Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft
File: kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft (raw, json)
Hash identifier: 9VDLIRR4yVrnEZQta6mkx89goz6WKPW6hSLNzx52TSg=
Subject key identifier: 1C:1A:1A:A6:C0:32:0C:E5:B7:02:23:79:5D:1D:8F:8D:E1:58:4B:54
Authority key identifier: 90:B3:A3:A0:D6:62:D1:4D:A8:40:4B:D2:1D:C4:89:E6:39:45:62:4E
Certificate issuer: /CN=90b3a3a0d662d14da8404bd21dc489e63945624e
Certificate serial: 0199221F141BC9F1E749C3A4E8E435E9AD00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft
Manifest number: 1670
Signing time: Sun 07 Sep 2025 03:01:25 +0000
Manifest this update: Sun 07 Sep 2025 03:01:25 +0000
Manifest next update: Mon 08 Sep 2025 03:01:25 +0000
Files and hashes: 1: Wq2iqPYhNjor18Qz9IXxlr7x8mQ.roa (hash: QfZmNahEgmZ6AaDD2oA3mk7CjDsVWvRKb2LNfkM1y9A=)
2: kLOjoNZi0U2oQEvSHcSJ5jlFYk4.crl (hash: pW+Az+lFq7qhoDIQReBbMtPaDHOcdHn2eFrSuMsn4Qc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1f:14:1b:c9:f1:e7:49:c3:a4:e8:e4:35:e9:ad:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90b3a3a0d662d14da8404bd21dc489e63945624e
Validity
Not Before: Sep 7 03:01:25 2025 GMT
Not After : Sep 8 03:01:25 2025 GMT
Subject: CN=1c1a1aa6c0320ce5b70223795d1d8f8de1584b54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:f7:16:a8:30:a5:9e:22:79:a8:a4:a8:c7:68:
0e:5a:f0:4b:ba:5b:f2:d7:8a:ce:f6:9d:1f:c7:95:
6f:cd:a6:b8:46:eb:28:fa:62:7d:60:f7:97:a3:cd:
8a:b5:40:90:33:f4:5c:18:6a:75:a8:6c:84:c9:e7:
0f:ea:82:0d:40:c7:b4:97:cb:b4:28:a1:dd:88:c7:
6f:0a:0b:95:c5:62:30:dd:77:c1:3f:ce:0f:60:37:
c8:46:59:28:d5:0a:f1:1a:2f:e8:87:a4:a5:69:9d:
84:36:1a:21:42:b5:94:98:7a:b9:b2:4d:1d:78:87:
e1:d4:44:57:2f:19:1e:57:fc:e8:81:77:96:d6:9d:
b2:56:ee:8a:89:76:78:6c:08:f0:65:c6:af:fb:dd:
39:c9:0e:ee:e2:6d:95:ac:0c:b4:58:ce:bf:18:d8:
8b:ca:9e:69:29:db:90:6b:fe:07:cd:a6:f5:90:e3:
4c:9a:d0:39:a4:78:65:72:38:ff:a4:ee:33:d9:52:
6f:29:bc:da:2e:0a:e7:5d:13:4b:c1:a7:e8:ea:0a:
52:d7:c5:7f:1f:b5:72:ce:2b:bd:ee:af:80:f1:a4:
f0:8b:c9:36:f8:f2:2f:99:a0:54:dc:2f:b6:fc:5d:
da:53:e5:df:84:4e:3b:dd:22:c6:6d:55:5d:b8:f0:
3c:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:1A:1A:A6:C0:32:0C:E5:B7:02:23:79:5D:1D:8F:8D:E1:58:4B:54
X509v3 Authority Key Identifier:
keyid:90:B3:A3:A0:D6:62:D1:4D:A8:40:4B:D2:1D:C4:89:E6:39:45:62:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:7f:cb:f3:a9:1f:ba:02:4e:14:02:e9:18:fb:26:bf:72:1e:
b3:36:31:30:26:a6:f0:4c:dd:f9:53:1d:ed:75:60:07:b0:bd:
ec:06:29:30:05:af:29:ca:c7:9f:dd:47:2e:f1:62:8c:f8:85:
3a:93:7b:d0:3e:d5:75:44:6d:17:4a:7e:ae:66:a1:a3:cc:60:
d5:a5:b4:0a:52:3b:9e:30:77:ea:b0:8f:2a:97:ad:e6:56:1b:
87:fc:09:e4:b0:8e:b6:fb:ab:5b:56:34:78:45:4b:fe:48:a5:
ef:04:6e:92:90:1c:38:ee:cb:1e:9c:3d:ef:ba:9f:cb:ad:34:
fb:01:0c:7b:af:8c:12:bf:87:5b:5f:f7:34:46:c6:e4:21:c7:
8d:20:13:60:fc:14:7e:13:ac:b8:d0:6e:7c:5a:f9:07:37:21:
bf:d9:dc:1d:5b:9d:a7:4b:de:b2:33:c8:cf:4e:e6:69:1d:d7:
53:94:19:17:8b:80:47:93:e4:e7:7b:d3:ab:e9:77:99:f6:9a:
56:4e:78:47:57:e1:1a:fe:2f:69:b0:1b:ab:50:e8:47:68:32:
a2:85:b9:b0:ee:a2:ef:98:4f:8e:7f:3d:2d:2c:f2:3a:fe:dd:
57:8b:e5:9a:cf:23:5e:1a:94:95:93:23:16:18:e3:74:a4:8a:
b8:de:8e:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:06:20 2025 by rpki-client