Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/979296-ef7a-4bac-8c15-67771359a2b3/1/IMXuAtLgWGHdkG_gazhE8E03jHM.mft
File: IMXuAtLgWGHdkG_gazhE8E03jHM.mft (raw, json)
Hash identifier: iJfBKw/ke48BfvHuu7nYfeeuFFc++3sNr6iVD935cXw=
Subject key identifier: FA:8C:D7:0F:CD:94:0B:91:CB:54:D7:94:A3:5A:57:45:84:9E:8E:08
Authority key identifier: 20:C5:EE:02:D2:E0:58:61:DD:90:6F:E0:6B:38:44:F0:4D:37:8C:73
Certificate issuer: /CN=20c5ee02d2e05861dd906fe06b3844f04d378c73
Certificate serial: 0199FC21740B57F57B0A9413A53E37A47E82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IMXuAtLgWGHdkG_gazhE8E03jHM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/979296-ef7a-4bac-8c15-67771359a2b3/1/IMXuAtLgWGHdkG_gazhE8E03jHM.mft
Manifest number: 05AB
Signing time: Sun 19 Oct 2025 11:01:14 +0000
Manifest this update: Sun 19 Oct 2025 11:01:14 +0000
Manifest next update: Mon 20 Oct 2025 11:01:14 +0000
Files and hashes: 1: 7xOhUPHtrbr-aDnyk2sqIXaZxmE.roa (hash: kq8yM7VvfoH1+ATjkQ5zBAmoZIPQA7DySnzjc28AM7I=)
2: EO7_sAa5INTWdb0sB8KoIZTsSpE.roa (hash: SZljpS9Me6EqFyINGEQdOy6JlEANEGEhl0H6HmWV3fM=)
3: IMXuAtLgWGHdkG_gazhE8E03jHM.crl (hash: 9yFAQcFz/KJCU3kxFzFSAp8v98K/FrVTCINguUC7awQ=)
4: Wr8EOmHckxzTGd0Aamj6K9DADdU.roa (hash: OPshObN2z5FsqJnygnFeWGUMJE0uYykW0pM3DUOjmQQ=)
5: YqXOQdzyJGKEIsRRKloxLXSE6Ms.roa (hash: oxg1KeTKZ090F7XaYRFBJpN4jEk7flH1GMsXEE67BF0=)
6: wS-ZYWnE9Zk6DJUs3sCV5yBn3ak.roa (hash: 4bRb80RRs/QoIhxBs4Ime6HGYShS2787nhwQD+lr7Xw=)
7: wnHzclbUTpmI2i25YXVP3hxML5Y.roa (hash: aE81auZ0/hL8t66uhuMDoL2Ds7gb0agCHWXH7RqZEB8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/979296-ef7a-4bac-8c15-67771359a2b3/1/IMXuAtLgWGHdkG_gazhE8E03jHM.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/979296-ef7a-4bac-8c15-67771359a2b3/1/IMXuAtLgWGHdkG_gazhE8E03jHM.mft
rsync://rpki.ripe.net/repository/DEFAULT/IMXuAtLgWGHdkG_gazhE8E03jHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:74:0b:57:f5:7b:0a:94:13:a5:3e:37:a4:7e:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20c5ee02d2e05861dd906fe06b3844f04d378c73
Validity
Not Before: Oct 19 11:01:14 2025 GMT
Not After : Oct 20 11:01:14 2025 GMT
Subject: CN=fa8cd70fcd940b91cb54d794a35a5745849e8e08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:35:cc:bb:b7:8d:01:df:f9:41:ac:44:ad:70:
4a:7f:3f:5c:c1:c3:a8:4e:dc:1e:1b:e2:c0:0e:e5:
a1:f2:9f:54:37:2d:6d:54:df:31:3b:c1:42:28:9c:
c7:fa:07:00:81:95:53:91:58:1d:da:d5:44:fe:b5:
60:7e:91:88:7d:48:0d:d5:ab:ad:b3:16:c5:19:f7:
8b:7f:c1:3e:e2:c0:cc:6d:f3:ad:76:9c:7f:b5:30:
4d:9f:44:b6:bd:96:c3:5d:02:4e:6a:ed:74:98:de:
30:8b:92:df:c7:df:d6:7b:82:60:56:15:08:f4:1d:
71:c6:4a:a8:84:b8:50:3b:88:78:55:8b:35:fd:53:
1a:27:91:ca:9e:e6:97:b4:65:7a:a7:e4:ca:18:bb:
16:f9:7e:57:b0:79:14:0d:63:13:eb:cc:df:41:69:
b7:e7:eb:67:46:22:83:af:63:b3:59:c7:1f:c4:49:
9d:05:d6:b5:cc:8d:52:68:32:32:77:2a:cd:3f:d9:
7a:07:2d:9a:34:e5:35:20:52:17:f4:f2:a1:f3:a2:
ed:2f:f3:20:9a:95:e0:7b:45:da:a6:73:8c:fa:97:
6b:d2:0d:36:ac:da:b3:07:f6:db:13:07:c1:0b:01:
d4:0d:ed:9a:41:d2:de:f7:c8:38:ea:f3:30:35:c9:
f7:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:8C:D7:0F:CD:94:0B:91:CB:54:D7:94:A3:5A:57:45:84:9E:8E:08
X509v3 Authority Key Identifier:
keyid:20:C5:EE:02:D2:E0:58:61:DD:90:6F:E0:6B:38:44:F0:4D:37:8C:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IMXuAtLgWGHdkG_gazhE8E03jHM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/979296-ef7a-4bac-8c15-67771359a2b3/1/IMXuAtLgWGHdkG_gazhE8E03jHM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/979296-ef7a-4bac-8c15-67771359a2b3/1/IMXuAtLgWGHdkG_gazhE8E03jHM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:54:b8:c3:7f:bd:c0:99:06:8d:8a:1f:d7:c0:bc:55:88:9e:
7b:50:12:5a:1d:27:0e:1d:08:94:c1:1a:2e:50:e6:52:24:fc:
f0:9e:5e:63:28:e0:33:78:99:a6:42:b5:c5:67:47:5a:ce:e6:
b3:83:e1:22:37:e1:02:de:15:5b:25:68:a7:49:34:5b:48:44:
ef:89:d0:37:60:d4:1d:69:88:fa:04:25:5e:bb:fb:a3:e9:f6:
c3:07:08:cf:2d:9f:d2:47:05:2b:c1:26:2a:69:0b:5e:01:55:
f2:78:cc:af:2c:1c:98:a9:ac:81:ff:0f:12:db:91:ea:00:63:
66:f9:ad:52:e2:fe:44:d7:cf:e0:fa:13:b8:74:a1:a6:de:d6:
1c:ca:33:50:a3:14:ca:8a:37:b7:9c:85:21:14:a0:99:ca:26:
33:03:11:25:5c:fb:ba:fa:b2:83:b5:9c:46:be:2e:70:c8:51:
53:87:55:97:73:8b:37:e9:81:8b:ad:e1:22:d9:ac:6e:88:d0:
9d:69:fd:3a:dc:03:8c:ab:b5:30:ae:68:3c:f1:aa:76:43:a6:
7b:b4:e6:e1:be:68:d0:1d:da:92:06:98:84:47:e1:e2:44:d9:
ba:86:26:2b:09:a5:0e:40:19:58:14:6b:d9:f5:b8:73:78:82:
4b:48:78:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:00:45 2025 by rpki-client