Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/8e9855-5989-486e-9436-50a7c92591d0/1/IMjVw3OmvzurIpOUNguG0Alq7L0.mft
File: IMjVw3OmvzurIpOUNguG0Alq7L0.mft (raw, json)
Hash identifier: Cfftnvp9lIsU2R5B42RjbEWdwknqU0qTHrAH+BYZaK0=
Subject key identifier: B0:80:2A:0C:6B:CC:26:8D:26:94:04:B8:FE:6F:A5:37:E0:CF:38:6A
Authority key identifier: 20:C8:D5:C3:73:A6:BF:3B:AB:22:93:94:36:0B:86:D0:09:6A:EC:BD
Certificate issuer: /CN=20c8d5c373a6bf3bab229394360b86d0096aecbd
Certificate serial: 0199FC21934CC283F8A4F13DF09FA9AF1492
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IMjVw3OmvzurIpOUNguG0Alq7L0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/8e9855-5989-486e-9436-50a7c92591d0/1/IMjVw3OmvzurIpOUNguG0Alq7L0.mft
Manifest number: 127D
Signing time: Sun 19 Oct 2025 11:01:22 +0000
Manifest this update: Sun 19 Oct 2025 11:01:22 +0000
Manifest next update: Mon 20 Oct 2025 11:01:22 +0000
Files and hashes: 1: IMjVw3OmvzurIpOUNguG0Alq7L0.crl (hash: 98mahF//hjaO3hTQgwVyTRIK7c1EtdLfPbcmaBgc8Pc=)
2: eKykDDSSUelkgfwH3TO0n13mPZk.roa (hash: P9dt2Lrz0okP2zrUj3Cql2lI4c4A2LE13LjuP2FhidE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/8e9855-5989-486e-9436-50a7c92591d0/1/IMjVw3OmvzurIpOUNguG0Alq7L0.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/8e9855-5989-486e-9436-50a7c92591d0/1/IMjVw3OmvzurIpOUNguG0Alq7L0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IMjVw3OmvzurIpOUNguG0Alq7L0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:93:4c:c2:83:f8:a4:f1:3d:f0:9f:a9:af:14:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20c8d5c373a6bf3bab229394360b86d0096aecbd
Validity
Not Before: Oct 19 11:01:22 2025 GMT
Not After : Oct 20 11:01:22 2025 GMT
Subject: CN=b0802a0c6bcc268d269404b8fe6fa537e0cf386a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:9c:d1:a2:52:19:c9:f3:a0:c1:f7:08:b6:a5:
9f:bd:7b:1c:e7:90:e2:48:af:d6:42:65:4e:1e:62:
47:14:40:89:a3:45:1e:a4:a1:48:2a:68:f9:23:63:
1e:d4:be:ba:5d:8d:2e:fb:e7:cc:7c:47:28:e7:fc:
ff:ae:fd:3c:c6:f9:2b:7e:34:f5:0b:b0:99:7e:a6:
25:41:0e:5a:dd:86:4d:6c:8c:25:86:c3:1b:32:d0:
59:cb:b9:5f:9c:1d:64:37:3e:61:38:87:b4:36:52:
2b:b6:51:6a:a4:ce:c3:23:c4:48:07:1e:dd:1f:b5:
85:2e:70:be:05:01:a0:b3:bc:eb:25:fa:fa:f8:4f:
4f:58:2b:1b:01:3e:31:fd:44:7b:3f:42:8b:1a:d2:
19:35:95:04:5e:3d:7d:21:60:9c:aa:52:40:54:b4:
f4:ae:1f:3b:7b:a3:b9:03:1a:75:c7:49:e1:9f:b7:
da:24:b4:af:9f:41:74:90:c3:11:5e:cd:b5:29:c7:
b0:cf:86:2a:60:05:5f:79:cf:23:18:0a:f1:49:2d:
2d:97:45:43:c1:e6:7c:ab:a1:74:36:ae:09:eb:e7:
83:65:81:de:b5:10:57:46:a7:f9:ea:fb:04:73:5d:
b8:28:9f:6e:22:f9:09:55:29:40:a9:ab:57:be:42:
a1:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:80:2A:0C:6B:CC:26:8D:26:94:04:B8:FE:6F:A5:37:E0:CF:38:6A
X509v3 Authority Key Identifier:
keyid:20:C8:D5:C3:73:A6:BF:3B:AB:22:93:94:36:0B:86:D0:09:6A:EC:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IMjVw3OmvzurIpOUNguG0Alq7L0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/8e9855-5989-486e-9436-50a7c92591d0/1/IMjVw3OmvzurIpOUNguG0Alq7L0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/8e9855-5989-486e-9436-50a7c92591d0/1/IMjVw3OmvzurIpOUNguG0Alq7L0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:9b:23:82:b7:9e:c6:6a:c8:e3:37:da:f4:88:e8:36:d0:fb:
f5:07:e1:a6:a2:e7:33:12:1e:35:b6:8a:01:fd:91:9d:3e:20:
01:6e:d3:92:48:e1:0d:43:72:79:81:80:d3:0f:47:f3:38:e2:
52:e6:92:61:88:e8:5c:35:99:ad:29:83:18:86:0c:6b:9a:d9:
5f:7c:7f:2e:b7:71:fb:81:f0:f6:a3:a9:2a:b3:17:f0:33:06:
bb:2e:a3:cc:b4:97:5f:5e:6f:7b:96:7e:7b:e5:0e:64:c7:ff:
dc:14:ac:a1:4c:6b:c3:e9:1b:91:96:61:b5:10:12:24:0b:ef:
3a:55:ec:b4:e7:c5:40:23:0c:1a:bc:18:ea:5c:1b:8f:86:f9:
88:91:d1:ae:46:ca:41:26:66:78:1e:ce:08:d4:97:91:a2:b3:
c6:fd:4c:e5:fd:d6:77:6d:8f:b2:4c:40:2c:11:eb:36:54:e5:
cf:80:34:39:55:bc:7a:a8:8e:3d:9a:73:85:38:ca:eb:fc:14:
f7:94:0d:43:db:ea:71:2e:34:84:38:46:5a:8f:bb:99:1f:93:
a3:44:97:13:87:66:ff:bf:ec:08:c7:09:c9:25:ef:60:40:90:
ad:8e:a1:2f:a2:a6:d5:84:cb:f2:fd:a9:52:bd:7b:2a:cc:02:
d8:d2:da:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:19:54 2025 by rpki-client