Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/516f8b-b4d2-431c-be47-cfacb25084d7/1/kMV7R1FqkODP4HIVeTenM71QO-A.mft
File: kMV7R1FqkODP4HIVeTenM71QO-A.mft (raw, json)
Hash identifier: io+NOdB8Tnwh9m65YviCevU5vVg4PvCwca0wdlLx0LI=
Subject key identifier: 77:27:DC:EA:11:9C:CC:31:76:E7:CB:4A:66:83:3B:25:04:AC:CA:4E
Authority key identifier: 90:C5:7B:47:51:6A:90:E0:CF:E0:72:15:79:37:A7:33:BD:50:3B:E0
Certificate issuer: /CN=90c57b47516a90e0cfe072157937a733bd503be0
Certificate serial: 0199228D0F8A195121F268C684D2F5E46B61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMV7R1FqkODP4HIVeTenM71QO-A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/516f8b-b4d2-431c-be47-cfacb25084d7/1/kMV7R1FqkODP4HIVeTenM71QO-A.mft
Manifest number: 09E3
Signing time: Sun 07 Sep 2025 05:01:33 +0000
Manifest this update: Sun 07 Sep 2025 05:01:33 +0000
Manifest next update: Mon 08 Sep 2025 05:01:33 +0000
Files and hashes: 1: kMV7R1FqkODP4HIVeTenM71QO-A.crl (hash: kQ5uzK6lC240TbCH792juCTVqma0iElDDvsU8Gkih2I=)
2: zkP1QU3MF0GoTFmSaWvEQsODbsE.roa (hash: qo/m2b8+nCxd1dPgymjA/2fWlVcNJMND2bMF+AfYiPA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/516f8b-b4d2-431c-be47-cfacb25084d7/1/kMV7R1FqkODP4HIVeTenM71QO-A.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/516f8b-b4d2-431c-be47-cfacb25084d7/1/kMV7R1FqkODP4HIVeTenM71QO-A.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMV7R1FqkODP4HIVeTenM71QO-A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8d:0f:8a:19:51:21:f2:68:c6:84:d2:f5:e4:6b:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90c57b47516a90e0cfe072157937a733bd503be0
Validity
Not Before: Sep 7 05:01:33 2025 GMT
Not After : Sep 8 05:01:33 2025 GMT
Subject: CN=7727dcea119ccc3176e7cb4a66833b2504acca4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:51:fc:6d:29:4f:b3:3c:97:f6:4d:e4:96:c0:
3c:6d:0b:5a:2c:08:e7:75:ad:e9:b6:b1:ad:3d:81:
d8:75:e5:f1:99:63:c2:64:ca:96:3c:e7:59:07:7f:
e2:4c:03:03:2c:45:48:03:79:28:ae:8a:c1:d5:c1:
a5:3d:c3:b0:85:b4:33:85:c3:2b:40:49:ea:e5:fb:
6d:dc:ab:d3:d5:4d:c9:a4:2d:e1:5f:2a:02:53:3d:
f8:d1:f0:48:3a:76:69:5f:7b:0f:17:0a:95:78:40:
81:8e:c3:f2:7d:ed:61:c3:76:8c:c1:e1:21:46:d5:
75:69:c7:f8:3b:bb:15:b6:5a:96:54:93:c7:82:9a:
92:31:09:e6:4a:c8:88:5e:9a:35:8b:52:f4:d6:73:
ee:93:12:c6:49:34:b6:18:b4:a7:53:7c:67:0b:df:
26:ad:fe:ac:ae:7c:5e:6e:05:7c:3a:bf:d7:ea:08:
ed:4b:3a:16:74:dc:4d:1b:3d:72:2d:9a:66:af:f0:
a7:79:80:8c:8a:cc:ce:6f:39:51:7d:25:58:23:49:
e9:66:90:b1:05:1e:b4:71:b8:6a:56:45:32:f0:b9:
a6:8e:3a:83:54:f1:09:0a:fe:5b:e7:c3:c1:44:62:
8a:23:2c:0a:1c:20:58:6a:23:90:fb:10:54:8b:a9:
9d:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:27:DC:EA:11:9C:CC:31:76:E7:CB:4A:66:83:3B:25:04:AC:CA:4E
X509v3 Authority Key Identifier:
keyid:90:C5:7B:47:51:6A:90:E0:CF:E0:72:15:79:37:A7:33:BD:50:3B:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMV7R1FqkODP4HIVeTenM71QO-A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/516f8b-b4d2-431c-be47-cfacb25084d7/1/kMV7R1FqkODP4HIVeTenM71QO-A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/516f8b-b4d2-431c-be47-cfacb25084d7/1/kMV7R1FqkODP4HIVeTenM71QO-A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:da:be:73:3e:16:41:de:fd:0e:68:40:71:b7:a8:e2:79:a4:
ff:57:b0:f2:1f:5d:6b:e0:d7:58:7c:d2:eb:b3:fc:28:59:51:
93:2f:09:10:10:93:16:de:8b:a8:8f:3f:66:82:50:96:f5:23:
b5:3f:38:81:a7:a3:41:25:03:2b:de:0d:17:8c:3b:e0:42:11:
c3:0a:8f:35:02:b3:53:be:9c:04:c4:c8:60:82:05:d3:0c:6e:
ff:53:28:62:8c:26:ca:8b:2e:6a:42:9f:06:86:39:e1:34:ab:
92:0c:64:c0:47:37:a2:f8:0b:a9:0c:81:6b:16:13:e5:50:43:
a7:c8:11:b1:4e:0e:70:61:4f:bd:32:03:1e:3c:26:a1:36:79:
dd:15:6f:7d:99:33:e4:8d:69:cd:8c:a1:15:43:a4:5a:9b:95:
d9:b8:44:27:77:2e:5c:cb:32:4f:84:0a:73:74:37:8b:b5:b3:
b1:46:57:2c:28:d2:1e:70:b4:69:4f:49:39:84:b3:9c:1d:00:
dd:84:e6:b7:0c:48:7a:fd:7e:4c:57:17:3b:85:4e:6c:aa:ac:
e8:f0:86:c8:0a:9d:ee:cc:a8:cf:20:f1:85:f6:4f:18:5f:09:
61:07:7e:ed:6d:c9:b8:3a:86:72:db:e4:a7:36:30:b5:d5:c2:
2c:1c:2f:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 09:50:05 2025 by rpki-client