Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/3841fe-dc49-4b9c-af9d-daa23ffb4cbf/1/IMZhH8hUYvC8yscvPfTFNRvlEN4.mft
File: IMZhH8hUYvC8yscvPfTFNRvlEN4.mft (raw, json)
Hash identifier: 1erWoQfiEhiLrpf0JLpdZvmarwIGFYhwBN6D0jur0G0=
Subject key identifier: 2E:41:75:C2:57:74:34:C5:76:D9:DF:64:21:13:2F:89:05:AF:00:9C
Authority key identifier: 20:C6:61:1F:C8:54:62:F0:BC:CA:C7:2F:3D:F4:C5:35:1B:E5:10:DE
Certificate issuer: /CN=20c6611fc85462f0bccac72f3df4c5351be510de
Certificate serial: 0199FC589891FC772C8DF91D7527998ED3D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IMZhH8hUYvC8yscvPfTFNRvlEN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/3841fe-dc49-4b9c-af9d-daa23ffb4cbf/1/IMZhH8hUYvC8yscvPfTFNRvlEN4.mft
Manifest number: C2
Signing time: Sun 19 Oct 2025 12:01:28 +0000
Manifest this update: Sun 19 Oct 2025 12:01:28 +0000
Manifest next update: Mon 20 Oct 2025 12:01:28 +0000
Files and hashes: 1: IMZhH8hUYvC8yscvPfTFNRvlEN4.crl (hash: 2PrA+6MoCYyR2BiKL9E/o145TxL0Z6GhZ0RQcTs8/8w=)
2: KGtn_CGJ9WQ0fMr4tUY-3i93MNg.roa (hash: 03IEtTQfIrx28kdxnAxm3chhufsP9RPQAiqL8u3FBkA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/3841fe-dc49-4b9c-af9d-daa23ffb4cbf/1/IMZhH8hUYvC8yscvPfTFNRvlEN4.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/3841fe-dc49-4b9c-af9d-daa23ffb4cbf/1/IMZhH8hUYvC8yscvPfTFNRvlEN4.mft
rsync://rpki.ripe.net/repository/DEFAULT/IMZhH8hUYvC8yscvPfTFNRvlEN4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:98:91:fc:77:2c:8d:f9:1d:75:27:99:8e:d3:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20c6611fc85462f0bccac72f3df4c5351be510de
Validity
Not Before: Oct 19 12:01:28 2025 GMT
Not After : Oct 20 12:01:28 2025 GMT
Subject: CN=2e4175c2577434c576d9df6421132f8905af009c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:2d:19:c8:54:22:01:1b:1a:cf:02:57:8e:8d:
a1:41:ff:b7:30:45:dc:5a:65:d1:0f:21:a2:cf:a8:
56:59:4d:ba:ba:63:e0:35:ed:7e:6b:a0:f4:e2:6d:
7a:62:f6:17:0a:b9:4c:bd:1d:1f:6e:77:98:f7:74:
0b:ab:62:3a:38:f0:4c:53:a9:7a:06:20:e4:00:03:
33:a9:7a:74:2f:ed:f4:0a:69:a0:68:54:7e:64:36:
a6:8d:f9:37:f4:e1:42:25:19:83:e0:38:a3:04:79:
95:ba:c9:1d:a8:df:8c:b0:b6:21:d4:50:6b:ef:26:
d3:d2:a7:ad:b9:16:81:1b:fc:f7:2a:48:70:62:49:
e6:c4:02:cb:9a:39:8e:1b:41:9f:69:a0:e1:06:88:
b3:72:41:45:08:2c:8e:5c:c3:03:6b:96:54:68:7a:
20:cf:6a:1b:62:31:fa:f2:e8:64:a6:05:b9:8d:d2:
1a:50:86:94:e8:b5:2a:dc:38:2a:23:7f:26:4a:8c:
2b:4e:23:d9:f9:50:fb:47:19:ef:e2:71:94:80:e3:
ab:14:03:f0:4f:7c:52:ad:1f:f3:c9:84:2a:cb:6b:
73:41:0d:4d:23:b7:a1:b1:08:e6:d8:f4:64:17:be:
0d:62:cc:90:0d:01:2f:4b:ce:e3:fb:9a:69:3a:85:
47:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:41:75:C2:57:74:34:C5:76:D9:DF:64:21:13:2F:89:05:AF:00:9C
X509v3 Authority Key Identifier:
keyid:20:C6:61:1F:C8:54:62:F0:BC:CA:C7:2F:3D:F4:C5:35:1B:E5:10:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IMZhH8hUYvC8yscvPfTFNRvlEN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/3841fe-dc49-4b9c-af9d-daa23ffb4cbf/1/IMZhH8hUYvC8yscvPfTFNRvlEN4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/3841fe-dc49-4b9c-af9d-daa23ffb4cbf/1/IMZhH8hUYvC8yscvPfTFNRvlEN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:c6:25:94:9c:c1:eb:a2:9d:4d:0d:e4:06:eb:12:1d:5b:97:
a8:87:01:98:d0:69:1b:d7:6f:05:16:51:32:87:fe:66:9f:78:
f9:95:63:35:ef:ca:08:13:dd:01:57:33:01:73:53:9e:aa:59:
25:77:d6:32:9f:9c:fb:f3:1b:18:38:47:e9:77:1e:47:08:fc:
b9:6c:ee:20:a0:9b:d6:53:ba:4a:b6:13:f5:b3:ec:43:ef:6b:
4d:76:95:c8:8f:88:e8:e3:96:cf:0c:28:f3:8d:f0:c4:8f:41:
f0:01:ea:66:ec:16:8c:0f:3f:45:9b:f6:b0:2b:9c:84:0b:72:
2a:6e:fe:f9:fa:e5:9f:42:7a:64:29:82:8d:8e:3c:e1:11:e6:
2a:1b:49:0f:bf:d3:b0:aa:69:33:78:1a:64:7b:03:73:e5:54:
db:7a:0c:84:1b:53:87:58:ec:0e:ce:75:ee:31:1f:30:53:a9:
93:2b:21:70:a6:30:c9:e6:6c:73:d0:8e:80:53:33:22:ee:53:
bc:fd:fe:e5:67:f7:ac:8a:1a:c6:39:fd:b9:bf:3e:d2:fa:de:
f8:2d:5d:45:f3:08:27:62:0a:9c:d7:a0:e3:20:89:0e:3b:58:
49:2e:88:3b:2a:e4:5b:b3:9c:be:05:a7:27:35:c9:52:68:39:
0e:3e:65:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:05:26 2025 by rpki-client