Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/d9f482-135e-47f6-9317-6785ada527c1/1/kKAnBQBlMu8zoAZPh1oQCSNQn9U.mft
File: kKAnBQBlMu8zoAZPh1oQCSNQn9U.mft (raw, json)
Hash identifier: Pjh66w9F87qBMwtHrvn5x/OwZLluiQZlpVxK99mw7MA=
Subject key identifier: DB:C5:A3:7D:24:2A:EA:21:3A:46:39:50:99:B5:33:8D:AF:B3:E1:FB
Authority key identifier: 90:A0:27:05:00:65:32:EF:33:A0:06:4F:87:5A:10:09:23:50:9F:D5
Certificate issuer: /CN=90a02705006532ef33a0064f875a100923509fd5
Certificate serial: 01974AB197DAD0BEA480803D8648F42B8CB2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kKAnBQBlMu8zoAZPh1oQCSNQn9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/d9f482-135e-47f6-9317-6785ada527c1/1/kKAnBQBlMu8zoAZPh1oQCSNQn9U.mft
Manifest number: 0F50
Signing time: Sat 07 Jun 2025 14:00:42 +0000
Manifest this update: Sat 07 Jun 2025 14:00:42 +0000
Manifest next update: Sun 08 Jun 2025 14:00:42 +0000
Files and hashes: 1: Is94Q2E0TcL99ktPLy3XOhFlG9s.roa (hash: QmvTWH4bMNqja9fgfEB+gdmLSFW4G8IyUfhDS4uj7O4=)
2: kKAnBQBlMu8zoAZPh1oQCSNQn9U.crl (hash: bKFi0NQg3aDMJ1GIU45/3b3d3bh8nf7RhVYtghlhoWQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/d9f482-135e-47f6-9317-6785ada527c1/1/kKAnBQBlMu8zoAZPh1oQCSNQn9U.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/d9f482-135e-47f6-9317-6785ada527c1/1/kKAnBQBlMu8zoAZPh1oQCSNQn9U.mft
rsync://rpki.ripe.net/repository/DEFAULT/kKAnBQBlMu8zoAZPh1oQCSNQn9U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:b1:97:da:d0:be:a4:80:80:3d:86:48:f4:2b:8c:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90a02705006532ef33a0064f875a100923509fd5
Validity
Not Before: Jun 7 14:00:42 2025 GMT
Not After : Jun 8 14:00:42 2025 GMT
Subject: CN=dbc5a37d242aea213a46395099b5338dafb3e1fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:56:33:1e:d6:79:10:a2:39:8e:de:d2:c2:ef:
37:6d:cd:7e:1c:fe:d5:cb:81:b5:c7:15:bb:86:43:
ce:7b:7f:89:9c:b0:03:47:ce:cc:29:1d:34:2e:75:
45:03:40:de:3e:1d:63:00:a6:b1:43:d1:b0:43:21:
9c:48:55:4f:4b:d5:90:04:fe:38:ee:e8:9f:70:bb:
c8:98:d4:69:9f:87:28:43:51:a9:55:e4:0f:b7:d2:
c8:23:11:24:14:54:e1:46:b3:c3:58:55:69:b6:f2:
06:c1:de:17:35:ee:17:18:12:3c:a2:f3:87:25:09:
da:3c:d6:b3:a8:23:1d:6f:04:a3:a1:4e:9e:a7:b3:
08:77:77:b2:be:ad:3b:6d:9d:2e:0a:58:03:1e:d8:
f8:89:48:6d:73:ae:21:d8:4a:d4:b1:cc:b3:d2:af:
19:0e:6d:0e:03:dd:ed:55:ef:ae:36:d6:0c:79:20:
a8:d1:56:32:52:bd:9a:40:61:9a:06:9a:ac:22:07:
95:f1:36:0b:1d:c4:57:c6:4a:07:84:b7:8e:18:58:
e9:5f:25:09:a7:c6:59:b9:91:03:2b:da:ca:67:b3:
58:d2:6d:a5:10:0b:c7:34:7f:8a:ea:c6:92:a0:fb:
03:77:87:9e:6e:1b:ad:48:cf:c5:e2:83:cf:ac:b7:
ca:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:C5:A3:7D:24:2A:EA:21:3A:46:39:50:99:B5:33:8D:AF:B3:E1:FB
X509v3 Authority Key Identifier:
keyid:90:A0:27:05:00:65:32:EF:33:A0:06:4F:87:5A:10:09:23:50:9F:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kKAnBQBlMu8zoAZPh1oQCSNQn9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/d9f482-135e-47f6-9317-6785ada527c1/1/kKAnBQBlMu8zoAZPh1oQCSNQn9U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/d9f482-135e-47f6-9317-6785ada527c1/1/kKAnBQBlMu8zoAZPh1oQCSNQn9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:c4:19:dc:6c:6d:f4:81:64:4a:85:0f:63:c0:4b:4a:13:74:
d1:e7:22:c2:f9:0e:b6:87:94:54:d3:3a:76:77:71:2b:4f:bd:
14:da:0b:b8:aa:b3:5b:09:6a:00:45:6a:18:9b:b6:6c:f2:df:
ff:f9:41:40:cf:d7:49:5c:a5:ba:70:e7:30:fb:7f:b9:e9:4b:
37:d8:6d:c5:91:81:7f:7a:0b:0c:60:91:73:a4:73:b4:46:2f:
94:85:b9:3d:00:e8:76:b9:55:da:bf:9d:23:42:1d:65:b6:8d:
7d:c7:fe:7b:ad:00:47:e1:15:ae:40:41:d8:3b:4d:bc:f3:21:
c2:7f:88:43:88:17:11:78:b0:57:6a:01:e2:b0:e2:98:b2:8c:
b7:6a:91:5a:87:bf:eb:de:31:d3:d3:06:f4:0e:47:8d:09:0a:
0b:fe:19:40:d9:19:5d:d1:f7:f2:ad:c7:f4:69:9b:de:a2:ba:
cf:b8:36:b1:8c:5e:e0:14:44:38:8f:29:02:db:f2:ce:2d:a5:
6a:4f:c2:59:7e:0b:e5:8d:8e:a6:1f:de:95:e2:a7:73:29:80:
84:32:90:79:59:93:32:d2:60:dd:6c:90:0b:b9:13:a0:67:39:
14:3b:e3:6a:89:41:0a:5a:92:64:fe:80:b1:6d:41:53:8a:93:
cc:42:dd:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 16:12:47 2025 by rpki-client