Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/516f8b-b4d2-431c-be47-cfacb25084d7/1/kMV7R1FqkODP4HIVeTenM71QO-A.mft
File: kMV7R1FqkODP4HIVeTenM71QO-A.mft (raw, json)
Hash identifier: YLWzCjeEybOgvVNxM7KlsxGVrHI/3BkkfVfsovIFWfk=
Subject key identifier: C7:F2:73:6A:2A:7F:26:48:03:9E:92:B6:DF:E8:3D:B0:28:8E:4B:FD
Authority key identifier: 90:C5:7B:47:51:6A:90:E0:CF:E0:72:15:79:37:A7:33:BD:50:3B:E0
Certificate issuer: /CN=90c57b47516a90e0cfe072157937a733bd503be0
Certificate serial: 01974967F24A77727467B8A8AAC396FCA55A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMV7R1FqkODP4HIVeTenM71QO-A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/516f8b-b4d2-431c-be47-cfacb25084d7/1/kMV7R1FqkODP4HIVeTenM71QO-A.mft
Manifest number: 08EE
Signing time: Sat 07 Jun 2025 08:00:38 +0000
Manifest this update: Sat 07 Jun 2025 08:00:38 +0000
Manifest next update: Sun 08 Jun 2025 08:00:38 +0000
Files and hashes: 1: kMV7R1FqkODP4HIVeTenM71QO-A.crl (hash: TGVQLnOiNKmO+vS87EKP9W1XqM3XB7OjTLKG78tsahM=)
2: zkP1QU3MF0GoTFmSaWvEQsODbsE.roa (hash: qo/m2b8+nCxd1dPgymjA/2fWlVcNJMND2bMF+AfYiPA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/516f8b-b4d2-431c-be47-cfacb25084d7/1/kMV7R1FqkODP4HIVeTenM71QO-A.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/516f8b-b4d2-431c-be47-cfacb25084d7/1/kMV7R1FqkODP4HIVeTenM71QO-A.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMV7R1FqkODP4HIVeTenM71QO-A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 08:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:67:f2:4a:77:72:74:67:b8:a8:aa:c3:96:fc:a5:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90c57b47516a90e0cfe072157937a733bd503be0
Validity
Not Before: Jun 7 08:00:38 2025 GMT
Not After : Jun 8 08:00:38 2025 GMT
Subject: CN=c7f2736a2a7f2648039e92b6dfe83db0288e4bfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:cc:eb:30:c7:1b:f2:13:17:11:7f:7a:a7:bf:
75:f2:22:eb:48:72:24:2c:61:da:6f:33:2e:61:bb:
31:d3:4a:a4:e9:10:0d:6c:0d:6a:32:54:c5:9b:ef:
08:e6:82:7e:0d:a2:91:a3:c0:a6:d9:7a:0a:f0:56:
ee:7d:80:93:59:55:80:a8:1a:b7:41:56:98:ac:ac:
d7:fe:98:5f:33:46:99:44:2f:fc:d2:1a:f9:4a:82:
1b:85:48:0d:33:42:00:5b:62:59:a0:ff:cb:31:7f:
ae:8e:c3:0a:99:be:34:30:9c:42:98:99:88:11:9c:
2b:9f:ab:0e:3a:79:af:58:a5:64:23:b2:f0:60:19:
d3:ce:56:ee:3d:bf:34:75:c0:e7:34:65:06:8e:19:
c0:39:95:b7:62:49:eb:06:b4:e6:56:df:11:c8:7a:
ba:27:a2:20:f4:c4:e9:66:3a:73:56:00:70:50:c8:
04:54:7b:df:22:ac:69:13:95:ed:19:2d:95:6a:9f:
cd:f1:b2:24:87:88:8b:55:5c:3c:38:61:3e:5c:4c:
df:08:a7:1c:db:e0:73:6d:e4:36:7a:7c:81:af:f7:
28:61:72:07:1c:1a:a6:c4:81:ed:6b:27:b4:77:52:
d1:b4:91:c4:d7:a5:ae:d9:cd:ca:d7:50:6b:7e:ed:
ee:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:F2:73:6A:2A:7F:26:48:03:9E:92:B6:DF:E8:3D:B0:28:8E:4B:FD
X509v3 Authority Key Identifier:
keyid:90:C5:7B:47:51:6A:90:E0:CF:E0:72:15:79:37:A7:33:BD:50:3B:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMV7R1FqkODP4HIVeTenM71QO-A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/516f8b-b4d2-431c-be47-cfacb25084d7/1/kMV7R1FqkODP4HIVeTenM71QO-A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/516f8b-b4d2-431c-be47-cfacb25084d7/1/kMV7R1FqkODP4HIVeTenM71QO-A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cd:c7:3a:51:7e:11:b9:d7:73:60:35:34:29:85:be:2f:e2:ee:
94:5c:32:79:a9:79:ca:64:6b:11:68:94:d0:fb:b3:e0:b2:25:
2e:57:57:67:f2:79:13:fd:c0:98:94:86:de:5f:93:62:20:72:
f4:88:ce:6a:5b:44:4c:b2:59:48:63:06:14:73:10:d6:ea:45:
00:30:4f:da:0a:aa:36:43:f6:35:8c:9c:dc:c6:d9:73:20:d2:
9e:c3:be:70:d2:7f:d2:11:59:e7:4b:f0:3c:96:47:a5:14:8a:
35:71:b7:37:cd:af:4a:01:ae:f6:d4:5a:12:10:e4:ca:97:3d:
22:ab:9a:e2:a8:e2:41:66:dd:f7:f0:36:70:67:fb:df:04:d0:
e9:36:c4:ff:2e:a2:14:4f:95:c3:3c:1a:94:75:c0:5c:bb:ef:
52:ef:ba:56:40:74:a2:a0:0c:38:74:07:bc:5a:6a:43:11:32:
6b:8a:7c:fe:ef:d9:23:9e:67:56:8b:79:96:bb:fb:16:3e:fb:
17:c6:09:27:38:77:e6:e8:87:f9:4c:37:79:d6:cf:4e:9c:7c:
a4:40:53:25:9e:c8:01:df:3a:3f:a1:3d:ec:0f:ad:84:d7:c4:
99:c6:b5:17:b1:a6:d5:0f:f8:2d:a2:6e:e9:b6:5d:97:6a:d8:
65:a5:5c:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:20:08 2025 by rpki-client