Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
File: IM1XQoSmAY5bA2Neml1lj99XNPA.mft (raw, json)
Hash identifier: ev91u+II8PFCsnH/CUfZt2feyeMDeU2qrSttpb3GXDU=
Subject key identifier: 08:F4:3E:71:52:A0:DA:5B:49:B1:FC:8B:14:76:E2:55:3B:70:76:BE
Authority key identifier: 20:CD:57:42:84:A6:01:8E:5B:03:63:5E:9A:5D:65:8F:DF:57:34:F0
Certificate issuer: /CN=20cd574284a6018e5b03635e9a5d658fdf5734f0
Certificate serial: 0198D58354D7DCC871955033B000419CF039
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
Manifest number: 138F
Signing time: Sat 23 Aug 2025 06:00:10 +0000
Manifest this update: Sat 23 Aug 2025 06:00:10 +0000
Manifest next update: Sun 24 Aug 2025 06:00:10 +0000
Files and hashes: 1: IM1XQoSmAY5bA2Neml1lj99XNPA.crl (hash: UgJqNULMGl3sbkadGyHXSZLjxZFI8ZeJDQ40M50LxAY=)
2: MWwIJyVW-xGM8HHmiPSGu90ysVM.roa (hash: 9euJkhmoCQb1LOfkGIPpqowd4pomSIjB0l7bFL7u4Yg=)
3: PiMCmpetvGyOad9hAP8fiU1Qa8U.roa (hash: W2k0p2aLpcmF1pGu+mKgyVPY0tAWg3LNT6+Z7BuBqqY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:54:d7:dc:c8:71:95:50:33:b0:00:41:9c:f0:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20cd574284a6018e5b03635e9a5d658fdf5734f0
Validity
Not Before: Aug 23 06:00:10 2025 GMT
Not After : Aug 24 06:00:10 2025 GMT
Subject: CN=08f43e7152a0da5b49b1fc8b1476e2553b7076be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:24:25:54:08:53:69:1c:b0:7a:55:16:86:ec:
e9:9a:06:c1:66:51:aa:5e:4b:a5:8f:6b:6b:0e:ae:
18:1f:89:b3:87:9f:0a:9d:2d:27:db:b1:27:4f:18:
83:e3:92:49:6d:47:5a:5a:a1:d2:36:ce:95:a4:f3:
e9:aa:69:95:de:fb:26:b2:97:bc:c6:d3:ee:1e:00:
dd:ba:69:fe:49:d2:c8:05:99:b1:89:2e:7e:e7:03:
9f:14:82:31:c0:1c:cf:17:d4:75:1d:42:bf:28:fc:
3b:c4:df:84:fe:d3:2b:9c:5e:0f:b9:eb:16:ef:28:
d8:cf:e2:d6:bd:e2:49:08:4b:41:07:24:00:10:95:
cc:86:36:12:79:5a:83:c8:d1:42:48:f1:87:83:6f:
e2:ee:b5:ad:70:73:c7:ed:e8:e2:70:12:6c:c1:b5:
d3:f0:14:d6:6c:ce:fc:03:89:90:2d:ae:00:86:7a:
70:6f:fb:4e:68:bd:8c:b9:45:87:2b:e1:18:b0:a1:
46:dd:b1:24:8b:bd:ba:53:1f:ae:31:db:8d:16:d4:
e3:d5:43:44:2d:74:7d:79:8b:e1:f2:60:ee:3f:cf:
ae:92:da:8a:4b:4a:8e:00:17:c0:f3:65:ef:3c:3e:
83:47:bd:e7:77:8a:3d:21:bf:b2:9d:1e:7c:3a:37:
3b:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:F4:3E:71:52:A0:DA:5B:49:B1:FC:8B:14:76:E2:55:3B:70:76:BE
X509v3 Authority Key Identifier:
keyid:20:CD:57:42:84:A6:01:8E:5B:03:63:5E:9A:5D:65:8F:DF:57:34:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:ed:d5:47:d8:10:4b:3b:a7:f5:76:aa:c4:61:0a:e7:de:46:
ab:31:e6:99:04:6d:cf:4b:a8:91:aa:9b:ba:7b:53:5d:4c:bc:
64:c1:b1:e8:cc:38:e9:5b:1c:7e:f3:5a:9b:e8:f7:3f:eb:14:
24:da:84:50:61:b5:a7:24:52:22:41:4f:21:55:44:ae:69:25:
40:b1:19:8d:ea:73:72:54:bb:0c:48:7e:e7:b8:32:05:de:4f:
ae:a0:09:f9:b8:74:34:b3:81:8e:69:77:b5:88:32:48:21:3d:
c3:77:e3:52:3e:61:4c:c6:2f:0b:c5:2e:0a:11:b0:76:bf:47:
55:15:32:31:9d:02:9d:b5:79:f5:6f:eb:c6:2a:c1:62:d6:66:
34:56:ac:c4:81:48:79:ca:7f:3b:7f:5e:6f:d9:6a:1a:d3:cf:
32:17:52:2e:f4:68:18:89:b9:1f:65:6e:33:03:c4:b0:8f:24:
c4:13:d3:8c:02:7e:76:27:5d:7a:93:97:ac:89:3e:80:99:7c:
74:97:ab:a2:9f:b6:84:c5:a1:5c:46:91:eb:2d:64:d1:bf:6f:
5c:2b:ba:6d:ff:06:ec:7a:85:3c:1f:d7:0d:3d:d3:5e:39:2f:
6e:6f:fb:f3:47:06:61:5c:65:06:09:af:a4:29:2a:70:ab:aa:
df:4d:4b:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:40:28 2025 by rpki-client