Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
File: IM1XQoSmAY5bA2Neml1lj99XNPA.mft (raw, json)
Hash identifier: ftR/hrpPj8EalbjWYAvRSiR9VxphCDoCiivXz043CaI=
Subject key identifier: 6C:C2:A0:0E:17:E9:AF:15:41:25:EA:29:5E:4A:0C:B6:46:C9:E7:B3
Authority key identifier: 20:CD:57:42:84:A6:01:8E:5B:03:63:5E:9A:5D:65:8F:DF:57:34:F0
Certificate issuer: /CN=20cd574284a6018e5b03635e9a5d658fdf5734f0
Certificate serial: 01987ABFD1E8B04234AC82348D7EC7B43E65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
Manifest number: 1360
Signing time: Tue 05 Aug 2025 15:00:48 +0000
Manifest this update: Tue 05 Aug 2025 15:00:48 +0000
Manifest next update: Wed 06 Aug 2025 15:00:48 +0000
Files and hashes: 1: IM1XQoSmAY5bA2Neml1lj99XNPA.crl (hash: z6NZdZp3ix0X30Wt9kaKnLdAHVIYfw8vRKMEZ7AXKbc=)
2: MWwIJyVW-xGM8HHmiPSGu90ysVM.roa (hash: 9euJkhmoCQb1LOfkGIPpqowd4pomSIjB0l7bFL7u4Yg=)
3: PiMCmpetvGyOad9hAP8fiU1Qa8U.roa (hash: W2k0p2aLpcmF1pGu+mKgyVPY0tAWg3LNT6+Z7BuBqqY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 14:37:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7a:bf:d1:e8:b0:42:34:ac:82:34:8d:7e:c7:b4:3e:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20cd574284a6018e5b03635e9a5d658fdf5734f0
Validity
Not Before: Aug 5 15:00:48 2025 GMT
Not After : Aug 6 15:00:48 2025 GMT
Subject: CN=6cc2a00e17e9af154125ea295e4a0cb646c9e7b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:99:5f:7c:40:d8:c5:a1:10:d5:1a:98:ff:97:
12:16:e9:24:79:51:83:30:59:b8:8f:e4:31:38:8e:
72:37:9a:ac:27:c5:35:76:78:3a:d6:b0:41:d5:78:
fb:83:fe:47:bd:cb:a0:ac:89:e2:7b:d7:8f:83:65:
81:6d:dc:7e:67:14:bc:1a:e3:45:c3:db:c0:5b:90:
08:78:54:ee:c8:97:6e:8f:3e:5e:0e:58:69:04:68:
5a:0e:19:64:1c:b4:df:54:0f:89:cb:95:e9:ef:54:
f5:c2:07:67:5f:8a:a7:91:4f:d3:b1:4c:ca:f9:8e:
5d:fe:da:51:4a:5d:34:80:e5:ae:55:37:9f:e4:6a:
43:fb:e2:36:22:e7:58:4a:48:08:c5:4a:1d:54:ab:
86:3f:b1:ee:24:9e:53:bb:5f:1a:62:99:fa:cf:71:
1b:6c:de:1d:4e:fc:ff:b5:de:aa:ba:48:4f:98:bb:
3e:fa:fd:bf:b1:fa:bf:d6:18:29:6e:b3:83:db:ba:
8c:37:ec:d6:22:d5:4b:8e:92:08:46:dc:c4:5f:05:
b6:c8:58:2d:3b:cd:37:78:e2:fd:bf:ed:a5:bd:8e:
9a:67:d8:62:7c:78:f2:c4:be:31:5a:34:ef:8f:ed:
dd:13:85:31:4e:fc:7e:db:db:cb:23:1f:ff:17:4d:
f7:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:C2:A0:0E:17:E9:AF:15:41:25:EA:29:5E:4A:0C:B6:46:C9:E7:B3
X509v3 Authority Key Identifier:
keyid:20:CD:57:42:84:A6:01:8E:5B:03:63:5E:9A:5D:65:8F:DF:57:34:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:13:aa:86:0f:4b:ba:c1:74:54:16:19:2e:3e:75:a8:1a:f2:
97:64:06:ae:37:4f:29:2a:20:19:0d:91:48:16:c8:a7:c7:ce:
9d:ff:e5:57:61:25:fa:81:5d:ef:e8:55:6e:55:38:fa:3d:ba:
d1:01:1d:21:cf:82:9f:f5:db:11:9e:9c:b5:e5:a7:b4:3b:28:
39:e4:cf:29:0d:d8:8a:e9:1e:0f:66:1c:f9:4f:f2:64:6a:e6:
33:10:cc:14:5b:d1:96:22:b3:6b:a5:36:6a:a2:c4:c4:ff:f2:
10:40:61:39:80:95:e0:48:be:6a:48:77:28:fe:6b:af:c2:d7:
de:09:3c:31:4c:78:f5:73:1f:06:2f:ba:40:ed:ac:23:8b:ee:
35:22:16:83:a8:50:a4:c5:65:7b:09:04:cb:a4:37:44:ed:bb:
d4:38:c8:7f:fa:3f:5a:89:4d:d2:97:a5:a2:2d:6c:29:b3:94:
f8:10:81:8f:1d:42:c4:80:53:fc:d1:05:31:27:dd:9d:79:ef:
f6:5d:f6:2c:58:28:ed:02:17:f9:2c:61:bb:76:2d:3f:ee:8f:
5f:a0:82:b7:19:eb:13:b0:59:1a:06:62:cf:aa:a1:fd:dc:df:
67:be:81:f2:e2:35:47:32:7f:5b:60:29:2c:97:79:b9:69:38:
53:54:5b:84
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh6v9HosEI0rII0jX7HtD5lMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwY2Q1NzQyODRhNjAxOGU1YjAzNjM1ZTlhNWQ2NThmZGY1
NzM0ZjAwHhcNMjUwODA1MTUwMDQ4WhcNMjUwODA2MTUwMDQ4WjAzMTEwLwYDVQQD
Eyg2Y2MyYTAwZTE3ZTlhZjE1NDEyNWVhMjk1ZTRhMGNiNjQ2YzllN2IzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuplffEDYxaEQ1RqY/5cSFukkeVGD
MFm4j+QxOI5yN5qsJ8U1dng61rBB1Xj7g/5HvcugrInie9ePg2WBbdx+ZxS8GuNF
w9vAW5AIeFTuyJdujz5eDlhpBGhaDhlkHLTfVA+Jy5Xp71T1wgdnX4qnkU/TsUzK
+Y5d/tpRSl00gOWuVTef5GpD++I2IudYSkgIxUodVKuGP7HuJJ5Tu18aYpn6z3Eb
bN4dTvz/td6qukhPmLs++v2/sfq/1hgpbrOD27qMN+zWItVLjpIIRtzEXwW2yFgt
O803eOL9v+2lvY6aZ9hifHjyxL4xWjTvj+3dE4UxTvx+29vLIx//F033CQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGzCoA4X6a8VQSXqKV5KDLZGyeezMB8GA1UdIwQY
MBaAFCDNV0KEpgGOWwNjXppdZY/fVzTwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSU0xWFFvU21BWTViQTJOZW1sMWxqOTlYTlBBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy9jMjE2Y2EtYWE5ZC00ZDIxLTg0MWUt
NDliNTY4N2ZlZTZkLzEvSU0xWFFvU21BWTViQTJOZW1sMWxqOTlYTlBBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNy9jMjE2Y2EtYWE5ZC00ZDIxLTg0MWUtNDliNTY4N2ZlZTZk
LzEvSU0xWFFvU21BWTViQTJOZW1sMWxqOTlYTlBBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALhOqhg9L
usF0VBYZLj51qBryl2QGrjdPKSogGQ2RSBbIp8fOnf/lV2El+oFd7+hVblU4+j26
0QEdIc+Cn/XbEZ6cteWntDsoOeTPKQ3YiukeD2Yc+U/yZGrmMxDMFFvRliKza6U2
aqLExP/yEEBhOYCV4Ei+akh3KP5rr8LX3gk8MUx49XMfBi+6QO2sI4vuNSIWg6hQ
pMVlewkEy6Q3RO271DjIf/o/WolN0peloi1sKbOU+BCBjx1CxIBT/NEFMSfdnXnv
9l32LFgo7QIX+Sxhu3YtP+6PX6CCtxnrE7BZGgZiz6qh/dzfZ76B8uI1RzJ/W2Ap
LJd5uWk4U1RbhA==
-----END CERTIFICATE-----
Generated at Tue Aug 5 23:00:23 2025 by rpki-client