Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
File: kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft (raw, json)
Hash identifier: XDUhn3+oFTvntvOY4qU4N54zxXIXOXfb8K3D6dVD2VE=
Subject key identifier: F4:83:28:E6:34:DA:E7:1F:97:1C:01:B5:34:F2:12:E7:CF:83:12:E5
Authority key identifier: 90:CC:D9:13:A9:9B:AF:D8:93:E0:7B:A9:68:A6:74:34:E3:DF:54:20
Certificate issuer: /CN=90ccd913a99bafd893e07ba968a67434e3df5420
Certificate serial: 0197B88EB0BA4B932CFC17DB5AC378B89450
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
Manifest number: 150E
Signing time: Sat 28 Jun 2025 22:00:48 +0000
Manifest this update: Sat 28 Jun 2025 22:00:48 +0000
Manifest next update: Sun 29 Jun 2025 22:00:48 +0000
Files and hashes: 1: 7ma8rm9Nc8aP0i9rOur_HEzgHJs.roa (hash: GInuicNk1jMv1+rnjCpEDF87yGDttTl9tUwBgJS9KiA=)
2: kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl (hash: 0ovhJdYqZNTf39BSfkVSrks7VAdEFNYyerfJvjztMkE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8e:b0:ba:4b:93:2c:fc:17:db:5a:c3:78:b8:94:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90ccd913a99bafd893e07ba968a67434e3df5420
Validity
Not Before: Jun 28 22:00:48 2025 GMT
Not After : Jun 29 22:00:48 2025 GMT
Subject: CN=f48328e634dae71f971c01b534f212e7cf8312e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f7:6e:6c:a1:f5:58:a8:93:06:f9:d9:4e:4a:
c6:f6:7a:51:45:71:fa:56:bc:14:a0:b2:cc:e2:71:
59:02:2e:4a:84:32:52:41:63:92:69:19:04:bb:ed:
01:ac:c3:49:64:47:fb:9b:4e:c4:c3:dd:b0:1b:66:
01:c0:f3:d8:b3:c9:42:1d:10:e7:e4:1c:20:66:ff:
64:12:77:d6:5a:90:f1:f9:ce:12:cd:dd:b0:38:f4:
2e:ad:fd:a4:68:12:97:b5:05:27:e7:58:51:3c:fb:
e1:6a:e0:71:4f:86:c2:33:4b:d0:3f:12:d8:6f:9b:
8e:b1:39:c4:e9:c7:02:dd:8a:16:bc:60:30:3d:df:
a0:83:3f:00:57:ff:31:aa:e5:0b:d4:4f:a0:7e:e1:
28:a4:ea:56:2a:81:c7:04:88:9c:45:c2:0b:48:02:
0e:84:8c:ca:8b:fa:58:f5:d0:21:11:db:5c:ec:e2:
6d:c7:e5:9b:6a:1c:e3:42:c7:35:e7:01:fd:ac:8c:
37:4d:76:30:f2:e6:30:f4:ee:f8:d4:94:d9:ad:2a:
db:9a:79:b3:37:3f:3c:15:68:38:2e:d7:3d:bb:30:
36:2d:06:69:4b:1c:5a:51:9b:06:c2:d4:a9:43:f7:
ee:3d:c7:b2:be:85:f9:db:69:bd:bc:c2:8f:64:6e:
66:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:83:28:E6:34:DA:E7:1F:97:1C:01:B5:34:F2:12:E7:CF:83:12:E5
X509v3 Authority Key Identifier:
keyid:90:CC:D9:13:A9:9B:AF:D8:93:E0:7B:A9:68:A6:74:34:E3:DF:54:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:92:75:8f:a6:6b:29:b5:b4:81:f0:30:55:1d:c8:27:2e:30:
44:a0:8b:dc:45:c7:38:c1:1b:dd:c5:fe:4c:08:16:7f:64:cb:
04:98:82:2a:a0:69:4b:6e:7c:53:1b:68:0a:f6:e9:59:93:38:
84:28:b6:8e:9e:a2:68:17:4d:2e:fa:ae:3b:15:65:94:1b:7d:
54:7c:fc:62:45:fa:9e:26:6e:ac:13:78:7c:f0:19:90:cb:1f:
2c:0a:f4:59:b5:a0:05:3f:f2:3a:73:22:ac:3e:33:0c:80:86:
4d:4c:16:86:da:e8:fa:0e:9d:62:c3:41:c5:a5:07:b4:0c:3f:
0e:8c:79:f6:5f:38:f0:04:bf:92:e7:75:40:6d:0a:e5:07:8e:
5e:b7:8f:0f:5c:74:c9:5a:73:e4:ba:38:7d:01:eb:fc:80:f1:
28:d4:6f:ce:a8:a7:dd:09:73:50:ea:f2:36:2d:94:42:4f:74:
98:7b:d2:9f:55:3d:8b:05:50:be:ea:d5:e2:55:bc:06:fc:78:
75:da:c2:ea:02:59:55:01:91:eb:02:60:51:6a:ab:aa:9e:15:
34:9c:0a:67:73:80:78:36:bf:c4:0e:fa:aa:15:38:4c:f5:aa:
50:83:4a:65:0d:cc:79:62:14:8b:dd:12:cf:c1:a5:1a:73:af:
2d:0e:da:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:22:22 2025 by rpki-client