Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/516f8b-b4d2-431c-be47-cfacb25084d7/1/kMV7R1FqkODP4HIVeTenM71QO-A.mft
File: kMV7R1FqkODP4HIVeTenM71QO-A.mft (raw, json)
Hash identifier: MAgrRGXIeW7SehOmTybxyJT3ma5VlI90XYWUKdEWJLs=
Subject key identifier: 6D:5D:11:18:A2:FA:A2:CE:1C:C2:8B:3D:74:84:94:5D:1A:64:E0:2B
Authority key identifier: 90:C5:7B:47:51:6A:90:E0:CF:E0:72:15:79:37:A7:33:BD:50:3B:E0
Certificate issuer: /CN=90c57b47516a90e0cfe072157937a733bd503be0
Certificate serial: 019A72932D1B97FF90675F1C8F5835EA0CB1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMV7R1FqkODP4HIVeTenM71QO-A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/516f8b-b4d2-431c-be47-cfacb25084d7/1/kMV7R1FqkODP4HIVeTenM71QO-A.mft
Manifest number: 0A91
Signing time: Tue 11 Nov 2025 11:00:39 +0000
Manifest this update: Tue 11 Nov 2025 11:00:39 +0000
Manifest next update: Wed 12 Nov 2025 11:00:39 +0000
Files and hashes: 1: kMV7R1FqkODP4HIVeTenM71QO-A.crl (hash: aCYt2xF6OpJt1+EVG1g99yPR2nRFBa3lJUO65DDcKF4=)
2: zkP1QU3MF0GoTFmSaWvEQsODbsE.roa (hash: qo/m2b8+nCxd1dPgymjA/2fWlVcNJMND2bMF+AfYiPA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/516f8b-b4d2-431c-be47-cfacb25084d7/1/kMV7R1FqkODP4HIVeTenM71QO-A.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/516f8b-b4d2-431c-be47-cfacb25084d7/1/kMV7R1FqkODP4HIVeTenM71QO-A.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMV7R1FqkODP4HIVeTenM71QO-A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:2d:1b:97:ff:90:67:5f:1c:8f:58:35:ea:0c:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90c57b47516a90e0cfe072157937a733bd503be0
Validity
Not Before: Nov 11 11:00:39 2025 GMT
Not After : Nov 12 11:00:39 2025 GMT
Subject: CN=6d5d1118a2faa2ce1cc28b3d7484945d1a64e02b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:58:58:45:96:17:36:d9:49:da:86:a1:ec:0f:
ba:c1:cf:ef:3e:bb:1e:da:0e:21:31:af:dc:28:d5:
c2:f1:a3:78:c5:19:91:86:59:85:3c:47:8c:68:ae:
5e:2d:f9:2b:9d:61:12:bd:f0:f9:b7:25:74:3a:45:
74:d7:1a:63:a8:ad:a3:e1:ab:83:fd:0c:c5:a1:dc:
19:2f:fb:3c:2c:8b:02:9e:55:ca:5e:1c:bc:75:c0:
a2:87:c1:0a:1e:c1:3f:c6:70:d6:70:cc:cf:f6:0d:
fc:52:e4:0b:86:5b:bb:9c:1a:40:4d:da:46:06:8e:
1c:9a:11:28:5c:af:e7:6d:77:5e:bb:4d:07:5b:52:
f2:5d:f4:ac:0f:32:a2:47:44:4c:ac:f1:2d:0a:f9:
a8:bf:a2:82:9e:fe:05:b7:7e:bb:f0:7b:d8:51:aa:
b5:9f:d3:89:35:ea:0b:f7:be:0d:65:42:ec:db:42:
c4:d6:33:9f:9a:1b:df:4d:1e:a1:f1:20:63:29:ed:
f5:2f:c0:3a:2e:7e:6e:89:99:9a:5a:bc:03:66:7d:
ee:cb:4b:62:e0:b4:a4:80:78:c6:1a:63:48:67:e4:
77:1e:fb:d6:14:dd:e3:9f:79:31:55:af:b2:16:88:
10:85:04:3b:a9:2f:a3:53:b8:0b:a2:c6:f2:57:27:
7e:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:5D:11:18:A2:FA:A2:CE:1C:C2:8B:3D:74:84:94:5D:1A:64:E0:2B
X509v3 Authority Key Identifier:
keyid:90:C5:7B:47:51:6A:90:E0:CF:E0:72:15:79:37:A7:33:BD:50:3B:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMV7R1FqkODP4HIVeTenM71QO-A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/516f8b-b4d2-431c-be47-cfacb25084d7/1/kMV7R1FqkODP4HIVeTenM71QO-A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/516f8b-b4d2-431c-be47-cfacb25084d7/1/kMV7R1FqkODP4HIVeTenM71QO-A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c4:be:54:9d:99:c5:96:c5:96:6b:bb:fb:55:48:41:1e:22:9d:
a1:6e:62:cd:45:0d:53:35:9d:18:84:38:91:94:28:7d:67:bd:
ba:b4:b6:d8:f8:82:4d:1c:98:4a:3e:31:a5:e1:bc:9c:be:da:
2e:9c:fc:3c:c8:97:30:24:b6:aa:11:a8:5e:db:71:11:cb:91:
3e:11:0e:c7:a1:2e:b3:70:6c:e8:35:43:75:26:0b:56:3f:f9:
24:77:a0:72:88:6c:ee:34:6f:64:e2:f7:d0:bb:af:48:c9:b1:
f4:1c:7b:ae:28:32:80:16:cc:0f:41:c4:d2:32:ad:cb:bf:df:
2f:2e:53:f3:fc:39:13:e6:ee:1e:1f:c6:11:3b:e5:e4:48:da:
f5:e7:57:e3:89:cb:01:52:a4:62:5b:35:9e:a6:ed:bf:0a:c3:
7d:f0:58:bd:af:01:61:d3:d0:c6:d6:7f:50:64:2a:38:74:16:
c7:f4:47:4b:0b:fe:11:6e:eb:cf:33:39:a2:6c:fd:eb:55:5e:
65:15:c9:ea:3b:34:c9:10:d4:58:8a:86:8b:d5:5c:6d:90:4b:
21:88:bc:1b:7b:4e:4b:0d:60:7e:5c:06:ab:1e:70:70:46:77:
85:ab:01:5c:f2:e0:f7:6a:37:3d:11:5b:7e:26:67:e6:c2:be:
ba:89:9b:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:08:59 2025 by rpki-client