Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.mft
File: immKFPthpoevCmP3xlXAAfZwEoI.mft (raw, json)
Hash identifier: qpWCDGwL6KxeK0TV+apUtCCxYN4ouiJ8xbScG46oMYU=
Subject key identifier: 58:F6:FF:9A:2E:B2:A1:DF:8A:72:DB:19:66:6B:5B:BA:31:AA:EA:8D
Authority key identifier: 8A:69:8A:14:FB:61:A6:87:AF:0A:63:F7:C6:55:C0:01:F6:70:12:82
Certificate issuer: /CN=8a698a14fb61a687af0a63f7c655c001f6701282
Certificate serial: 0198D960AE7C8921371BF92A80EDDDB924D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/immKFPthpoevCmP3xlXAAfZwEoI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.mft
Manifest number: 03E5
Signing time: Sun 24 Aug 2025 00:00:48 +0000
Manifest this update: Sun 24 Aug 2025 00:00:48 +0000
Manifest next update: Mon 25 Aug 2025 00:00:48 +0000
Files and hashes: 1: P1m93kQnbl9hCPZ7gjvBSz2QduY.roa (hash: Vw3jwkUFPb+4FTO/pTKFTwQSjK1reP+BMicWKiuZXfs=)
2: immKFPthpoevCmP3xlXAAfZwEoI.crl (hash: pmXciUCvh9gYWjaSPEHlalcPzXVdqNkQ6PN1s1E52GM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.mft
rsync://rpki.ripe.net/repository/DEFAULT/immKFPthpoevCmP3xlXAAfZwEoI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 17:19:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d9:60:ae:7c:89:21:37:1b:f9:2a:80:ed:dd:b9:24:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a698a14fb61a687af0a63f7c655c001f6701282
Validity
Not Before: Aug 24 00:00:48 2025 GMT
Not After : Aug 25 00:00:48 2025 GMT
Subject: CN=58f6ff9a2eb2a1df8a72db19666b5bba31aaea8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a7:c8:97:9a:ce:5b:99:11:e6:07:29:f8:c0:
fb:e9:96:d2:52:71:05:ab:dd:72:e6:6a:f2:e9:1c:
8d:03:d0:03:45:a7:94:f5:ee:ba:64:60:f4:db:10:
c2:91:30:d7:55:ba:f3:11:e7:11:c7:a8:a9:92:06:
8a:6c:89:06:b0:50:af:ad:27:c6:14:d7:29:dc:d3:
fb:c0:3a:b0:d0:27:7e:2c:12:23:ee:be:94:4d:54:
28:f3:de:66:dd:17:e4:b4:87:19:33:7b:61:2b:bb:
55:4c:70:78:02:94:ee:a7:a6:82:1b:40:e9:61:e5:
59:8f:22:80:37:59:b9:38:9b:57:33:10:8a:a3:d8:
98:af:57:ec:e6:a9:cd:a1:2f:76:44:ae:a9:4b:39:
e3:8a:ea:fb:6f:da:cb:35:cf:cf:33:df:0a:ad:7e:
06:2e:09:59:6b:fb:fd:6a:bd:04:bc:ed:91:56:d6:
64:35:dd:39:45:de:3f:61:56:77:6e:94:08:4c:a0:
81:87:3a:03:bc:e0:ca:8d:eb:91:8a:2a:ae:14:45:
08:53:af:b0:52:14:7a:38:df:87:ea:e9:d3:57:e6:
23:8d:bd:0d:c7:9b:e0:89:b4:42:8e:7f:a6:20:38:
8c:a4:19:51:48:5d:7e:1a:55:53:95:a4:f0:04:7d:
42:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:F6:FF:9A:2E:B2:A1:DF:8A:72:DB:19:66:6B:5B:BA:31:AA:EA:8D
X509v3 Authority Key Identifier:
keyid:8A:69:8A:14:FB:61:A6:87:AF:0A:63:F7:C6:55:C0:01:F6:70:12:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/immKFPthpoevCmP3xlXAAfZwEoI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:85:ec:30:17:88:99:a0:a0:de:4a:72:9e:dd:42:91:ce:16:
21:91:bf:a4:31:49:f9:85:24:6e:6e:53:0c:12:ac:a5:26:f3:
e7:6b:79:ed:2d:62:2b:27:42:6a:73:59:dc:6f:31:cf:b2:ba:
58:c2:a8:46:93:53:e1:c0:5c:b7:2a:79:d4:5a:e4:04:6e:64:
23:70:fc:9c:73:7d:ab:2d:c2:78:be:2d:3b:14:42:b8:be:44:
88:2b:5a:0a:5c:0d:d3:07:1f:5e:77:55:41:75:9b:6f:1c:96:
f2:f3:80:39:52:96:32:c8:0c:3b:6a:0e:73:b9:7d:8f:95:ee:
1a:5f:9e:a5:6a:87:b1:05:82:95:cb:8e:fe:45:af:25:3d:29:
fb:43:c0:a3:e6:d0:22:9c:93:86:bd:ab:8b:50:54:d2:3f:3b:
b7:54:c5:e8:eb:14:0b:bb:cd:bd:18:2a:b0:66:73:b5:bd:58:
4a:c7:fd:fb:6b:88:6c:7e:f9:1e:ce:0e:55:67:b4:c7:36:b0:
be:66:5d:dc:cf:fe:04:d4:b5:4c:43:32:ce:b8:d1:76:b7:e1:
a4:4c:a6:6b:53:25:0e:80:8d:ef:30:4e:6a:45:24:e1:af:95:
82:1f:bd:cb:5d:14:35:c6:52:33:3e:f8:2c:68:92:4b:d7:a8:
1a:bc:f9:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 03:10:55 2025 by rpki-client