Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/e9a7a1-e9fe-47d4-ae32-df0a44800aa5/1/kFLex7dhf-OchVDuIMOCIBq5ryo.mft
File: kFLex7dhf-OchVDuIMOCIBq5ryo.mft (raw, json)
Hash identifier: GDrb00Ie4foIRwA+tHDCRuTq1sdlf4PDtu46cV0z6y0=
Subject key identifier: B6:15:13:25:27:74:8F:25:6E:B9:D4:4C:A5:31:79:E7:87:4E:AD:29
Authority key identifier: 90:52:DE:C7:B7:61:7F:E3:9C:85:50:EE:20:C3:82:20:1A:B9:AF:2A
Certificate issuer: /CN=9052dec7b7617fe39c8550ee20c382201ab9af2a
Certificate serial: 01974A43B1DB67A31642D58A758731E8192E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kFLex7dhf-OchVDuIMOCIBq5ryo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/e9a7a1-e9fe-47d4-ae32-df0a44800aa5/1/kFLex7dhf-OchVDuIMOCIBq5ryo.mft
Manifest number: 1005
Signing time: Sat 07 Jun 2025 12:00:39 +0000
Manifest this update: Sat 07 Jun 2025 12:00:39 +0000
Manifest next update: Sun 08 Jun 2025 12:00:39 +0000
Files and hashes: 1: DoqnptEmFDIWhd5INYDJmXuCj7c.roa (hash: knJh69OYwi71VIfestV+KfQIeq85PlXtAbjPJg+Zm8w=)
2: kFLex7dhf-OchVDuIMOCIBq5ryo.crl (hash: P/4LO5Mt9a129+fHm7tARiPNfFGuhVb9E0W6OKPxQNc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/e9a7a1-e9fe-47d4-ae32-df0a44800aa5/1/kFLex7dhf-OchVDuIMOCIBq5ryo.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/e9a7a1-e9fe-47d4-ae32-df0a44800aa5/1/kFLex7dhf-OchVDuIMOCIBq5ryo.mft
rsync://rpki.ripe.net/repository/DEFAULT/kFLex7dhf-OchVDuIMOCIBq5ryo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:43:b1:db:67:a3:16:42:d5:8a:75:87:31:e8:19:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9052dec7b7617fe39c8550ee20c382201ab9af2a
Validity
Not Before: Jun 7 12:00:39 2025 GMT
Not After : Jun 8 12:00:39 2025 GMT
Subject: CN=b615132527748f256eb9d44ca53179e7874ead29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:d8:38:62:02:a5:c4:55:c9:eb:26:34:87:d7:
22:5f:91:1f:83:45:db:8f:ec:77:ad:03:e4:fe:94:
ac:1a:94:88:82:1c:c8:ad:91:45:11:51:24:c0:de:
b2:0f:f4:c5:a8:08:a9:3b:bd:de:ef:34:11:6e:a2:
86:42:51:be:6f:db:f3:ee:29:2c:37:11:2e:26:5d:
b2:2c:00:db:df:4f:d8:7a:fd:35:9c:a3:94:46:ca:
b5:89:a1:3e:0a:e8:c1:ff:4b:66:a0:11:9a:8e:47:
1f:bb:1d:43:ed:7e:cc:ed:c8:a6:1f:49:62:6f:81:
cf:bb:d6:5b:53:f0:b1:85:f4:b2:e4:32:62:8c:9f:
98:c8:20:05:a8:55:52:35:0a:4c:da:c7:57:1f:ca:
c5:00:51:26:ef:4f:3f:79:eb:25:fc:2f:a8:40:67:
5e:b3:af:c8:01:d3:ef:49:e7:b0:28:a1:e9:e8:ea:
7b:19:95:3f:b1:38:77:7d:3c:9d:a1:a7:c8:3e:0f:
24:35:a0:e8:72:41:5c:ec:b9:b2:7f:38:b1:93:40:
67:4f:c0:43:25:d7:8c:82:24:eb:19:e0:6f:12:09:
19:c8:e4:d3:fb:2b:95:c2:cc:7b:d8:9f:8c:7f:b2:
27:f0:b5:34:20:ea:83:95:f1:4b:18:d1:c8:42:7b:
08:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:15:13:25:27:74:8F:25:6E:B9:D4:4C:A5:31:79:E7:87:4E:AD:29
X509v3 Authority Key Identifier:
keyid:90:52:DE:C7:B7:61:7F:E3:9C:85:50:EE:20:C3:82:20:1A:B9:AF:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kFLex7dhf-OchVDuIMOCIBq5ryo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/e9a7a1-e9fe-47d4-ae32-df0a44800aa5/1/kFLex7dhf-OchVDuIMOCIBq5ryo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/e9a7a1-e9fe-47d4-ae32-df0a44800aa5/1/kFLex7dhf-OchVDuIMOCIBq5ryo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:23:3e:95:83:0f:72:9e:ab:5d:be:46:f0:16:a5:86:f9:a3:
0d:1a:5e:70:8a:49:74:6b:a9:b4:22:1a:b6:5e:70:b8:7c:71:
65:09:df:44:1a:88:7d:70:11:a9:25:cf:34:4e:66:02:37:9c:
a6:7a:96:47:81:34:ea:e4:11:35:9c:62:a8:9b:c4:8f:99:59:
b3:1b:5f:83:31:77:85:69:ac:49:8a:72:cb:3d:58:50:3a:c7:
4e:b2:66:18:42:f2:da:30:c9:94:28:f7:35:42:b5:a7:ca:74:
40:fb:29:9c:b5:5e:17:58:34:01:53:e5:a0:a3:1e:2b:df:56:
bb:f8:a5:f6:73:50:65:ed:cc:0f:4f:3b:f9:9a:2e:ea:0c:72:
ea:54:d3:cb:a4:58:b6:99:ad:63:59:a7:69:97:54:73:44:b0:
f4:f7:09:2a:c0:76:28:37:46:fd:a9:04:76:c8:f3:11:d2:58:
1e:6b:b5:62:4f:3a:d8:a8:3c:ee:7e:97:f3:61:90:0d:29:af:
2e:ba:63:fc:a3:b7:d0:a3:cc:a5:96:f7:3e:9f:e1:4b:88:82:
0e:e9:e9:eb:08:11:a1:42:85:c3:0b:9f:3d:f9:32:b6:83:bb:
af:0b:53:d6:a3:3d:45:79:82:f8:02:a5:79:70:3d:a0:8b:cb:
07:5f:e2:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 21:59:50 2025 by rpki-client