Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/64db24-bc36-4ca1-ab02-b139b2a3fe49/1/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.mft
File: kMPK6GVVaHMkMZ0SJpOMcD7k7cE.mft (raw, json)
Hash identifier: Bc2raLJkOGarlHKUUQRLC6jvmdCmgML2UxSnLhnKtxk=
Subject key identifier: 73:FA:AE:82:81:79:16:AF:2E:95:79:C8:D7:8C:69:77:10:6D:28:2F
Authority key identifier: 90:C3:CA:E8:65:55:68:73:24:31:9D:12:26:93:8C:70:3E:E4:ED:C1
Certificate issuer: /CN=90c3cae86555687324319d1226938c703ee4edc1
Certificate serial: 0198D4724BD3EBC50FD687C18AA15580E62A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/64db24-bc36-4ca1-ab02-b139b2a3fe49/1/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.mft
Manifest number: 06A0
Signing time: Sat 23 Aug 2025 01:01:56 +0000
Manifest this update: Sat 23 Aug 2025 01:01:56 +0000
Manifest next update: Sun 24 Aug 2025 01:01:56 +0000
Files and hashes: 1: 0uXZsIzOuGlbguIFz3Zkl5De9lU.roa (hash: YNeeVSttuQ98olLv+5aLbTyXkKQvSMcGX+VvVs9cMAQ=)
2: kMPK6GVVaHMkMZ0SJpOMcD7k7cE.crl (hash: lnYaKMbEQwMwSx266aAxtO0EWnCTlwQYK/Y9lx2X5Z0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/64db24-bc36-4ca1-ab02-b139b2a3fe49/1/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/64db24-bc36-4ca1-ab02-b139b2a3fe49/1/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:01:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:4b:d3:eb:c5:0f:d6:87:c1:8a:a1:55:80:e6:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90c3cae86555687324319d1226938c703ee4edc1
Validity
Not Before: Aug 23 01:01:56 2025 GMT
Not After : Aug 24 01:01:56 2025 GMT
Subject: CN=73faae82817916af2e9579c8d78c6977106d282f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:86:c7:16:de:13:ab:1f:53:1c:e1:2c:10:50:
87:64:24:fe:37:fb:c2:e2:66:c4:dd:37:71:88:be:
0b:4c:f0:dd:1a:bc:45:94:40:b2:17:f4:a7:11:60:
13:13:43:63:13:c2:da:51:32:ff:f6:a7:db:90:29:
95:80:49:27:9f:70:bd:72:dc:63:3f:6d:57:f9:72:
1b:5c:87:25:a4:d4:3e:45:9e:25:70:b6:78:37:dd:
7f:cf:57:c7:c6:5d:94:7b:23:21:f9:67:06:2f:03:
89:63:14:f3:e5:6a:61:27:2c:6e:8b:91:1a:dc:9a:
4f:9c:bc:4c:59:d1:13:6f:9b:39:79:c1:39:39:8c:
05:a8:be:75:39:a1:ad:48:d1:21:b4:0e:b2:fa:83:
4a:ff:99:61:82:e4:71:d6:54:cc:39:7c:24:5a:0a:
c4:b1:fc:de:40:ee:56:6a:26:2b:9e:b7:59:e0:34:
a1:11:9e:b8:03:fb:1e:74:f8:c3:36:6f:e9:6a:36:
52:3e:b5:d5:74:ec:29:b0:79:06:b7:32:ac:61:c0:
fb:2a:dd:61:f5:60:5c:b7:29:9c:b9:68:ab:22:bd:
df:47:ee:17:4a:bc:09:e3:9a:a6:26:84:6d:71:77:
90:08:f3:16:7d:e2:ae:e5:40:e0:f5:0d:c4:24:b5:
86:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:FA:AE:82:81:79:16:AF:2E:95:79:C8:D7:8C:69:77:10:6D:28:2F
X509v3 Authority Key Identifier:
keyid:90:C3:CA:E8:65:55:68:73:24:31:9D:12:26:93:8C:70:3E:E4:ED:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/64db24-bc36-4ca1-ab02-b139b2a3fe49/1/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/64db24-bc36-4ca1-ab02-b139b2a3fe49/1/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:b2:84:db:bd:d7:f7:da:98:f5:f6:86:62:7b:99:aa:26:09:
46:11:56:b1:a1:38:e3:4e:23:3d:d6:0d:73:98:aa:df:0b:dc:
b7:15:fd:2f:00:6c:1f:82:72:c6:48:62:18:f3:23:c0:a5:b9:
55:0e:75:de:71:44:42:d9:a9:42:78:2e:b3:6b:71:19:95:7e:
cd:7c:5d:32:6c:40:7c:f5:4e:52:1b:50:c8:2c:ff:f8:49:54:
69:20:0a:cb:9c:9f:57:2e:58:7f:b6:30:28:90:e9:2e:0b:26:
e2:ee:6a:cb:a5:ee:3b:1f:a9:a3:a4:50:93:9d:d4:00:d3:0c:
86:aa:ea:1f:8a:7a:0c:1b:b4:da:3c:c9:71:13:09:f5:60:10:
d8:93:39:47:5d:96:6b:19:cb:92:5b:0e:ea:6c:18:97:f5:6f:
a9:09:be:fe:50:af:49:43:67:25:a4:04:b0:58:6d:1b:30:ff:
f0:df:63:4d:b8:d5:9b:22:ee:87:70:2c:3e:65:c2:08:24:d8:
30:f3:35:df:d3:e3:30:f5:65:b9:f8:e6:60:89:aa:68:7e:0d:
6e:33:71:86:dd:b6:75:19:fd:6f:33:91:bf:f2:8a:70:af:d2:
da:b9:96:e4:72:57:91:d4:9a:39:6d:5a:22:67:5c:5c:43:98:
f3:29:9b:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:33:53 2025 by rpki-client