Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/c40875-061a-42df-9c6d-87a6845f66f9/1/cimwOc-KrxQdbm1hbnwWkInLyzI.mft
File: cimwOc-KrxQdbm1hbnwWkInLyzI.mft (raw, json)
Hash identifier: RWGdJPeMn2cRE3mPQE7FnWCoPpk4j60mb/7R8mp2y3c=
Subject key identifier: 6D:CF:40:3F:EE:FD:CD:63:06:5C:8F:4A:2E:1F:89:2E:8F:B9:34:A5
Authority key identifier: 72:29:B0:39:CF:8A:AF:14:1D:6E:6D:61:6E:7C:16:90:89:CB:CB:32
Certificate issuer: /CN=7229b039cf8aaf141d6e6d616e7c169089cbcb32
Certificate serial: 0199FC8F891F3B560CE2E9A46C6759639B6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cimwOc-KrxQdbm1hbnwWkInLyzI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/c40875-061a-42df-9c6d-87a6845f66f9/1/cimwOc-KrxQdbm1hbnwWkInLyzI.mft
Manifest number: 0E1F
Signing time: Sun 19 Oct 2025 13:01:29 +0000
Manifest this update: Sun 19 Oct 2025 13:01:29 +0000
Manifest next update: Mon 20 Oct 2025 13:01:29 +0000
Files and hashes: 1: _11c4KnryngFBZ3LrSwCjXVWAnI.roa (hash: 4suX3JVW+dbra41XqoLSgaNnHC7+X6k6GS1R8JLgxL8=)
2: cimwOc-KrxQdbm1hbnwWkInLyzI.crl (hash: f42QDoW7mUo1pMtNTbZDv453CA0/Hr3VKY7vNRF/kx0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/c40875-061a-42df-9c6d-87a6845f66f9/1/cimwOc-KrxQdbm1hbnwWkInLyzI.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/c40875-061a-42df-9c6d-87a6845f66f9/1/cimwOc-KrxQdbm1hbnwWkInLyzI.mft
rsync://rpki.ripe.net/repository/DEFAULT/cimwOc-KrxQdbm1hbnwWkInLyzI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:89:1f:3b:56:0c:e2:e9:a4:6c:67:59:63:9b:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7229b039cf8aaf141d6e6d616e7c169089cbcb32
Validity
Not Before: Oct 19 13:01:29 2025 GMT
Not After : Oct 20 13:01:29 2025 GMT
Subject: CN=6dcf403feefdcd63065c8f4a2e1f892e8fb934a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:5b:d5:87:01:86:0c:ff:7b:b5:54:fc:fd:ad:
f9:64:ff:2a:9b:15:2d:17:dc:86:8e:e9:67:cd:20:
91:92:ea:77:53:50:f6:19:77:0f:88:74:91:26:03:
18:ca:3f:bd:9d:3c:ab:e7:58:5e:3d:1e:59:13:8b:
43:a0:45:be:2e:6f:7e:7e:70:7f:7f:ec:66:2a:e5:
14:ac:f4:b8:dd:aa:ce:b5:71:2a:24:60:d6:dc:f2:
e4:93:d7:13:b8:09:2e:8c:cb:e8:98:be:ec:b5:ce:
00:7d:6d:bf:aa:38:46:fa:ec:7f:79:7f:31:82:fb:
64:ff:5f:0a:3c:3f:e3:c2:50:ed:2e:04:ae:72:5c:
88:2e:b3:c2:d8:94:ab:25:4d:91:ce:5b:a1:a6:0f:
b2:12:57:61:52:62:00:22:ee:01:62:6c:59:53:fe:
88:ce:c0:fb:63:48:b6:84:d6:b3:a7:c4:05:89:30:
3b:f0:20:2c:10:ab:ba:aa:62:ba:77:28:0d:e3:1a:
c1:66:38:f8:1c:51:bb:df:ad:af:85:b0:f3:88:e0:
8c:d3:d1:68:90:78:da:b2:3b:4f:c1:03:72:85:78:
ab:34:16:29:2c:cc:59:5b:14:0e:75:3e:06:76:00:
c7:c5:6c:df:a6:56:c5:97:88:d4:cd:3a:46:e9:0c:
d6:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:CF:40:3F:EE:FD:CD:63:06:5C:8F:4A:2E:1F:89:2E:8F:B9:34:A5
X509v3 Authority Key Identifier:
keyid:72:29:B0:39:CF:8A:AF:14:1D:6E:6D:61:6E:7C:16:90:89:CB:CB:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cimwOc-KrxQdbm1hbnwWkInLyzI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/c40875-061a-42df-9c6d-87a6845f66f9/1/cimwOc-KrxQdbm1hbnwWkInLyzI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/c40875-061a-42df-9c6d-87a6845f66f9/1/cimwOc-KrxQdbm1hbnwWkInLyzI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:f7:7b:5b:14:ab:66:a1:55:8d:b9:29:60:bc:0d:52:2b:b8:
39:85:0d:3d:57:91:a8:2a:50:bd:90:af:9a:d5:36:1c:49:fc:
38:5e:b1:56:65:bd:68:d1:dd:70:12:1f:bd:03:a5:80:c4:2b:
1d:89:88:0d:4a:42:6b:6e:da:34:a1:a6:2a:da:37:3a:ff:7c:
c4:52:1d:92:1b:30:8a:f7:b8:23:4e:08:93:e9:a2:d3:f2:16:
9e:8d:d2:de:b9:07:02:7c:60:44:bc:8f:49:9d:d1:54:94:67:
ce:9a:00:94:e5:1c:6d:ba:4d:15:b0:4b:ae:ef:55:be:16:88:
97:94:9b:72:a9:90:2c:8b:90:4a:50:99:66:ec:b6:50:2d:52:
cb:07:a8:1a:cc:8f:4e:ec:6b:c6:9e:3c:2c:0a:cd:87:0a:8c:
2e:b8:db:57:c6:89:ee:17:1b:cd:50:4f:07:cd:56:a2:f9:50:
17:85:dc:b5:4f:7f:ee:e0:ff:7d:42:7d:50:c3:bc:c7:d5:e4:
fa:dd:0b:de:51:97:39:00:55:1c:ec:e5:17:6a:23:5c:88:fb:
49:29:12:f4:e9:cc:07:1f:a5:58:94:6b:d3:72:1f:92:91:8b:
4b:e2:07:9e:f9:2e:69:b5:b2:6b:04:c9:91:e3:bc:53:3f:79:
05:35:bd:84
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8j4kfO1YM4umkbGdZY5trMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyMjliMDM5Y2Y4YWFmMTQxZDZlNmQ2MTZlN2MxNjkwODlj
YmNiMzIwHhcNMjUxMDE5MTMwMTI5WhcNMjUxMDIwMTMwMTI5WjAzMTEwLwYDVQQD
Eyg2ZGNmNDAzZmVlZmRjZDYzMDY1YzhmNGEyZTFmODkyZThmYjkzNGE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA91vVhwGGDP97tVT8/a35ZP8qmxUt
F9yGjulnzSCRkup3U1D2GXcPiHSRJgMYyj+9nTyr51hePR5ZE4tDoEW+Lm9+fnB/
f+xmKuUUrPS43arOtXEqJGDW3PLkk9cTuAkujMvomL7stc4AfW2/qjhG+ux/eX8x
gvtk/18KPD/jwlDtLgSuclyILrPC2JSrJU2Rzluhpg+yEldhUmIAIu4BYmxZU/6I
zsD7Y0i2hNazp8QFiTA78CAsEKu6qmK6dygN4xrBZjj4HFG7362vhbDziOCM09Fo
kHjasjtPwQNyhXirNBYpLMxZWxQOdT4GdgDHxWzfplbFl4jUzTpG6QzWVQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG3PQD/u/c1jBlyPSi4fiS6PuTSlMB8GA1UdIwQY
MBaAFHIpsDnPiq8UHW5tYW58FpCJy8syMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2ltd09jLUtyeFFkYm0xaGJud1drSW5MeXpJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My9jNDA4NzUtMDYxYS00MmRmLTljNmQt
ODdhNjg0NWY2NmY5LzEvY2ltd09jLUtyeFFkYm0xaGJud1drSW5MeXpJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81My9jNDA4NzUtMDYxYS00MmRmLTljNmQtODdhNjg0NWY2NmY5
LzEvY2ltd09jLUtyeFFkYm0xaGJud1drSW5MeXpJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI/d7WxSr
ZqFVjbkpYLwNUiu4OYUNPVeRqCpQvZCvmtU2HEn8OF6xVmW9aNHdcBIfvQOlgMQr
HYmIDUpCa27aNKGmKto3Ov98xFIdkhswive4I04Ik+mi0/IWno3S3rkHAnxgRLyP
SZ3RVJRnzpoAlOUcbbpNFbBLru9VvhaIl5SbcqmQLIuQSlCZZuy2UC1SyweoGsyP
Tuxrxp48LArNhwqMLrjbV8aJ7hcbzVBPB81WovlQF4XctU9/7uD/fUJ9UMO8x9Xk
+t0L3lGXOQBVHOzlF2ojXIj7SSkS9OnMBx+lWJRr03IfkpGLS+IHnvkuabWyawTJ
keO8Uz95BTW9hA==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:11:44 2025 by rpki-client