Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/f19f62-cade-42c9-a757-1dcb0bc7a96a/1/kPZLEhCNmzZnea-6z0gvefjA4xo.mft
File: kPZLEhCNmzZnea-6z0gvefjA4xo.mft (raw, json)
Hash identifier: siK6x+Q4b4NBbV/uSXid2Myl3SGdrHTZPk1cBjqfKew=
Subject key identifier: FC:2C:19:F3:AD:BF:2F:3F:E9:24:B6:C9:A4:F0:4F:61:01:34:D8:F8
Authority key identifier: 90:F6:4B:12:10:8D:9B:36:67:79:AF:BA:CF:48:2F:79:F8:C0:E3:1A
Certificate issuer: /CN=90f64b12108d9b366779afbacf482f79f8c0e31a
Certificate serial: 019747799BFDD9EC9CDB4A7330941F2F0B80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kPZLEhCNmzZnea-6z0gvefjA4xo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/f19f62-cade-42c9-a757-1dcb0bc7a96a/1/kPZLEhCNmzZnea-6z0gvefjA4xo.mft
Manifest number: 0189
Signing time: Fri 06 Jun 2025 23:00:41 +0000
Manifest this update: Fri 06 Jun 2025 23:00:41 +0000
Manifest next update: Sat 07 Jun 2025 23:00:41 +0000
Files and hashes: 1: hnM5W0U-Qj_uQRhaO3TbcAuM76o.roa (hash: 4rFXrF5OPsxPLyOZLu+yOTZUft5NKdXEPlgvLrZwpqk=)
2: kPZLEhCNmzZnea-6z0gvefjA4xo.crl (hash: HJ4+VcxXsujNtAoTTBdGuiuwbRHJaP49rnXFmpz6VO0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/f19f62-cade-42c9-a757-1dcb0bc7a96a/1/kPZLEhCNmzZnea-6z0gvefjA4xo.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/f19f62-cade-42c9-a757-1dcb0bc7a96a/1/kPZLEhCNmzZnea-6z0gvefjA4xo.mft
rsync://rpki.ripe.net/repository/DEFAULT/kPZLEhCNmzZnea-6z0gvefjA4xo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:79:9b:fd:d9:ec:9c:db:4a:73:30:94:1f:2f:0b:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90f64b12108d9b366779afbacf482f79f8c0e31a
Validity
Not Before: Jun 6 23:00:41 2025 GMT
Not After : Jun 7 23:00:41 2025 GMT
Subject: CN=fc2c19f3adbf2f3fe924b6c9a4f04f610134d8f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:44:a7:cd:4e:4e:7f:98:91:de:38:0b:4b:a3:
44:f6:95:01:c8:9c:46:bd:fa:17:18:d3:1a:7f:5d:
4b:24:98:d0:10:44:53:50:78:de:46:f8:1f:23:e8:
ed:96:99:55:72:5d:27:e3:02:7c:a1:63:ea:f0:3b:
a3:2e:bc:89:00:f5:19:5f:74:69:d9:c5:b5:bf:01:
b0:6d:e8:4e:60:e9:55:86:d1:6f:eb:0c:f1:49:27:
1c:24:66:64:be:10:df:24:4d:6d:55:c0:eb:ef:72:
85:66:99:e7:32:60:9c:24:32:37:59:b7:c4:cc:1b:
af:97:0e:d0:58:1a:15:c3:1f:4a:30:db:2d:40:e1:
28:d5:a9:66:d1:af:45:40:ba:01:ed:ba:91:35:a2:
d2:2b:42:df:a4:a2:68:51:ae:2d:11:6c:d6:de:92:
92:5d:dc:1b:62:67:77:b8:02:cf:d9:15:35:ea:b5:
0f:95:91:7e:a2:3c:65:bd:db:c8:64:e5:0a:4a:f7:
3c:08:77:01:1f:fa:5b:e7:43:93:d0:3e:86:0f:aa:
89:3a:3f:df:5f:9a:49:28:e4:d9:8d:21:6b:c7:eb:
13:3e:59:14:d6:71:fc:73:94:11:bf:21:d7:c9:6d:
ae:6a:22:c0:4a:28:03:a7:76:74:f4:7e:a5:cb:c2:
a2:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:2C:19:F3:AD:BF:2F:3F:E9:24:B6:C9:A4:F0:4F:61:01:34:D8:F8
X509v3 Authority Key Identifier:
keyid:90:F6:4B:12:10:8D:9B:36:67:79:AF:BA:CF:48:2F:79:F8:C0:E3:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kPZLEhCNmzZnea-6z0gvefjA4xo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/f19f62-cade-42c9-a757-1dcb0bc7a96a/1/kPZLEhCNmzZnea-6z0gvefjA4xo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/f19f62-cade-42c9-a757-1dcb0bc7a96a/1/kPZLEhCNmzZnea-6z0gvefjA4xo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:3c:3c:6e:02:79:83:54:d4:98:a1:4d:06:71:a8:69:91:be:
a9:e1:35:76:17:6c:9f:20:06:62:f4:2e:3f:bc:8c:fb:66:64:
fe:1b:cd:7f:9d:32:82:c9:0d:0a:f7:4a:60:63:d2:ee:9b:51:
32:8d:37:5a:40:bf:5d:aa:91:40:da:67:e0:cd:d4:be:e2:c7:
cf:1c:b2:34:45:00:36:5c:26:57:a3:7f:a4:32:9e:4b:fd:b7:
b7:74:78:c9:03:45:e8:f7:ff:0f:ba:e3:11:50:b3:f0:23:d7:
a1:ba:14:c8:79:c8:dd:28:61:50:de:56:3f:a0:65:1f:bf:8c:
d7:5d:e7:e7:00:80:44:59:64:2e:7f:6b:e4:84:a3:a1:c6:78:
9b:08:29:be:48:0e:4d:35:0d:5f:35:61:47:0a:aa:2c:92:34:
20:6e:92:18:95:e4:1f:fa:62:08:34:fc:45:41:46:6e:e2:2c:
b5:b1:ed:3e:09:69:e0:a8:ca:a6:f1:55:f1:9e:01:21:53:5d:
b2:77:d7:35:b5:64:75:5a:79:07:24:6f:71:85:89:eb:20:1e:
cc:37:8c:54:7a:8c:9c:c4:c8:5a:ca:c3:08:f8:b9:8a:5a:2e:
36:6d:6e:c9:f7:b3:a9:f2:09:b5:3d:54:17:e0:6f:f5:66:7f:
e1:98:80:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:07:07 2025 by rpki-client