pADRppwg1OIUFKr56Zb/r20WE5rDLxxZ9PlQVtBNHU=
Subject key identifier: 2F:98:06:2C:F2:17:7D:97:38:D4:23:A5:37:F6:0B:B9:6E:9B:FE:07
Authority key identifier: 8A:68:19:1C:AB:6E:F0:6B:32:2B:0B:12:48:78:5D:48:4A:45:24:F3
Certificate issuer: /CN=8a68191cab6ef06b322b0b1248785d484a4524f3
Certificate serial: 0199FC587DE2ADDB841F97B52A8F3406F5CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/imgZHKtu8GsyKwsSSHhdSEpFJPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.mft
Manifest number: 1131
Signing time: Sun 19 Oct 2025 12:01:21 +0000
Manifest this update: Sun 19 Oct 2025 12:01:21 +0000
Manifest next update: Mon 20 Oct 2025 12:01:21 +0000
Files and hashes: 1: U8GRHKScYdSNdnB2mr1xryjNCyA.roa (hash: gCSVLFeQA2Qb3RyGGtdWNAIaM4Y9u0sDXVDglP6HH5k=)
2: imgZHKtu8GsyKwsSSHhdSEpFJPM.crl (hash: WDh7PyabMyiEP62D35oH/y8z7vL/zq9ZjmVyxbjiglA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.mft
rsync://rpki.ripe.net/repository/DEFAULT/imgZHKtu8GsyKwsSSHhdSEpFJPM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:7d:e2:ad:db:84:1f:97:b5:2a:8f:34:06:f5:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a68191cab6ef06b322b0b1248785d484a4524f3
Validity
Not Before: Oct 19 12:01:21 2025 GMT
Not After : Oct 20 12:01:21 2025 GMT
Subject: CN=2f98062cf2177d9738d423a537f60bb96e9bfe07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:1c:26:7b:8f:38:37:cd:7e:ae:b9:06:d1:f6:
cf:f9:d9:ab:fa:60:bc:f2:95:e2:84:52:51:81:ba:
31:04:f3:d9:57:07:71:14:ee:5e:75:61:4c:20:91:
12:85:24:d1:4f:d8:00:bf:d5:6b:c3:1b:a2:29:21:
b1:a6:d4:af:f8:e9:bf:df:d8:02:f5:53:7c:41:5a:
25:43:49:b4:5a:41:d5:c7:65:35:c7:b3:98:f8:b9:
7a:84:20:6a:a2:9d:de:3c:e5:2b:e9:94:b7:15:86:
80:75:99:4c:7a:85:e0:8b:09:7e:14:46:a2:d1:57:
97:a2:a7:e4:56:39:4c:0a:37:34:46:8c:e6:ad:e7:
31:44:f2:bf:0a:d5:c5:e7:81:d8:bc:52:6b:5b:09:
b2:c4:8d:bf:4f:c9:f9:82:b6:c0:52:d2:ef:b6:cd:
7f:21:07:33:4c:cf:36:e4:c2:c0:02:92:a1:89:0e:
e5:56:1c:9d:2f:fe:79:07:28:4d:2c:28:b8:c2:77:
31:0e:f0:11:90:3a:97:a5:f6:2f:25:a8:9a:28:86:
83:ed:8d:18:08:48:20:dc:97:c1:30:2c:c5:ee:4f:
f4:32:6d:22:1b:96:4b:bc:39:5f:4b:cc:b1:88:3a:
58:c2:1a:77:12:a8:95:ad:85:38:80:e0:49:b2:1a:
7f:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:98:06:2C:F2:17:7D:97:38:D4:23:A5:37:F6:0B:B9:6E:9B:FE:07
X509v3 Authority Key Identifier:
keyid:8A:68:19:1C:AB:6E:F0:6B:32:2B:0B:12:48:78:5D:48:4A:45:24:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/imgZHKtu8GsyKwsSSHhdSEpFJPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:9e:04:44:d4:5b:de:a6:19:5d:c1:f9:94:85:81:a7:95:bf:
42:eb:07:97:e8:1c:f9:04:7b:bb:8b:e9:43:8c:ea:ca:8d:16:
82:bf:d7:df:5c:e7:2f:a8:0c:8b:e0:70:8f:51:16:40:60:5e:
8b:41:82:ff:fb:fa:9c:e4:a6:b1:2c:d9:07:95:90:a5:8c:d5:
0d:40:11:77:39:51:18:f2:0b:a8:90:f1:9a:94:7f:9a:28:71:
e7:81:ea:04:4a:f1:2a:6b:67:8b:f4:27:5f:e5:0b:5c:8a:c8:
19:f6:41:88:1c:fc:a6:e3:07:dd:3f:03:25:2d:74:9f:9c:aa:
ba:7e:d9:55:ad:ba:c3:46:e3:92:ca:f6:f1:f1:fe:9f:05:43:
27:3c:37:e9:8f:30:5c:e1:f8:9b:dc:19:52:a4:2c:72:4d:14:
ff:6e:6b:26:b3:3d:9f:fa:de:31:53:c4:8b:ef:92:6c:36:26:
4d:dc:1e:56:f3:f0:b2:3a:09:01:b4:8a:76:08:df:a8:05:42:
3a:3f:e3:ed:5d:79:cb:63:61:96:f7:e1:4a:d1:b1:df:f0:dd:
cb:79:3b:98:c4:3d:50:ab:0d:1d:78:de:82:32:66:2d:13:84:
48:86:bb:58:3e:8c:e0:cc:2a:8a:e0:88:c3:43:50:08:46:5d:
22:ee:45:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:51:06 2025 by rpki-client