Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/19269c-9d5b-4f09-97eb-3a28f8a9c707/1/IMz236cJVzqCG2PEy2lWBf0maAs.mft
File: IMz236cJVzqCG2PEy2lWBf0maAs.mft (raw, json)
Hash identifier: MuLysUZBo0v8TQc13+usr9OYoOfwURUeyM1dHKG6i+o=
Subject key identifier: 31:41:DF:34:4F:1C:AD:A4:6A:CD:27:8A:CF:05:09:C4:64:E2:80:79
Authority key identifier: 20:CC:F6:DF:A7:09:57:3A:82:1B:63:C4:CB:69:56:05:FD:26:68:0B
Certificate issuer: /CN=20ccf6dfa709573a821b63c4cb695605fd26680b
Certificate serial: 0199FFC8BC05F8594BC96AC753804D3174F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IMz236cJVzqCG2PEy2lWBf0maAs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/19269c-9d5b-4f09-97eb-3a28f8a9c707/1/IMz236cJVzqCG2PEy2lWBf0maAs.mft
Manifest number: 03EA
Signing time: Mon 20 Oct 2025 04:02:49 +0000
Manifest this update: Mon 20 Oct 2025 04:02:49 +0000
Manifest next update: Tue 21 Oct 2025 04:02:49 +0000
Files and hashes: 1: HO9laPPsdq6sfNd_PR3udt1kywk.roa (hash: ySqE/9cHXiOyjfUHGzF3+AzH1p8/SUImSsDU40s2CbI=)
2: IMz236cJVzqCG2PEy2lWBf0maAs.crl (hash: KeaG2ggOkwpXcKjSET+F3Nk+xet3QwQvMHyXiLr+yy8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/19269c-9d5b-4f09-97eb-3a28f8a9c707/1/IMz236cJVzqCG2PEy2lWBf0maAs.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/19269c-9d5b-4f09-97eb-3a28f8a9c707/1/IMz236cJVzqCG2PEy2lWBf0maAs.mft
rsync://rpki.ripe.net/repository/DEFAULT/IMz236cJVzqCG2PEy2lWBf0maAs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 04:02:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:c8:bc:05:f8:59:4b:c9:6a:c7:53:80:4d:31:74:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20ccf6dfa709573a821b63c4cb695605fd26680b
Validity
Not Before: Oct 20 04:02:49 2025 GMT
Not After : Oct 21 04:02:49 2025 GMT
Subject: CN=3141df344f1cada46acd278acf0509c464e28079
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:e4:f6:17:4f:e7:42:15:69:66:f6:6e:86:60:
ba:1e:eb:36:aa:07:96:f1:fc:57:26:39:8a:fd:78:
d2:dd:b8:4f:8a:fe:dc:95:4d:13:5c:47:d6:86:9e:
60:e6:1b:1a:38:4e:4c:1c:39:91:a0:a7:1c:36:68:
d5:65:69:63:b5:94:4a:18:2a:80:4b:29:55:68:b9:
2c:9b:65:92:bb:23:a8:eb:99:79:74:48:c4:4a:a8:
31:20:d4:3a:ce:bf:9f:eb:88:af:c3:ed:5f:56:08:
0c:ba:da:1c:81:e1:b7:89:64:88:72:32:c2:64:c4:
21:e8:b2:20:57:34:05:01:96:aa:8e:22:9a:94:50:
53:20:1e:d8:73:9e:a6:d2:ad:0b:47:f1:6e:dc:98:
66:c1:8f:5d:7e:34:d2:01:16:5d:a0:19:91:c3:38:
95:d4:d6:6f:20:d6:8f:90:a1:d0:9f:65:7f:24:56:
c4:42:2e:28:9f:16:6c:62:1a:b3:5c:79:e0:1f:18:
76:00:f1:71:66:09:33:0c:3e:33:b7:f5:70:88:b7:
5f:e1:7a:47:4f:2d:cc:1a:cb:f9:b2:33:4f:60:9f:
48:f9:1c:62:32:f7:a9:d9:c2:69:22:ec:58:6b:58:
8a:16:75:5d:8d:96:d4:c2:6c:25:d5:fe:bb:d1:f3:
bc:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:41:DF:34:4F:1C:AD:A4:6A:CD:27:8A:CF:05:09:C4:64:E2:80:79
X509v3 Authority Key Identifier:
keyid:20:CC:F6:DF:A7:09:57:3A:82:1B:63:C4:CB:69:56:05:FD:26:68:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IMz236cJVzqCG2PEy2lWBf0maAs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/19269c-9d5b-4f09-97eb-3a28f8a9c707/1/IMz236cJVzqCG2PEy2lWBf0maAs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/19269c-9d5b-4f09-97eb-3a28f8a9c707/1/IMz236cJVzqCG2PEy2lWBf0maAs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:56:0a:c1:4d:75:e8:ba:39:51:48:17:03:66:b4:c0:32:bf:
43:cb:3c:1e:93:9c:2d:44:07:94:34:bb:89:72:33:06:ac:44:
d0:04:0d:fb:ca:da:04:09:f4:eb:eb:dc:d3:f0:af:ce:dc:1d:
11:ef:d1:3e:d8:ed:f3:4d:11:ba:f8:b8:59:a8:2d:50:98:a2:
39:4c:59:ad:c1:1d:4d:69:e9:33:08:a3:5c:83:56:66:eb:72:
bf:d2:3b:f7:8c:48:26:82:ac:ff:e6:15:75:84:e6:76:75:4d:
d6:1b:eb:b3:ac:10:6f:06:0e:7e:e5:60:38:57:cd:0a:d4:fc:
82:60:cc:3d:fc:2a:bb:33:ee:f0:9f:1b:28:70:0c:bc:c7:7e:
69:ba:41:24:a3:a3:fe:22:20:c7:70:f0:5a:40:ad:1c:b0:43:
bc:db:db:40:16:06:a8:9a:57:88:a5:e5:44:b4:4b:a4:52:d6:
12:72:83:00:23:48:6c:72:fe:5c:b6:b5:91:35:5a:58:17:61:
c4:41:49:ce:dd:b8:80:82:bf:3c:96:56:e1:12:4c:94:82:a7:
03:9b:d6:39:5d:f7:49:b6:e4:67:05:32:12:3c:73:b6:8c:e7:
bc:87:d0:9a:0a:d6:da:8e:76:dc:b7:f8:09:80:46:74:ae:d2:
9a:83:59:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 12:05:51 2025 by rpki-client