Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft
File: kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft (raw, json)
Hash identifier: nfQHTXufYpxtWD3w3/o5UoHeq7HjnuHphpXWZyhAyOM=
Subject key identifier: 4C:5B:00:87:26:A8:9B:DC:3D:8F:72:69:AC:72:D7:F4:D1:D3:14:37
Authority key identifier: 90:B3:A3:A0:D6:62:D1:4D:A8:40:4B:D2:1D:C4:89:E6:39:45:62:4E
Certificate issuer: /CN=90b3a3a0d662d14da8404bd21dc489e63945624e
Certificate serial: 019748FA04A971FDA91B3C3B5E80A7AB94A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft
Manifest number: 157B
Signing time: Sat 07 Jun 2025 06:00:33 +0000
Manifest this update: Sat 07 Jun 2025 06:00:33 +0000
Manifest next update: Sun 08 Jun 2025 06:00:33 +0000
Files and hashes: 1: Wq2iqPYhNjor18Qz9IXxlr7x8mQ.roa (hash: QfZmNahEgmZ6AaDD2oA3mk7CjDsVWvRKb2LNfkM1y9A=)
2: kLOjoNZi0U2oQEvSHcSJ5jlFYk4.crl (hash: EsKpXY0csiWLCBTOvyJyWzlL2RDOUvQ1NNdVDWjOTWc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 06:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:04:a9:71:fd:a9:1b:3c:3b:5e:80:a7:ab:94:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90b3a3a0d662d14da8404bd21dc489e63945624e
Validity
Not Before: Jun 7 06:00:33 2025 GMT
Not After : Jun 8 06:00:33 2025 GMT
Subject: CN=4c5b008726a89bdc3d8f7269ac72d7f4d1d31437
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:e2:2b:8e:1b:e3:2d:e7:12:cc:72:b7:2d:5c:
e2:6d:69:98:54:c5:cd:0f:a6:49:0d:1e:62:a3:54:
09:c2:b2:f7:b1:9b:7e:94:71:63:26:60:b8:d9:55:
ec:36:54:26:e6:94:60:b0:38:c0:2b:7f:ed:36:7e:
0f:ef:0a:29:be:fe:a4:da:e5:b9:fd:9e:55:73:4d:
1d:93:2b:95:9b:da:4c:8c:7f:0b:1d:ae:ba:3d:51:
74:42:85:9f:2b:94:2b:29:ec:aa:d6:7e:de:d3:44:
b6:03:ef:c4:71:37:8d:08:05:75:78:7a:cf:44:c2:
f5:42:c3:96:66:0b:5a:78:02:90:90:a1:86:4a:33:
22:81:a8:76:d7:a9:af:59:62:40:64:5c:25:86:da:
60:66:06:52:39:66:75:f8:a0:ac:4f:b6:6c:cd:8c:
66:db:6b:92:56:63:f6:c7:f6:5a:4f:38:7c:89:0e:
49:f8:ea:ac:5c:f2:2e:89:59:2d:5b:6f:e6:53:98:
66:05:c4:22:f5:3f:2e:9f:2c:74:d5:e3:7a:d4:6e:
57:41:8e:3d:e1:12:72:ae:b6:3a:e8:8a:a9:da:51:
e8:b2:df:f3:62:c7:dc:03:08:f9:5d:77:3c:08:6c:
29:b2:fa:c9:a1:ce:3f:cf:76:08:3e:fc:2f:48:2c:
0e:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:5B:00:87:26:A8:9B:DC:3D:8F:72:69:AC:72:D7:F4:D1:D3:14:37
X509v3 Authority Key Identifier:
keyid:90:B3:A3:A0:D6:62:D1:4D:A8:40:4B:D2:1D:C4:89:E6:39:45:62:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:e9:a9:c6:c5:ee:ca:27:83:fd:35:96:26:5e:73:da:56:d8:
a9:3c:da:50:ca:f2:1e:db:33:86:8e:54:e0:4f:5a:e6:c2:7b:
e9:5a:f9:a6:31:af:73:11:9c:78:4b:45:61:41:d9:ac:51:cb:
a4:8a:8f:aa:37:6e:d0:c2:e7:a0:70:04:7e:30:73:10:18:51:
78:dd:e6:e7:c1:10:f3:03:5c:22:ee:28:60:99:cb:bc:19:1b:
ae:79:8f:78:73:f5:f9:9f:06:55:3c:3e:85:b8:01:23:07:5c:
61:9b:6b:3b:55:4c:1e:a6:f1:5c:36:54:98:77:69:ec:33:bb:
89:c3:8e:22:8b:75:d1:bb:66:2f:fd:28:e0:97:b3:3b:52:cc:
37:60:38:35:f2:05:de:6d:2c:d0:b0:d1:3e:54:ab:fa:37:5f:
79:78:61:cb:c8:b7:c0:0e:a4:8d:3a:28:f7:0b:3e:a0:44:aa:
b7:53:75:82:52:31:33:24:81:9f:b9:4b:e1:60:12:b9:b9:35:
db:df:80:15:70:cd:27:1c:1c:37:73:03:60:07:91:3e:20:e6:
1c:ef:b0:51:32:d0:ea:0a:57:6c:c7:fe:81:67:96:72:a9:1d:
3f:76:e1:59:69:dd:76:60:fb:32:d9:2c:0e:74:cc:c1:87:8d:
8a:6f:f1:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 16:11:11 2025 by rpki-client