Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/64db24-bc36-4ca1-ab02-b139b2a3fe49/1/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.mft
File: kMPK6GVVaHMkMZ0SJpOMcD7k7cE.mft (raw, json)
Hash identifier: QIjaSoKnyoOYluPNcCKVucsDGmrO/DpTcgodR1uj7+E=
Subject key identifier: 29:41:62:4F:A7:FE:1F:BA:54:B0:55:7B:1F:79:BA:1E:8F:E1:31:76
Authority key identifier: 90:C3:CA:E8:65:55:68:73:24:31:9D:12:26:93:8C:70:3E:E4:ED:C1
Certificate issuer: /CN=90c3cae86555687324319d1226938c703ee4edc1
Certificate serial: 0196A80B73E69E8A2C1A965B9D26E837E7C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/64db24-bc36-4ca1-ab02-b139b2a3fe49/1/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.mft
Manifest number: 0580
Signing time: Wed 07 May 2025 00:00:44 +0000
Manifest this update: Wed 07 May 2025 00:00:44 +0000
Manifest next update: Thu 08 May 2025 00:00:44 +0000
Files and hashes: 1: 0uXZsIzOuGlbguIFz3Zkl5De9lU.roa (hash: YNeeVSttuQ98olLv+5aLbTyXkKQvSMcGX+VvVs9cMAQ=)
2: kMPK6GVVaHMkMZ0SJpOMcD7k7cE.crl (hash: L7UqCHyYz94/nw6Is1TU9sAeWz+N7yW6JDp74GmUN7g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/64db24-bc36-4ca1-ab02-b139b2a3fe49/1/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/64db24-bc36-4ca1-ab02-b139b2a3fe49/1/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a8:0b:73:e6:9e:8a:2c:1a:96:5b:9d:26:e8:37:e7:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90c3cae86555687324319d1226938c703ee4edc1
Validity
Not Before: May 7 00:00:44 2025 GMT
Not After : May 8 00:00:44 2025 GMT
Subject: CN=2941624fa7fe1fba54b0557b1f79ba1e8fe13176
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:3c:22:33:f1:eb:36:87:41:35:f0:3e:8a:89:
92:c1:23:9b:79:a1:b9:65:77:46:94:80:dc:fd:b5:
19:c8:cd:b1:e5:a3:fb:f4:8e:03:ab:14:b6:7d:ae:
fc:0b:88:56:1d:34:88:8f:8f:78:28:ef:5d:ad:6f:
2d:37:bf:69:9b:ff:b5:ab:3d:14:e3:09:84:f9:78:
49:65:c4:5f:93:01:d6:5e:c7:bc:e7:4f:cf:26:f0:
87:f0:df:38:6c:90:ac:07:f3:ba:f6:4d:65:ec:16:
5c:ee:f8:f2:99:23:32:70:ce:92:84:49:94:0f:39:
d3:ef:0f:29:62:db:01:4f:44:c7:20:8e:17:95:2f:
ed:7c:af:50:4a:55:f0:f6:90:b8:67:7d:bd:e4:88:
54:27:0a:2a:ed:4e:29:30:ee:83:93:2b:af:84:97:
f2:42:69:ce:b4:44:af:af:f0:9c:cf:9d:05:a0:63:
82:dc:c4:b8:a6:69:bd:1e:31:de:51:d6:26:68:24:
58:af:6a:76:ac:e7:8b:25:a1:78:78:dd:33:61:d8:
af:d5:41:45:fb:b8:3f:d0:7a:e2:e0:ce:8c:0a:a9:
a4:58:c0:17:ea:bc:a1:5f:5e:15:97:7a:42:69:21:
70:ae:67:c9:da:4f:03:ac:ca:22:66:02:9e:8e:07:
5a:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:41:62:4F:A7:FE:1F:BA:54:B0:55:7B:1F:79:BA:1E:8F:E1:31:76
X509v3 Authority Key Identifier:
keyid:90:C3:CA:E8:65:55:68:73:24:31:9D:12:26:93:8C:70:3E:E4:ED:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/64db24-bc36-4ca1-ab02-b139b2a3fe49/1/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/64db24-bc36-4ca1-ab02-b139b2a3fe49/1/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d9:24:ae:12:e6:3c:45:26:4b:34:1f:51:d4:11:75:38:ba:5e:
90:44:42:e1:04:19:10:29:ad:41:aa:29:95:96:cc:d7:24:a3:
83:b0:73:51:fb:e9:8d:d6:a6:e9:64:01:5a:33:43:f8:30:6a:
80:62:df:81:dd:26:f0:ff:73:43:53:30:7e:c6:f4:a5:43:52:
e0:ee:5f:91:6c:7f:85:e7:0f:eb:de:bd:a6:99:b4:59:0f:ee:
f2:db:41:d4:ba:54:51:70:cc:62:17:27:65:89:75:f5:58:99:
ea:d3:9a:50:e8:59:18:ed:a8:4e:9d:2d:88:26:13:1a:f5:ce:
66:8f:52:8a:7e:f9:3f:c7:5f:8b:4c:c0:05:23:75:a2:a7:96:
c1:a4:4b:b9:5c:ba:27:6a:25:11:8f:fe:57:59:a4:40:f3:13:
32:f6:f0:bf:b9:82:ee:0b:37:b9:fc:35:d2:59:23:79:d9:75:
ce:cc:30:c3:67:69:41:7a:63:54:fa:c6:36:c8:77:d4:f9:db:
4d:74:5a:41:46:31:87:a1:6d:83:71:44:2a:b0:ba:cd:ca:38:
40:bf:0d:9a:ac:93:6a:d4:1f:48:35:53:3e:08:b6:79:05:1b:
ce:5f:33:66:d2:49:16:ee:b6:dc:c7:87:60:8c:68:64:95:02:
a1:93:14:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 06:25:12 2025 by rpki-client