Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
File: kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft (raw, json)
Hash identifier: 25I9yAT7+Tb43EqS/Ge/7NwTWBhlWFxbrDau0/iU8FE=
Subject key identifier: 4A:B5:ED:0C:51:90:31:35:44:76:76:E5:97:59:21:7C:92:11:26:32
Authority key identifier: 90:CC:D9:13:A9:9B:AF:D8:93:E0:7B:A9:68:A6:74:34:E3:DF:54:20
Certificate issuer: /CN=90ccd913a99bafd893e07ba968a67434e3df5420
Certificate serial: 019921B1461130B12F2509FAF0066EEEF19E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
Manifest number: 15C9
Signing time: Sun 07 Sep 2025 01:01:29 +0000
Manifest this update: Sun 07 Sep 2025 01:01:29 +0000
Manifest next update: Mon 08 Sep 2025 01:01:29 +0000
Files and hashes: 1: 7ma8rm9Nc8aP0i9rOur_HEzgHJs.roa (hash: GInuicNk1jMv1+rnjCpEDF87yGDttTl9tUwBgJS9KiA=)
2: kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl (hash: I80C5qTTuch0Uvodv6McT0TYOA7pKX2AjoE0QgACPQI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b1:46:11:30:b1:2f:25:09:fa:f0:06:6e:ee:f1:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90ccd913a99bafd893e07ba968a67434e3df5420
Validity
Not Before: Sep 7 01:01:29 2025 GMT
Not After : Sep 8 01:01:29 2025 GMT
Subject: CN=4ab5ed0c51903135447676e59759217c92112632
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:b2:b5:74:41:18:6c:d9:42:f6:0b:c2:f6:0f:
74:13:ff:ac:f4:29:67:57:f2:c6:97:72:f9:65:5f:
9c:70:c8:d9:a3:6c:fa:6f:67:f3:fa:48:24:04:20:
63:09:14:3b:de:04:1d:f0:eb:b3:bd:75:b3:c9:30:
97:ed:6a:f7:31:7c:b9:6e:de:fe:c9:48:cf:d0:c2:
ce:bf:a8:a9:b9:fa:f6:37:a0:68:9d:15:13:23:3b:
44:c3:42:90:64:db:14:12:19:0d:0a:22:21:a3:f3:
8b:78:05:e8:24:34:f4:41:98:f1:68:80:96:8e:11:
37:e4:87:4d:c2:7e:ef:d1:29:0b:d8:a5:40:49:a9:
2d:33:b1:83:84:a9:b2:02:c8:49:06:97:e8:8f:aa:
1b:f7:99:e4:49:db:2b:43:90:d1:94:80:c1:7e:ed:
c4:02:ea:9e:97:2f:2b:2e:3b:34:48:43:48:61:26:
08:e2:5b:da:70:2d:04:ef:79:76:93:d6:66:1d:90:
b4:6d:81:23:7c:c0:89:fc:3a:11:f6:e9:a9:47:4e:
c6:b4:cb:b5:3c:23:fd:bf:e4:e2:aa:e5:76:e8:a8:
6b:33:90:a3:9f:ef:72:62:e6:42:07:61:6e:1a:cf:
bc:26:d2:d0:76:73:32:98:99:b3:31:fd:5c:58:c6:
43:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:B5:ED:0C:51:90:31:35:44:76:76:E5:97:59:21:7C:92:11:26:32
X509v3 Authority Key Identifier:
keyid:90:CC:D9:13:A9:9B:AF:D8:93:E0:7B:A9:68:A6:74:34:E3:DF:54:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:03:97:cf:97:b7:b0:48:df:7d:e2:b1:e0:05:b7:5c:4f:6c:
a9:ce:67:a6:98:bd:cf:3a:6f:ec:2c:ad:ca:66:4d:b3:1d:82:
93:be:66:1d:86:52:cb:a5:89:ac:98:07:eb:16:8b:b5:d7:ac:
df:7f:20:47:08:df:76:c9:55:20:c4:9c:25:a6:a0:05:17:c8:
fa:83:6c:a3:27:00:d6:12:d3:18:1c:58:c5:44:e8:10:8d:78:
ce:d2:f4:9c:89:af:2c:5c:4b:2e:ce:4c:04:72:6a:ec:25:f3:
0d:d7:0f:1b:61:46:23:b4:6b:62:e1:84:2a:fd:1a:2c:1c:07:
ac:70:fd:2a:e4:b5:1c:55:02:7e:3c:5d:d3:b3:f9:c5:86:48:
10:d8:b1:67:60:39:b1:0d:60:be:6c:b2:b8:fc:9e:17:7c:b5:
bf:02:82:90:78:7b:73:60:3a:83:07:92:c5:ee:66:ff:c2:31:
05:e8:44:0f:e3:10:81:79:e8:0e:78:12:4b:e6:38:45:5f:6e:
8a:b2:05:3f:60:11:85:bf:23:88:6f:19:bf:15:7f:5e:20:5a:
67:8b:c7:e7:a3:e9:52:cf:ce:07:fd:d8:01:26:e1:35:b6:64:
3d:db:8e:c9:30:ef:2a:8f:b8:a0:dc:fb:ec:1c:65:03:af:c4:
5e:9f:ec:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:07:37 2025 by rpki-client