Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.mft
File: imgZHKtu8GsyKwsSSHhdSEpFJPM.mft (raw, json)
Hash identifier: 5irLwEUY9/JAmN5hxD7RbstJujNcXRnsRe4QhH35TpQ=
Subject key identifier: 9F:86:AF:78:9C:A6:48:70:63:3A:A4:F9:9E:F6:FE:19:33:96:DB:DB
Authority key identifier: 8A:68:19:1C:AB:6E:F0:6B:32:2B:0B:12:48:78:5D:48:4A:45:24:F3
Certificate issuer: /CN=8a68191cab6ef06b322b0b1248785d484a4524f3
Certificate serial: 019769CED81C39CD85864A4CD4C42E0D1FC8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/imgZHKtu8GsyKwsSSHhdSEpFJPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.mft
Manifest number: 0FDC
Signing time: Fri 13 Jun 2025 15:00:52 +0000
Manifest this update: Fri 13 Jun 2025 15:00:52 +0000
Manifest next update: Sat 14 Jun 2025 15:00:52 +0000
Files and hashes: 1: U8GRHKScYdSNdnB2mr1xryjNCyA.roa (hash: gCSVLFeQA2Qb3RyGGtdWNAIaM4Y9u0sDXVDglP6HH5k=)
2: imgZHKtu8GsyKwsSSHhdSEpFJPM.crl (hash: Za189wFyh/UY5EuppW/lP4h0tSwYTMFO6lLx7EkYf5w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.mft
rsync://rpki.ripe.net/repository/DEFAULT/imgZHKtu8GsyKwsSSHhdSEpFJPM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:ce:d8:1c:39:cd:85:86:4a:4c:d4:c4:2e:0d:1f:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a68191cab6ef06b322b0b1248785d484a4524f3
Validity
Not Before: Jun 13 15:00:52 2025 GMT
Not After : Jun 14 15:00:52 2025 GMT
Subject: CN=9f86af789ca64870633aa4f99ef6fe193396dbdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:61:78:9d:92:e8:ff:c3:3d:d5:07:81:7d:3d:
58:63:82:54:d2:4a:fc:cd:eb:73:02:63:4c:f5:89:
1f:a0:91:a6:46:75:3b:ca:36:81:99:c5:40:1d:3c:
a9:b0:e8:10:88:cf:a2:61:97:d9:b4:7c:08:25:e2:
bd:9e:50:4b:81:17:b1:4b:7b:ec:93:f2:ef:ee:3c:
81:b3:be:e5:96:07:ee:73:64:45:0c:6d:6c:1c:12:
85:25:1d:87:cb:21:71:d9:b5:24:09:40:5a:8b:93:
7d:63:6e:f1:6d:04:29:3a:d4:02:e4:07:ff:27:3f:
c9:14:a1:4b:89:cd:46:8e:a3:0a:8b:61:7c:4f:dd:
a9:9f:a1:a6:00:ad:3c:cb:a7:fd:bc:44:97:c5:fe:
fc:af:7b:d0:47:8b:af:22:15:8e:d4:1d:7a:bd:a3:
ce:c0:d5:cf:76:c7:53:90:21:ef:e1:0d:63:c7:1d:
89:cd:2d:87:46:8a:04:31:7f:35:c3:56:37:6f:48:
6b:9f:11:6e:18:39:e0:19:87:0d:d8:4a:39:44:a8:
08:27:8a:fc:6d:f5:ee:1c:f0:66:04:28:53:1e:82:
6b:d8:d0:75:a7:ca:d6:16:43:61:cb:18:fb:20:55:
59:45:2d:98:04:8f:43:da:61:14:83:c2:fc:bd:6d:
a2:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:86:AF:78:9C:A6:48:70:63:3A:A4:F9:9E:F6:FE:19:33:96:DB:DB
X509v3 Authority Key Identifier:
keyid:8A:68:19:1C:AB:6E:F0:6B:32:2B:0B:12:48:78:5D:48:4A:45:24:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/imgZHKtu8GsyKwsSSHhdSEpFJPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:1e:e2:52:68:9a:ac:48:10:2a:97:ee:a7:31:eb:72:03:32:
3f:ec:c4:5f:ed:74:f6:11:24:5e:39:54:4e:3c:3e:5a:9c:a7:
a9:1f:c7:d3:bc:2c:cf:c8:a5:b5:af:f3:e8:e6:c8:90:71:e3:
19:da:ac:9f:40:ca:28:a8:c3:b1:27:25:3c:4a:3b:e5:1c:e5:
be:ad:d7:29:89:97:de:f4:46:08:5f:c4:db:3e:31:d8:8e:45:
26:dd:3b:c3:86:22:46:0d:60:1d:ec:9f:d4:08:1e:b3:c0:b9:
30:32:62:75:b7:90:d0:79:8e:42:9e:5f:b1:79:f7:31:1a:ce:
28:ca:5b:5a:cd:d6:c3:97:30:f5:61:db:f5:b4:05:22:6f:11:
2c:c5:9f:dd:1c:3d:bb:20:a1:3e:a6:ec:5e:d7:67:02:d5:f9:
ec:aa:60:4a:d3:c8:5c:e8:da:b4:a9:d3:84:9e:93:4d:58:94:
8b:06:20:1e:2a:bd:b7:b0:9d:cf:02:e4:84:c6:5b:69:ec:73:
89:4f:f2:2a:df:8b:79:5e:3d:3c:ac:02:c1:7f:d5:5c:ac:f6:
af:92:fa:1f:1b:2e:08:7b:b1:ba:ec:7b:34:9c:33:61:ef:92:
2e:94:bb:e8:da:41:cb:6f:16:4b:d6:eb:30:7c:b4:bd:fa:a8:
f5:cb:7a:d2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdpztgcOc2FhkpM1MQuDR/IMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhNjgxOTFjYWI2ZWYwNmIzMjJiMGIxMjQ4Nzg1ZDQ4NGE0
NTI0ZjMwHhcNMjUwNjEzMTUwMDUyWhcNMjUwNjE0MTUwMDUyWjAzMTEwLwYDVQQD
Eyg5Zjg2YWY3ODljYTY0ODcwNjMzYWE0Zjk5ZWY2ZmUxOTMzOTZkYmRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuWF4nZLo/8M91QeBfT1YY4JU0kr8
zetzAmNM9YkfoJGmRnU7yjaBmcVAHTypsOgQiM+iYZfZtHwIJeK9nlBLgRexS3vs
k/Lv7jyBs77llgfuc2RFDG1sHBKFJR2HyyFx2bUkCUBai5N9Y27xbQQpOtQC5Af/
Jz/JFKFLic1GjqMKi2F8T92pn6GmAK08y6f9vESXxf78r3vQR4uvIhWO1B16vaPO
wNXPdsdTkCHv4Q1jxx2JzS2HRooEMX81w1Y3b0hrnxFuGDngGYcN2Eo5RKgIJ4r8
bfXuHPBmBChTHoJr2NB1p8rWFkNhyxj7IFVZRS2YBI9D2mEUg8L8vW2i9wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ+Gr3icpkhwYzqk+Z72/hkzltvbMB8GA1UdIwQY
MBaAFIpoGRyrbvBrMisLEkh4XUhKRSTzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaW1nWkhLdHU4R3N5S3dzU1NIaGRTRXBGSlBNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9lM2VlOGQtZTQ1OS00ZjQ3LWI3NWQt
OTcxMTdlZWI0ODkxLzEvaW1nWkhLdHU4R3N5S3dzU1NIaGRTRXBGSlBNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS9lM2VlOGQtZTQ1OS00ZjQ3LWI3NWQtOTcxMTdlZWI0ODkx
LzEvaW1nWkhLdHU4R3N5S3dzU1NIaGRTRXBGSlBNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAih7iUmia
rEgQKpfupzHrcgMyP+zEX+109hEkXjlUTjw+WpynqR/H07wsz8ilta/z6ObIkHHj
Gdqsn0DKKKjDsSclPEo75Rzlvq3XKYmX3vRGCF/E2z4x2I5FJt07w4YiRg1gHeyf
1Ages8C5MDJidbeQ0HmOQp5fsXn3MRrOKMpbWs3Ww5cw9WHb9bQFIm8RLMWf3Rw9
uyChPqbsXtdnAtX57KpgStPIXOjatKnThJ6TTViUiwYgHiq9t7CdzwLkhMZbaexz
iU/yKt+LeV49PKwCwX/VXKz2r5L6HxsuCHuxuux7NJwzYe+SLpS76NpBy28WS9br
MHy0vfqo9ct60g==
-----END CERTIFICATE-----
Generated at Fri Jun 13 19:38:36 2025 by rpki-client