Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.mft
File: immKFPthpoevCmP3xlXAAfZwEoI.mft (raw, json)
Hash identifier: CIRNWqmgFchq4jrUT0v7SIwk6TOG46KDj2ZsMh9BacY=
Subject key identifier: AB:95:1A:B6:57:26:4C:DC:A5:46:C7:3E:09:A4:AD:E9:8C:D3:FA:62
Authority key identifier: 8A:69:8A:14:FB:61:A6:87:AF:0A:63:F7:C6:55:C0:01:F6:70:12:82
Certificate issuer: /CN=8a698a14fb61a687af0a63f7c655c001f6701282
Certificate serial: 0199FB0F00FC35BC803E8B095091E1342AE4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/immKFPthpoevCmP3xlXAAfZwEoI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.mft
Manifest number: 047B
Signing time: Sun 19 Oct 2025 06:01:28 +0000
Manifest this update: Sun 19 Oct 2025 06:01:28 +0000
Manifest next update: Mon 20 Oct 2025 06:01:28 +0000
Files and hashes: 1: P1m93kQnbl9hCPZ7gjvBSz2QduY.roa (hash: Vw3jwkUFPb+4FTO/pTKFTwQSjK1reP+BMicWKiuZXfs=)
2: immKFPthpoevCmP3xlXAAfZwEoI.crl (hash: i7E3F1QFa2ciW4/Ta3gT/jTwT4wgH2UpEf49mR+kCaw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.mft
rsync://rpki.ripe.net/repository/DEFAULT/immKFPthpoevCmP3xlXAAfZwEoI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:0f:00:fc:35:bc:80:3e:8b:09:50:91:e1:34:2a:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a698a14fb61a687af0a63f7c655c001f6701282
Validity
Not Before: Oct 19 06:01:28 2025 GMT
Not After : Oct 20 06:01:28 2025 GMT
Subject: CN=ab951ab657264cdca546c73e09a4ade98cd3fa62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:d8:d0:1b:3f:e0:c0:22:45:4e:0b:aa:a4:35:
f6:92:c2:a4:6e:93:2e:9b:a9:32:0c:16:48:ce:c0:
5e:9a:36:be:f0:97:48:46:69:a7:6d:fc:76:04:27:
f1:52:9b:4c:22:a1:ab:e6:7e:56:48:55:42:31:d1:
4c:86:35:86:6b:95:bf:42:d2:08:1f:46:83:e7:19:
10:76:d6:e2:3e:bf:60:d8:c5:ea:8f:a8:56:fc:b8:
36:dc:9a:cc:c6:0f:75:75:b6:46:8b:ee:03:8f:6b:
66:01:d2:cd:25:7f:99:0c:2c:f8:fa:39:f5:82:dc:
34:1a:1d:a9:13:b6:1b:eb:b6:f3:cd:db:a8:39:89:
18:84:e1:90:1b:39:7e:b4:75:d2:9d:fe:67:59:4a:
f4:fd:cf:fc:3d:25:37:ae:71:3a:40:7d:28:a5:25:
29:9c:4e:26:d4:24:35:fa:2e:f7:16:fd:9e:d8:2c:
81:35:c6:3a:1f:6f:9d:ad:c3:bb:15:99:2e:42:76:
07:c9:9f:18:d7:fb:66:f3:85:12:c8:83:86:3d:2e:
a4:e8:9c:c3:01:af:0c:8b:7d:38:4f:78:df:45:ba:
96:e3:06:e5:f8:01:96:aa:88:e0:99:49:9b:dc:20:
d9:cc:81:ae:4c:ea:c5:b0:39:0d:70:a0:28:b6:8d:
be:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:95:1A:B6:57:26:4C:DC:A5:46:C7:3E:09:A4:AD:E9:8C:D3:FA:62
X509v3 Authority Key Identifier:
keyid:8A:69:8A:14:FB:61:A6:87:AF:0A:63:F7:C6:55:C0:01:F6:70:12:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/immKFPthpoevCmP3xlXAAfZwEoI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:50:94:7a:4d:f9:48:11:7e:71:33:ae:fa:03:39:8e:7b:1f:
43:e1:f5:37:78:9e:7e:86:57:fb:ad:7f:79:1a:be:a1:dd:6a:
2f:1f:08:97:13:19:fb:06:5d:10:9f:65:2e:9d:75:c7:c9:4b:
43:1a:04:ca:1a:74:00:15:c8:51:21:1d:8e:3e:c0:3a:47:c5:
f4:6e:d3:7f:51:b6:4c:7a:0e:0c:0b:22:b4:f6:f5:69:55:68:
a2:18:5c:63:46:c6:d0:84:4e:cb:07:43:a3:2f:93:d4:78:08:
2a:77:94:f7:f4:56:c5:3e:31:bb:3b:ea:f6:25:34:68:ff:21:
44:0a:04:aa:6b:35:90:19:09:dc:35:6c:66:88:05:18:07:b5:
b7:b9:11:fd:c7:b6:fc:51:30:27:fc:5a:80:5a:ae:c8:e2:44:
ab:c2:c1:82:23:5c:d2:5f:dd:0a:7c:ef:4b:fd:fd:ec:36:00:
ad:95:cc:8b:b9:ee:5e:79:88:5a:85:63:6c:a3:04:44:64:2d:
d5:dd:cc:7a:3f:67:7b:6f:5b:7f:63:3f:11:a6:52:e6:09:17:
6f:a1:33:a5:2c:b4:18:d7:32:9b:04:67:21:b6:15:3b:2d:07:
f0:b0:e0:ed:cb:b0:e0:a7:55:52:76:fb:97:6d:eb:8d:f1:46:
d4:80:a6:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:43:16 2025 by rpki-client