Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/979296-ef7a-4bac-8c15-67771359a2b3/1/IMXuAtLgWGHdkG_gazhE8E03jHM.mft
File: IMXuAtLgWGHdkG_gazhE8E03jHM.mft (raw, json)
Hash identifier: 1tkqH3gJILt4WUnd1ItC7qdgz4mIKYK5tU/ofWJgBrs=
Subject key identifier: 5F:06:1B:11:17:35:40:45:D0:DC:11:7F:62:9B:C4:9C:C3:56:08:B4
Authority key identifier: 20:C5:EE:02:D2:E0:58:61:DD:90:6F:E0:6B:38:44:F0:4D:37:8C:73
Certificate issuer: /CN=20c5ee02d2e05861dd906fe06b3844f04d378c73
Certificate serial: 0198D4A80AFAAD0595DF358A51FE241F1776
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IMXuAtLgWGHdkG_gazhE8E03jHM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/979296-ef7a-4bac-8c15-67771359a2b3/1/IMXuAtLgWGHdkG_gazhE8E03jHM.mft
Manifest number: 0512
Signing time: Sat 23 Aug 2025 02:00:39 +0000
Manifest this update: Sat 23 Aug 2025 02:00:39 +0000
Manifest next update: Sun 24 Aug 2025 02:00:39 +0000
Files and hashes: 1: 7xOhUPHtrbr-aDnyk2sqIXaZxmE.roa (hash: kq8yM7VvfoH1+ATjkQ5zBAmoZIPQA7DySnzjc28AM7I=)
2: EO7_sAa5INTWdb0sB8KoIZTsSpE.roa (hash: SZljpS9Me6EqFyINGEQdOy6JlEANEGEhl0H6HmWV3fM=)
3: IMXuAtLgWGHdkG_gazhE8E03jHM.crl (hash: 8iP0hYUnL92AL3VdzxxdMIXtZ6fuUmAezGoJ0dB1nd4=)
4: Wr8EOmHckxzTGd0Aamj6K9DADdU.roa (hash: OPshObN2z5FsqJnygnFeWGUMJE0uYykW0pM3DUOjmQQ=)
5: YqXOQdzyJGKEIsRRKloxLXSE6Ms.roa (hash: oxg1KeTKZ090F7XaYRFBJpN4jEk7flH1GMsXEE67BF0=)
6: wS-ZYWnE9Zk6DJUs3sCV5yBn3ak.roa (hash: 4bRb80RRs/QoIhxBs4Ime6HGYShS2787nhwQD+lr7Xw=)
7: wnHzclbUTpmI2i25YXVP3hxML5Y.roa (hash: aE81auZ0/hL8t66uhuMDoL2Ds7gb0agCHWXH7RqZEB8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/979296-ef7a-4bac-8c15-67771359a2b3/1/IMXuAtLgWGHdkG_gazhE8E03jHM.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/979296-ef7a-4bac-8c15-67771359a2b3/1/IMXuAtLgWGHdkG_gazhE8E03jHM.mft
rsync://rpki.ripe.net/repository/DEFAULT/IMXuAtLgWGHdkG_gazhE8E03jHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 02:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a8:0a:fa:ad:05:95:df:35:8a:51:fe:24:1f:17:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20c5ee02d2e05861dd906fe06b3844f04d378c73
Validity
Not Before: Aug 23 02:00:39 2025 GMT
Not After : Aug 24 02:00:39 2025 GMT
Subject: CN=5f061b1117354045d0dc117f629bc49cc35608b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:66:21:18:ad:ee:90:a9:34:07:fb:30:7e:0a:
00:24:31:bd:70:cc:67:f0:92:04:b3:8f:a6:c0:78:
61:21:6d:60:d9:82:80:32:f2:0f:eb:d5:6c:08:c7:
81:a1:54:a6:80:71:e9:ad:ce:f1:45:c5:12:bf:f2:
47:2a:d9:e1:1a:72:cf:6c:1a:74:18:1f:c9:df:bd:
86:a3:7a:d8:b4:66:f0:76:d8:c8:5f:7d:83:69:4a:
88:cc:16:76:0f:e5:0f:cb:9c:78:a6:3d:74:48:04:
bf:c8:6f:ab:3a:e9:de:8f:38:3d:82:de:c1:0e:58:
fa:89:a9:61:66:49:b5:b6:f7:39:3c:f5:be:38:2b:
c3:45:57:2b:fd:c2:41:9d:4e:07:37:59:97:ec:58:
f6:7d:97:c9:cd:8f:83:7a:bf:20:56:80:60:2d:0b:
cd:46:ff:ed:17:88:33:ba:0b:9e:43:ff:f9:18:60:
06:09:9d:22:9c:29:bb:05:48:5c:70:2d:b1:47:3b:
1d:ee:8c:f3:06:13:b9:0d:36:ad:12:be:3a:93:e7:
fd:35:18:11:62:ad:b6:c9:d0:2f:36:0f:88:a4:1f:
2a:de:48:a0:d6:dc:86:e2:79:43:f2:83:bc:c4:e2:
21:80:33:f0:49:96:1c:30:34:a9:06:d9:36:79:89:
14:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:06:1B:11:17:35:40:45:D0:DC:11:7F:62:9B:C4:9C:C3:56:08:B4
X509v3 Authority Key Identifier:
keyid:20:C5:EE:02:D2:E0:58:61:DD:90:6F:E0:6B:38:44:F0:4D:37:8C:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IMXuAtLgWGHdkG_gazhE8E03jHM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/979296-ef7a-4bac-8c15-67771359a2b3/1/IMXuAtLgWGHdkG_gazhE8E03jHM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/979296-ef7a-4bac-8c15-67771359a2b3/1/IMXuAtLgWGHdkG_gazhE8E03jHM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:2a:71:d8:64:af:46:70:c9:76:22:23:25:eb:e7:a0:b2:0a:
3c:93:ce:6f:cd:4d:b0:cf:86:31:e7:c1:80:17:ac:0f:98:b8:
23:f7:94:30:4b:1d:b0:4c:ae:b9:46:9d:6a:65:79:52:8f:8e:
27:24:e3:18:3f:56:ba:85:25:a4:21:3c:60:9f:6d:c7:46:95:
f8:9c:7b:e4:cc:80:93:cf:76:fe:23:0b:59:81:1d:3c:30:e9:
04:ab:84:4c:b6:4b:5b:3f:8f:f1:a2:52:1b:89:4d:a0:b5:49:
cd:ec:ab:a1:d1:d3:27:e0:db:3e:a9:d6:c1:f2:52:e0:81:50:
09:2a:10:90:6c:e4:73:bd:54:e9:00:ce:df:4d:b3:7f:b1:75:
11:2f:fe:1e:af:30:3b:93:5a:68:21:a4:20:7f:a3:cd:70:dc:
06:d3:8f:a2:8e:6e:7d:54:3a:44:97:31:a1:50:ed:c4:62:ec:
15:95:5a:8b:fc:19:56:b5:50:2a:6a:43:43:38:95:5d:8e:b3:
2b:87:2c:e4:62:47:3f:2b:89:8f:f9:9b:7f:00:58:3d:17:67:
9a:54:17:8a:71:59:bc:a5:79:83:a0:dc:f8:11:d1:50:59:8c:
72:c3:f5:96:c2:a0:d9:c6:32:6a:d7:50:56:9b:00:d8:c7:56:
ef:9a:87:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:43:56 2025 by rpki-client