Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/e9a7a1-e9fe-47d4-ae32-df0a44800aa5/1/kFLex7dhf-OchVDuIMOCIBq5ryo.mft
File: kFLex7dhf-OchVDuIMOCIBq5ryo.mft (raw, json)
Hash identifier: 5VuPurQSlAeQpbAIUDig/tl12CCQndwwMJuXzZqDGOs=
Subject key identifier: 63:B0:79:76:6F:2F:E5:49:10:3C:95:EB:27:07:FF:37:6F:8C:6E:9E
Authority key identifier: 90:52:DE:C7:B7:61:7F:E3:9C:85:50:EE:20:C3:82:20:1A:B9:AF:2A
Certificate issuer: /CN=9052dec7b7617fe39c8550ee20c382201ab9af2a
Certificate serial: 0199180973C7169E608CFCD4547FAD03BB05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kFLex7dhf-OchVDuIMOCIBq5ryo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/e9a7a1-e9fe-47d4-ae32-df0a44800aa5/1/kFLex7dhf-OchVDuIMOCIBq5ryo.mft
Manifest number: 10F4
Signing time: Fri 05 Sep 2025 04:01:36 +0000
Manifest this update: Fri 05 Sep 2025 04:01:36 +0000
Manifest next update: Sat 06 Sep 2025 04:01:36 +0000
Files and hashes: 1: DoqnptEmFDIWhd5INYDJmXuCj7c.roa (hash: knJh69OYwi71VIfestV+KfQIeq85PlXtAbjPJg+Zm8w=)
2: kFLex7dhf-OchVDuIMOCIBq5ryo.crl (hash: Phb3PwVnKmvuVDFxkRnlSh6MmGB5tqh2vRTZ01EUA4o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/e9a7a1-e9fe-47d4-ae32-df0a44800aa5/1/kFLex7dhf-OchVDuIMOCIBq5ryo.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/e9a7a1-e9fe-47d4-ae32-df0a44800aa5/1/kFLex7dhf-OchVDuIMOCIBq5ryo.mft
rsync://rpki.ripe.net/repository/DEFAULT/kFLex7dhf-OchVDuIMOCIBq5ryo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:18:09:73:c7:16:9e:60:8c:fc:d4:54:7f:ad:03:bb:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9052dec7b7617fe39c8550ee20c382201ab9af2a
Validity
Not Before: Sep 5 04:01:36 2025 GMT
Not After : Sep 6 04:01:36 2025 GMT
Subject: CN=63b079766f2fe549103c95eb2707ff376f8c6e9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:fe:a6:0b:49:02:c4:e7:0b:66:ae:75:6c:61:
c2:aa:80:50:ff:b7:f2:d5:1c:a1:30:9b:e9:18:98:
62:5f:6b:c4:d3:31:98:5d:1e:74:61:77:62:b0:1a:
97:93:e7:81:a8:27:21:ec:4e:60:6b:7a:37:2b:79:
47:8d:e5:6b:e0:9c:b3:0d:4c:4e:90:b9:b2:78:2f:
b6:99:5b:09:ab:b2:70:f3:7c:f5:f1:44:2c:6e:af:
4a:11:21:6e:69:d7:80:4e:af:ec:7a:93:13:45:ee:
3f:0f:c8:fe:ea:e1:97:6d:c6:bc:f3:3a:01:3d:e0:
a5:d7:e4:fc:32:86:1f:82:f6:2d:e2:ea:b7:c3:6e:
6f:64:3b:33:8f:db:0b:c7:1d:e5:ef:4c:8c:b5:96:
2d:cd:cc:6f:e7:f4:28:a2:5e:ec:b5:a9:25:68:24:
f5:e9:1a:5b:3d:ca:12:fb:f0:58:ee:06:e8:ce:23:
e0:05:f5:17:db:e9:14:8d:41:dd:91:f7:45:68:85:
e0:3a:0b:cf:2c:a9:d2:d8:4c:ae:eb:fc:1c:16:34:
16:20:69:d9:26:44:bc:66:66:12:15:6a:22:8b:f7:
61:8f:56:a3:ce:7c:96:25:c8:9f:4f:21:e6:10:6e:
47:ac:de:bc:be:92:0f:2f:75:dc:95:4e:90:33:5f:
e9:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:B0:79:76:6F:2F:E5:49:10:3C:95:EB:27:07:FF:37:6F:8C:6E:9E
X509v3 Authority Key Identifier:
keyid:90:52:DE:C7:B7:61:7F:E3:9C:85:50:EE:20:C3:82:20:1A:B9:AF:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kFLex7dhf-OchVDuIMOCIBq5ryo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/e9a7a1-e9fe-47d4-ae32-df0a44800aa5/1/kFLex7dhf-OchVDuIMOCIBq5ryo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/e9a7a1-e9fe-47d4-ae32-df0a44800aa5/1/kFLex7dhf-OchVDuIMOCIBq5ryo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:5a:29:98:0a:e0:19:dd:38:37:16:ca:85:90:c7:7c:6b:1b:
18:46:51:db:47:96:30:9c:6b:3a:1a:30:f9:61:20:b3:f5:19:
7d:fa:f3:02:c0:86:cd:dc:94:50:84:6b:d9:fe:b3:47:04:bf:
d2:c9:df:11:be:48:f0:a6:d0:47:83:ae:0c:e5:5d:b1:80:fd:
ce:62:db:96:be:ec:21:a7:33:8d:54:66:9a:11:0d:16:28:85:
28:fb:1a:47:cc:33:f7:e9:41:e4:d1:43:8d:76:df:cd:2c:00:
ac:1c:26:9c:d2:56:b5:97:ad:c6:7b:e1:45:5b:30:47:7d:de:
e6:04:56:8d:26:21:29:b0:af:bd:d1:85:9e:1a:04:2b:4c:47:
1a:e9:07:74:95:a2:c9:11:14:4c:74:c4:89:4c:d2:6b:a7:40:
7b:d4:24:20:6a:b9:e1:d9:5d:55:5b:fc:09:34:3c:db:60:a7:
21:d5:02:66:96:5f:e0:e3:b2:b1:86:dc:b2:95:0a:7d:67:5f:
0e:e6:d3:69:8d:e2:3c:f6:49:50:5b:68:44:b8:73:6d:37:18:
10:01:5b:cf:c3:91:ef:94:e0:ff:1f:cb:3f:ac:42:54:9c:dd:
bc:88:a9:b5:81:ac:b5:a7:a6:65:e5:84:27:b5:02:6d:29:71:
0b:e0:e2:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 06:03:24 2025 by rpki-client