Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/e71d21-a360-4579-81a0-bcca26fc8945/1/_kFOohqRFtLN-PXALQhnOvpXaJM.mft
File: _kFOohqRFtLN-PXALQhnOvpXaJM.mft (raw, json)
Hash identifier: /DRsOI/AT/5sSxTtPrXGJfqe+XxNqka8LWvTG70NnD4=
Subject key identifier: 4F:5E:C4:A3:6E:90:6E:48:B6:C0:40:2D:D2:BA:2B:18:54:5B:FA:37
Authority key identifier: FE:41:4E:A2:1A:91:16:D2:CD:F8:F5:C0:2D:08:67:3A:FA:57:68:93
Certificate issuer: /CN=fe414ea21a9116d2cdf8f5c02d08673afa576893
Certificate serial: 0198D8BD3837D55DF50D466C2839D4A1E3DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_kFOohqRFtLN-PXALQhnOvpXaJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/e71d21-a360-4579-81a0-bcca26fc8945/1/_kFOohqRFtLN-PXALQhnOvpXaJM.mft
Manifest number: 03E6
Signing time: Sat 23 Aug 2025 21:02:15 +0000
Manifest this update: Sat 23 Aug 2025 21:02:15 +0000
Manifest next update: Sun 24 Aug 2025 21:02:15 +0000
Files and hashes: 1: 0MAgU7sTLhp2qbqkuMgBEoG1GaM.roa (hash: qBfT5pIrk1/WlfhHIXDzrsxZlkpu9JZ5SsEtvG7MW+c=)
2: _kFOohqRFtLN-PXALQhnOvpXaJM.crl (hash: o1DDMVffAv81lwkib/AYWJvwtHH36UCEMKBQukG1VAU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/e71d21-a360-4579-81a0-bcca26fc8945/1/_kFOohqRFtLN-PXALQhnOvpXaJM.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/e71d21-a360-4579-81a0-bcca26fc8945/1/_kFOohqRFtLN-PXALQhnOvpXaJM.mft
rsync://rpki.ripe.net/repository/DEFAULT/_kFOohqRFtLN-PXALQhnOvpXaJM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d8:bd:38:37:d5:5d:f5:0d:46:6c:28:39:d4:a1:e3:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe414ea21a9116d2cdf8f5c02d08673afa576893
Validity
Not Before: Aug 23 21:02:15 2025 GMT
Not After : Aug 24 21:02:15 2025 GMT
Subject: CN=4f5ec4a36e906e48b6c0402dd2ba2b18545bfa37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:67:c6:b1:b5:18:d6:1e:aa:8c:99:81:0c:df:
02:61:85:10:64:81:ae:cd:d0:e4:ab:f1:be:23:99:
0c:7b:13:37:35:ab:22:7e:4f:03:c8:c0:e1:cc:ab:
40:03:e7:23:0b:28:72:db:5b:97:1d:e0:e9:e3:a3:
49:ce:85:b4:98:cc:5a:cf:cd:38:4f:ab:78:a7:bd:
e0:67:e0:63:46:ef:a7:f5:69:7e:a8:35:4f:87:b0:
ff:7a:b4:26:37:e7:b6:4d:a3:a0:ee:d5:94:45:3f:
b8:25:d3:0a:bc:20:ee:4e:d1:ce:ce:df:b4:af:ea:
3a:d4:59:d4:d6:77:8a:99:2d:97:f9:f6:85:de:87:
96:de:8b:79:87:82:e8:7c:c4:5d:c8:8b:22:13:b3:
3e:3b:30:1b:bb:45:bd:ae:1a:c4:1c:b9:9c:d2:0e:
66:6d:cf:44:23:da:e5:ab:1e:cd:e9:e2:1b:55:0c:
42:8c:49:93:be:f8:32:36:d4:e2:db:35:0d:19:00:
b7:80:98:71:12:48:1d:1a:01:53:2d:40:82:cf:09:
57:f5:2e:4b:b1:b5:dd:d3:3c:b8:59:12:22:e7:6d:
77:87:4a:65:80:f8:57:e9:1a:eb:71:2f:49:e1:50:
29:a9:0a:56:81:6f:29:77:32:4e:1b:3d:76:2f:95:
df:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:5E:C4:A3:6E:90:6E:48:B6:C0:40:2D:D2:BA:2B:18:54:5B:FA:37
X509v3 Authority Key Identifier:
keyid:FE:41:4E:A2:1A:91:16:D2:CD:F8:F5:C0:2D:08:67:3A:FA:57:68:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_kFOohqRFtLN-PXALQhnOvpXaJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/e71d21-a360-4579-81a0-bcca26fc8945/1/_kFOohqRFtLN-PXALQhnOvpXaJM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/e71d21-a360-4579-81a0-bcca26fc8945/1/_kFOohqRFtLN-PXALQhnOvpXaJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:82:dc:a7:26:bf:53:1c:34:ab:55:12:84:ca:50:37:9c:79:
4c:a6:73:6f:c6:ef:aa:38:8c:0c:0e:94:4c:37:e7:80:e2:e4:
9b:c4:82:5e:03:95:57:37:45:1e:9e:67:22:d6:90:8d:34:df:
26:a9:18:b6:82:9f:0a:30:4b:7d:cf:11:a5:ad:7e:95:b4:01:
a7:5c:b9:21:fc:ed:fb:9c:89:c6:1d:6d:a1:74:c8:1d:5f:6e:
90:25:3b:98:57:fa:ca:4d:c7:f9:27:b0:dd:86:cc:53:0b:1d:
b6:e8:69:15:78:95:51:53:6a:0e:94:f3:49:d8:20:e1:e4:81:
39:d5:f2:fd:e3:39:5d:d8:c0:04:69:09:39:3f:a6:9d:ee:67:
bf:92:19:e2:2f:d5:99:ec:4a:aa:3e:f1:97:7b:1c:26:1d:c3:
c3:df:65:e1:46:ee:72:46:3b:ae:93:91:cd:24:38:3d:8e:b9:
96:41:27:44:c1:45:6b:f6:3f:73:54:d2:e4:c4:7d:dd:8f:17:
1c:fc:db:89:17:d3:9d:44:94:ab:c5:de:91:32:67:68:a9:74:
6c:ce:54:98:3f:2d:f5:2a:3c:86:52:db:e0:7a:1d:94:b7:24:
93:6a:33:66:12:16:e9:3a:1f:85:e6:c2:c5:c8:97:2b:e7:d2:
77:42:e1:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 00:07:53 2025 by rpki-client