Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
File: kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft (raw, json)
Hash identifier: uAl1heXkisT3Fn+bLIdLL7MQUQypyUIrzz+GZDgzmPg=
Subject key identifier: 14:0C:11:AF:11:62:43:7C:6D:9C:2E:16:89:2B:02:04:99:D0:08:23
Authority key identifier: 90:CC:D9:13:A9:9B:AF:D8:93:E0:7B:A9:68:A6:74:34:E3:DF:54:20
Certificate issuer: /CN=90ccd913a99bafd893e07ba968a67434e3df5420
Certificate serial: 0198D65FF98C29CB430A31F0C906F50DDD93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
Manifest number: 15A2
Signing time: Sat 23 Aug 2025 10:01:10 +0000
Manifest this update: Sat 23 Aug 2025 10:01:10 +0000
Manifest next update: Sun 24 Aug 2025 10:01:10 +0000
Files and hashes: 1: 7ma8rm9Nc8aP0i9rOur_HEzgHJs.roa (hash: GInuicNk1jMv1+rnjCpEDF87yGDttTl9tUwBgJS9KiA=)
2: kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl (hash: IPjUKYe3mrQpAHWxD1DyHImpOzsj7rZfda9wV4UPccI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:f9:8c:29:cb:43:0a:31:f0:c9:06:f5:0d:dd:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90ccd913a99bafd893e07ba968a67434e3df5420
Validity
Not Before: Aug 23 10:01:10 2025 GMT
Not After : Aug 24 10:01:10 2025 GMT
Subject: CN=140c11af1162437c6d9c2e16892b020499d00823
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:a8:b1:12:31:16:1e:e6:fe:22:39:eb:6c:81:
b9:54:d2:c1:38:ca:0e:97:89:bb:43:e9:9d:a9:9e:
2a:6f:2e:82:87:dc:fa:a9:51:71:13:40:fa:ff:7c:
1e:ae:dd:f1:bc:32:28:f8:32:2c:d5:0b:0a:9d:5f:
74:c0:e9:5a:0d:73:3e:eb:ae:1b:eb:03:9f:3e:d1:
92:a1:38:1d:f0:f9:b3:4e:05:c8:63:ce:32:94:a4:
38:3f:bc:a3:0a:9a:6e:0c:59:2d:e4:52:c8:aa:95:
06:57:3f:1d:78:55:68:79:13:c4:0b:06:2c:ca:c5:
82:28:33:eb:9f:3c:36:72:60:37:b5:93:06:de:f4:
db:81:47:31:db:80:51:4e:5b:5d:75:20:c4:0e:35:
e5:b6:dc:78:94:13:48:4e:98:c3:95:8b:d5:6a:4b:
6a:f8:ef:48:08:5b:5b:70:5b:49:67:c6:a7:d7:35:
bc:17:df:33:f0:59:b8:c3:d2:ce:61:d5:be:9a:b1:
ff:64:69:3b:87:5f:68:35:eb:fd:dc:22:d2:ff:94:
cb:cd:86:33:ea:cb:1a:7f:3a:a8:53:6f:76:c6:16:
63:4e:c9:61:ec:09:bf:34:07:cd:d2:2e:45:07:d5:
39:2a:98:ec:9e:fa:cf:7a:20:41:b9:29:c9:b3:70:
77:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:0C:11:AF:11:62:43:7C:6D:9C:2E:16:89:2B:02:04:99:D0:08:23
X509v3 Authority Key Identifier:
keyid:90:CC:D9:13:A9:9B:AF:D8:93:E0:7B:A9:68:A6:74:34:E3:DF:54:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:12:bc:ee:ab:29:0e:31:5e:94:e5:78:a2:42:0a:50:33:3d:
e3:09:83:3d:c6:e7:db:e9:75:ce:70:61:16:4f:71:34:7e:cd:
5d:ff:cf:53:53:df:8a:c8:c8:88:d9:a0:f8:70:5e:7f:0e:b0:
75:a7:d4:08:e5:7c:cd:43:c5:ae:04:13:50:cc:fc:20:48:24:
37:72:45:26:0a:3f:5a:e6:63:74:8f:11:ae:1f:62:fa:3e:1a:
74:f8:6e:dd:ca:f4:e1:ba:54:0a:96:94:02:ed:8d:84:e8:14:
31:12:b2:5e:3e:16:4c:bc:23:84:37:5f:30:e0:61:a0:39:b5:
44:86:36:4b:ad:17:be:99:9b:75:2a:9e:e6:85:d2:49:36:52:
ce:ba:e6:96:28:b6:91:c0:2c:d5:80:07:cb:2e:c1:25:02:e8:
39:f9:44:9d:38:9a:2d:57:e2:50:14:37:a0:f0:72:c5:e6:6d:
4d:27:05:3d:2d:ee:b2:a6:e7:2b:18:3e:64:29:7f:75:60:b2:
5e:ab:f4:ba:d4:c8:b2:c2:c1:80:85:8c:12:6b:be:e0:f0:4f:
4b:be:53:c0:a5:95:00:52:71:49:3b:55:68:50:8b:10:9a:e6:
b1:fe:c1:d4:e0:d6:b1:ee:80:7f:f7:7e:e9:29:d4:1a:6f:15:
04:18:f4:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:31:28 2025 by rpki-client