Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/64db24-bc36-4ca1-ab02-b139b2a3fe49/1/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.mft
File: kMPK6GVVaHMkMZ0SJpOMcD7k7cE.mft (raw, json)
Hash identifier: 8A9/kEBtMmkUr2B33jXqNA+sI3L0HqRJJNjj5XtLQ+4=
Subject key identifier: 8E:EC:0B:01:A7:0D:95:F8:0B:DE:EA:80:A5:27:0F:CF:0A:BD:FC:3B
Authority key identifier: 90:C3:CA:E8:65:55:68:73:24:31:9D:12:26:93:8C:70:3E:E4:ED:C1
Certificate issuer: /CN=90c3cae86555687324319d1226938c703ee4edc1
Certificate serial: 0199FFC7671723711FE4B10D280DC50DC81A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/64db24-bc36-4ca1-ab02-b139b2a3fe49/1/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.mft
Manifest number: 073B
Signing time: Mon 20 Oct 2025 04:01:22 +0000
Manifest this update: Mon 20 Oct 2025 04:01:22 +0000
Manifest next update: Tue 21 Oct 2025 04:01:22 +0000
Files and hashes: 1: 0uXZsIzOuGlbguIFz3Zkl5De9lU.roa (hash: YNeeVSttuQ98olLv+5aLbTyXkKQvSMcGX+VvVs9cMAQ=)
2: kMPK6GVVaHMkMZ0SJpOMcD7k7cE.crl (hash: ya9mp2Y8xWib6x5tucmLWGBw9rinMx5D0OozSqvURBU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/64db24-bc36-4ca1-ab02-b139b2a3fe49/1/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/64db24-bc36-4ca1-ab02-b139b2a3fe49/1/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 04:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:c7:67:17:23:71:1f:e4:b1:0d:28:0d:c5:0d:c8:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90c3cae86555687324319d1226938c703ee4edc1
Validity
Not Before: Oct 20 04:01:22 2025 GMT
Not After : Oct 21 04:01:22 2025 GMT
Subject: CN=8eec0b01a70d95f80bdeea80a5270fcf0abdfc3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:6e:ae:ba:c5:8d:d4:92:80:31:24:6f:59:37:
7f:f5:b5:75:59:1f:0a:4c:fd:15:4c:54:8c:74:1e:
c3:51:92:5b:a4:a8:b1:11:03:69:22:99:26:d2:42:
95:34:71:32:46:7b:09:40:33:ae:48:96:fb:a9:62:
96:f7:ab:ec:56:be:2d:f9:36:38:11:52:12:b2:65:
a8:06:dc:9b:56:f3:d1:e8:c7:78:0e:75:72:ec:b9:
84:56:33:d4:52:9b:14:e9:93:43:62:5c:f4:0a:ef:
c7:cb:2d:63:7e:1f:a0:e7:0c:3c:44:c1:06:d6:2d:
e3:fe:0b:31:31:1c:98:6a:1b:91:2c:69:23:ec:a1:
8b:3e:0d:b7:57:b1:f2:b8:1a:cc:b7:e3:f3:72:14:
bf:e8:24:05:a3:95:e5:17:c6:bf:03:ab:ae:37:e6:
ae:5d:e8:8a:b5:c6:51:bc:bb:5c:0a:d3:2d:21:26:
1c:50:77:c7:ce:4a:e4:c6:19:4d:f6:62:42:ea:26:
4e:d8:74:25:96:f2:9a:f4:57:90:0f:97:bd:4f:30:
ae:2e:f9:ee:eb:a6:84:1e:85:f4:f4:a7:7e:62:53:
ae:86:22:a5:ab:f2:7c:04:6b:6c:ef:ea:4e:5e:ac:
07:de:bc:90:bc:ba:bd:70:f8:8d:ee:2e:4e:e2:8e:
34:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:EC:0B:01:A7:0D:95:F8:0B:DE:EA:80:A5:27:0F:CF:0A:BD:FC:3B
X509v3 Authority Key Identifier:
keyid:90:C3:CA:E8:65:55:68:73:24:31:9D:12:26:93:8C:70:3E:E4:ED:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/64db24-bc36-4ca1-ab02-b139b2a3fe49/1/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/64db24-bc36-4ca1-ab02-b139b2a3fe49/1/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:00:a4:9f:b0:c5:5b:ed:81:7b:08:ba:ec:ed:60:5b:ea:05:
9e:b0:bd:bb:47:5f:6c:9f:5b:3b:7c:08:fb:f5:c4:4f:15:06:
67:53:48:3c:3f:f4:9a:93:26:c1:33:05:a0:9b:44:79:6c:56:
a6:9f:aa:8e:49:f7:37:f2:32:80:5e:41:da:36:2f:35:33:47:
3b:c1:64:9c:06:5b:3f:ff:b4:b5:9a:50:c9:02:2b:52:a0:2b:
69:96:f4:07:2f:ff:95:d2:b2:b9:cf:04:fa:d4:a2:18:33:7d:
cc:28:a1:09:44:9e:74:91:29:51:cf:72:66:05:84:3b:4f:f1:
5a:5c:52:dc:8e:e4:a5:d6:c8:c6:7a:6e:26:7e:ae:e5:15:4f:
74:77:9b:71:d5:a2:5d:07:72:58:4a:d5:bb:60:6f:e3:f4:79:
4a:c1:b7:1d:4e:37:d2:e9:6c:f3:c5:aa:8d:a2:e1:77:6f:12:
ed:a9:94:5d:c9:8a:1d:e7:5a:33:ba:f4:98:2a:8d:7c:83:4d:
3d:59:09:88:3c:98:32:b2:62:40:b1:c0:cf:42:de:12:77:b0:
89:bb:67:d2:84:eb:fe:ce:a8:9a:9b:3b:e6:8f:13:ac:3d:b2:
8c:2a:d3:e2:10:08:5a:7a:a7:80:7d:dc:9b:fb:73:24:62:0f:
99:3d:f4:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 12:41:19 2025 by rpki-client