Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/64db24-bc36-4ca1-ab02-b139b2a3fe49/1/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.mft
File: kMPK6GVVaHMkMZ0SJpOMcD7k7cE.mft (raw, json)
Hash identifier: Uifj6Kf72oID4hgIoT0BF5Rcak2XjNrkHP0Pjeyy38E=
Subject key identifier: 3B:F3:02:15:AC:DC:27:40:96:6F:7B:24:27:8F:E4:D0:24:C1:C4:96
Authority key identifier: 90:C3:CA:E8:65:55:68:73:24:31:9D:12:26:93:8C:70:3E:E4:ED:C1
Certificate issuer: /CN=90c3cae86555687324319d1226938c703ee4edc1
Certificate serial: 0197BA7D5F29881615547243225B1385197F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/64db24-bc36-4ca1-ab02-b139b2a3fe49/1/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.mft
Manifest number: 060E
Signing time: Sun 29 Jun 2025 07:01:07 +0000
Manifest this update: Sun 29 Jun 2025 07:01:07 +0000
Manifest next update: Mon 30 Jun 2025 07:01:07 +0000
Files and hashes: 1: 0uXZsIzOuGlbguIFz3Zkl5De9lU.roa (hash: YNeeVSttuQ98olLv+5aLbTyXkKQvSMcGX+VvVs9cMAQ=)
2: kMPK6GVVaHMkMZ0SJpOMcD7k7cE.crl (hash: q9p3GbJwaC/LLF14SVbW24NmWkarIcuN6rf2O7OcOjQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/64db24-bc36-4ca1-ab02-b139b2a3fe49/1/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/64db24-bc36-4ca1-ab02-b139b2a3fe49/1/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 07:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ba:7d:5f:29:88:16:15:54:72:43:22:5b:13:85:19:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90c3cae86555687324319d1226938c703ee4edc1
Validity
Not Before: Jun 29 07:01:07 2025 GMT
Not After : Jun 30 07:01:07 2025 GMT
Subject: CN=3bf30215acdc2740966f7b24278fe4d024c1c496
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:1a:04:a8:f1:6e:b3:b7:ae:ec:85:d9:d4:7d:
fb:99:c6:fd:70:cc:4e:9f:72:39:93:4f:23:bb:bf:
f4:ed:b5:17:71:a0:cc:bc:49:ee:33:f6:a6:25:b1:
8b:68:ba:31:78:db:26:00:2b:f8:26:90:97:3d:08:
e2:0c:9b:d3:c4:56:d0:f7:04:a4:52:26:80:b7:03:
62:9f:70:81:56:2b:23:3a:ff:fe:7b:2e:b2:53:73:
aa:60:65:f5:97:ec:4a:12:a3:5c:35:99:dc:4b:41:
db:3f:7a:db:38:02:3d:ce:58:82:5a:9c:0c:23:61:
d3:a6:12:00:22:8c:91:20:21:c9:6e:7d:e5:ad:77:
f9:c3:9c:f5:bc:e4:df:8e:c6:7a:59:f5:b2:7f:37:
62:0d:3f:8d:f8:71:70:28:ed:5b:94:4a:db:35:ab:
0f:f9:0f:01:b4:a4:94:ca:d4:44:47:b1:2e:32:73:
a1:af:a7:96:b2:bb:0e:84:ed:e9:af:27:ce:a1:63:
8e:99:6f:a2:aa:9f:e7:e5:2b:71:43:46:45:f9:83:
ae:a6:e2:67:a5:39:9a:43:ed:7e:59:ca:9b:d6:85:
e6:15:25:4d:ad:3c:de:e2:7a:a1:a0:bd:b0:41:f6:
db:81:85:20:23:20:93:27:77:9e:1f:2e:75:cc:15:
00:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:F3:02:15:AC:DC:27:40:96:6F:7B:24:27:8F:E4:D0:24:C1:C4:96
X509v3 Authority Key Identifier:
keyid:90:C3:CA:E8:65:55:68:73:24:31:9D:12:26:93:8C:70:3E:E4:ED:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/64db24-bc36-4ca1-ab02-b139b2a3fe49/1/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/64db24-bc36-4ca1-ab02-b139b2a3fe49/1/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:67:88:71:c0:e8:8d:98:62:c8:7b:f1:96:f6:85:61:8b:e8:
94:f0:8c:dd:85:87:ac:7d:ef:51:da:45:bc:76:46:27:70:68:
d3:78:36:f2:03:00:fe:f8:7c:08:76:72:b7:c7:c2:71:db:5e:
fb:d7:9a:a0:1d:2c:f1:5d:a5:3a:8b:10:78:52:69:83:e6:80:
b3:ab:35:c3:a5:30:6d:a1:d1:99:6a:bf:5c:89:aa:0b:13:c3:
03:02:77:09:58:1e:91:67:1e:02:99:27:e1:9f:46:a7:c7:85:
22:20:fe:1c:f8:df:40:13:8c:21:84:b9:50:53:e2:bb:d8:9e:
51:bb:c7:de:39:a8:e8:f3:e8:cd:83:ae:c4:f6:fe:15:5a:07:
dc:48:2e:79:a9:15:2d:85:35:33:1e:23:11:bd:76:62:30:4e:
66:1c:a8:71:bb:8f:46:9b:ac:4a:ae:14:5e:c7:70:c6:7e:ce:
30:26:45:1e:cb:dd:ac:1c:cc:ee:44:4c:27:9a:e0:a8:33:f0:
b7:2d:3f:0a:69:a0:fa:b1:f5:af:b8:ed:35:6f:2f:e4:2c:43:
a3:1c:7c:c5:d1:e5:9a:fc:f8:42:e0:e2:5c:7d:70:01:05:b4:
30:90:9d:d8:2f:94:12:52:63:cc:25:bb:60:61:f4:30:b1:df:
3f:50:a3:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 16:51:05 2025 by rpki-client