Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/8e9855-5989-486e-9436-50a7c92591d0/1/IMjVw3OmvzurIpOUNguG0Alq7L0.mft
File: IMjVw3OmvzurIpOUNguG0Alq7L0.mft (raw, json)
Hash identifier: cbs7JqPywQezylXHKZudQzG19nFTerQnQM7cBS1Qmco=
Subject key identifier: BC:A0:ED:AF:05:D9:55:13:C8:36:6C:53:C8:BD:DC:AB:1B:EC:8C:8A
Authority key identifier: 20:C8:D5:C3:73:A6:BF:3B:AB:22:93:94:36:0B:86:D0:09:6A:EC:BD
Certificate issuer: /CN=20c8d5c373a6bf3bab229394360b86d0096aecbd
Certificate serial: 0198D6985B2F7E6FA42AC238D78C318D08C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IMjVw3OmvzurIpOUNguG0Alq7L0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/8e9855-5989-486e-9436-50a7c92591d0/1/IMjVw3OmvzurIpOUNguG0Alq7L0.mft
Manifest number: 11E5
Signing time: Sat 23 Aug 2025 11:02:45 +0000
Manifest this update: Sat 23 Aug 2025 11:02:45 +0000
Manifest next update: Sun 24 Aug 2025 11:02:45 +0000
Files and hashes: 1: IMjVw3OmvzurIpOUNguG0Alq7L0.crl (hash: RYR0etK3+7PWVm20k71v4OpfrXLy2ugCmT4VC3cEZ1o=)
2: eKykDDSSUelkgfwH3TO0n13mPZk.roa (hash: P9dt2Lrz0okP2zrUj3Cql2lI4c4A2LE13LjuP2FhidE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/8e9855-5989-486e-9436-50a7c92591d0/1/IMjVw3OmvzurIpOUNguG0Alq7L0.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/8e9855-5989-486e-9436-50a7c92591d0/1/IMjVw3OmvzurIpOUNguG0Alq7L0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IMjVw3OmvzurIpOUNguG0Alq7L0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:98:5b:2f:7e:6f:a4:2a:c2:38:d7:8c:31:8d:08:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20c8d5c373a6bf3bab229394360b86d0096aecbd
Validity
Not Before: Aug 23 11:02:45 2025 GMT
Not After : Aug 24 11:02:45 2025 GMT
Subject: CN=bca0edaf05d95513c8366c53c8bddcab1bec8c8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ea:72:1e:70:5e:cf:2b:2e:18:71:53:01:d8:
58:d9:b2:50:cf:23:65:1b:17:bc:51:1c:fc:d8:e1:
f0:04:dc:c1:69:49:07:e3:42:b6:01:a9:26:11:04:
f6:37:51:97:4c:98:d2:8b:dc:fd:50:8d:f3:15:94:
29:8e:5a:fb:df:fd:96:16:cc:17:ce:65:cb:fc:fd:
dc:ec:bf:80:e1:53:11:b8:64:35:cb:35:9d:a0:6d:
36:d0:31:cd:80:6e:57:af:e5:c0:5f:9b:39:86:f3:
ba:98:f4:a0:7f:ab:11:30:e1:c6:89:a8:02:a7:9a:
98:bd:b7:93:11:9d:eb:20:68:c9:89:0d:c8:03:91:
de:fd:00:81:15:d2:8f:f1:10:fa:26:3b:6f:a9:01:
24:02:7c:42:0c:a1:d1:dc:da:b9:b6:cb:20:6a:17:
57:20:21:35:b9:66:39:f1:bf:a1:ca:ea:88:d0:c5:
1e:07:2e:ab:27:d2:84:43:41:26:4e:8c:ef:fd:dc:
21:6b:8f:cd:57:16:31:e6:b9:19:13:3f:85:22:51:
3c:af:d4:bb:ef:bd:48:6b:6f:c4:e2:9f:97:ea:7c:
83:8e:3d:65:a9:94:8e:32:0a:4b:a8:ba:87:25:69:
8f:1a:c9:a2:fc:0b:17:36:d8:ed:f1:3b:03:6f:7f:
93:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:A0:ED:AF:05:D9:55:13:C8:36:6C:53:C8:BD:DC:AB:1B:EC:8C:8A
X509v3 Authority Key Identifier:
keyid:20:C8:D5:C3:73:A6:BF:3B:AB:22:93:94:36:0B:86:D0:09:6A:EC:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IMjVw3OmvzurIpOUNguG0Alq7L0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/8e9855-5989-486e-9436-50a7c92591d0/1/IMjVw3OmvzurIpOUNguG0Alq7L0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/8e9855-5989-486e-9436-50a7c92591d0/1/IMjVw3OmvzurIpOUNguG0Alq7L0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:d0:92:cf:71:61:ed:c0:8d:11:97:5f:de:90:5b:3e:43:40:
68:31:37:8d:40:81:20:a1:a4:0a:46:af:27:35:2f:45:f3:97:
db:e1:d3:a4:10:6b:a8:ed:d4:58:b5:64:44:36:0e:6b:9e:fb:
92:90:ae:74:b5:18:a8:ec:ff:49:08:52:8f:ba:48:40:bd:6a:
cb:34:73:0b:61:eb:34:c6:50:40:14:00:76:75:e2:61:d8:7a:
b4:64:68:f4:da:17:54:7f:1d:74:4f:0f:4d:2e:35:b0:b5:1e:
6e:05:33:f6:b6:89:cf:2d:ce:85:11:6e:f5:57:bd:e9:e3:44:
c9:7c:2f:52:f6:35:91:bb:af:d8:fa:0b:20:84:40:91:2a:4c:
52:03:6e:3b:8a:9e:b1:70:8b:de:70:98:e9:55:4b:14:47:d6:
09:c4:a6:0d:ef:15:2f:4c:42:ab:e9:f7:91:71:bc:e9:92:17:
ab:f6:4c:c4:fe:04:b5:90:da:27:1f:a5:96:be:64:4e:2f:5e:
ae:33:3c:8a:1e:a6:54:c4:c2:d2:97:96:b8:17:f8:50:3b:cd:
e5:d9:17:cf:64:30:50:5d:8c:64:34:52:b6:3b:de:8d:7e:8e:
53:3b:95:f2:49:27:3e:5a:36:99:50:19:b1:70:6c:57:f3:d7:
68:69:99:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:47:59 2025 by rpki-client