Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/f19f62-cade-42c9-a757-1dcb0bc7a96a/1/kPZLEhCNmzZnea-6z0gvefjA4xo.mft
File: kPZLEhCNmzZnea-6z0gvefjA4xo.mft (raw, json)
Hash identifier: n7LR2uZOKGo9MHu3EKuIsxbliVgjXhCZrl2OUDnFoR8=
Subject key identifier: A8:FF:FA:9E:0E:19:81:97:21:C9:03:91:D5:56:AF:21:09:43:ED:A9
Authority key identifier: 90:F6:4B:12:10:8D:9B:36:67:79:AF:BA:CF:48:2F:79:F8:C0:E3:1A
Certificate issuer: /CN=90f64b12108d9b366779afbacf482f79f8c0e31a
Certificate serial: 0199228C675CA0100FAAEB10381537EE6290
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kPZLEhCNmzZnea-6z0gvefjA4xo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/f19f62-cade-42c9-a757-1dcb0bc7a96a/1/kPZLEhCNmzZnea-6z0gvefjA4xo.mft
Manifest number: 027F
Signing time: Sun 07 Sep 2025 05:00:50 +0000
Manifest this update: Sun 07 Sep 2025 05:00:50 +0000
Manifest next update: Mon 08 Sep 2025 05:00:50 +0000
Files and hashes: 1: hnM5W0U-Qj_uQRhaO3TbcAuM76o.roa (hash: 4rFXrF5OPsxPLyOZLu+yOTZUft5NKdXEPlgvLrZwpqk=)
2: kPZLEhCNmzZnea-6z0gvefjA4xo.crl (hash: zgku+9a3MHbFzkxoe+9i61qjSH6LvJgpB7qfJiXbVRs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/f19f62-cade-42c9-a757-1dcb0bc7a96a/1/kPZLEhCNmzZnea-6z0gvefjA4xo.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/f19f62-cade-42c9-a757-1dcb0bc7a96a/1/kPZLEhCNmzZnea-6z0gvefjA4xo.mft
rsync://rpki.ripe.net/repository/DEFAULT/kPZLEhCNmzZnea-6z0gvefjA4xo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:67:5c:a0:10:0f:aa:eb:10:38:15:37:ee:62:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90f64b12108d9b366779afbacf482f79f8c0e31a
Validity
Not Before: Sep 7 05:00:50 2025 GMT
Not After : Sep 8 05:00:50 2025 GMT
Subject: CN=a8fffa9e0e19819721c90391d556af210943eda9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:e2:83:2e:29:23:75:22:a0:45:2d:91:80:8e:
d5:e2:da:f0:3e:6d:87:9c:e2:79:8b:35:55:c1:a3:
c4:fa:b1:9d:64:dc:78:12:55:85:4a:e0:13:86:b2:
10:75:a4:2f:a0:af:58:5d:2b:1a:a5:6a:02:68:4f:
01:7a:26:fa:68:b9:ee:c7:40:e9:3a:6f:cf:35:4f:
ea:ed:0d:92:0b:c0:95:c4:ca:cd:72:36:00:f5:15:
dc:07:97:3c:81:c2:ef:62:0d:5b:fe:ac:a5:d9:92:
66:d3:87:8d:7f:ab:b8:59:d3:a4:ac:89:81:88:b4:
45:3a:72:dd:54:f5:5f:7d:d9:4d:ff:a9:9c:2f:cc:
49:78:ab:94:60:f6:61:2f:0d:2e:be:a2:b5:5f:8e:
7d:d3:7a:6c:29:94:b1:51:64:83:44:1f:3d:a8:fc:
00:4d:eb:d4:5e:53:d4:41:d3:7b:db:7d:5c:39:82:
00:fb:e6:b4:7a:51:3c:87:45:dd:43:dc:81:c6:41:
3e:42:36:c1:c7:ab:98:19:4d:0b:87:71:cc:4f:f2:
84:fc:98:4d:11:1f:f3:33:1b:11:26:40:7c:cd:5d:
42:38:4b:7d:bc:94:e3:9c:51:dd:ff:11:4d:a8:06:
87:f8:dc:16:ed:8f:29:c4:51:fe:a5:14:55:a0:51:
3c:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:FF:FA:9E:0E:19:81:97:21:C9:03:91:D5:56:AF:21:09:43:ED:A9
X509v3 Authority Key Identifier:
keyid:90:F6:4B:12:10:8D:9B:36:67:79:AF:BA:CF:48:2F:79:F8:C0:E3:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kPZLEhCNmzZnea-6z0gvefjA4xo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/f19f62-cade-42c9-a757-1dcb0bc7a96a/1/kPZLEhCNmzZnea-6z0gvefjA4xo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/f19f62-cade-42c9-a757-1dcb0bc7a96a/1/kPZLEhCNmzZnea-6z0gvefjA4xo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:3a:38:a0:8d:13:3c:35:2b:56:f6:de:3e:e0:c0:49:5f:87:
ff:2f:bf:f7:b8:ad:dd:1f:ea:db:13:5d:74:a2:52:e4:0d:d7:
8a:91:88:5e:8d:41:b1:07:01:eb:40:e7:89:d1:a9:e3:30:32:
f3:4b:fe:ba:a5:8d:3c:a6:a4:b9:79:af:a1:04:a5:62:80:6a:
db:51:31:cd:91:3b:fb:79:a0:bd:8e:93:f1:0e:dd:5f:9e:6b:
de:81:7f:1a:9d:11:ae:37:3c:5f:1a:88:71:d6:09:12:d5:db:
46:96:4f:93:8f:e5:29:10:13:fb:8f:9c:d7:4c:52:ae:85:6c:
96:dc:a5:84:24:ac:6d:b0:37:7b:73:f9:4d:91:a6:fe:4f:5e:
1a:67:40:4e:0d:35:b5:ef:90:83:66:65:61:39:4b:2b:64:89:
71:84:3a:41:e8:71:75:50:83:4f:76:67:f3:82:63:06:8d:b5:
76:b9:00:81:06:3a:1e:e6:21:2d:f9:8c:dd:be:36:99:49:07:
78:60:ea:1f:74:00:a1:13:f3:ae:db:d9:70:f4:a5:3b:32:3e:
d9:57:fe:ab:f0:87:e2:1a:e1:bc:06:36:3d:bf:39:d4:f5:eb:
ef:36:5f:19:f6:1b:9b:c1:f2:9b:39:22:72:e4:3e:d2:06:c6:
e4:bd:1e:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:39:32 2025 by rpki-client