Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/df833b-c87a-41fc-ba2e-e53c5ec5d402/1/kAhyNvFhxccF73Pf6eXjmG5xJsg.mft
File: kAhyNvFhxccF73Pf6eXjmG5xJsg.mft (raw, json)
Hash identifier: 35qEpamD1RdGwT8qS0nxA0sfNV+BOg07okPdwHdIR/8=
Subject key identifier: 2B:9B:B1:46:AD:3F:5E:81:25:11:81:02:45:2B:54:EC:A6:48:FE:39
Authority key identifier: 90:08:72:36:F1:61:C5:C7:05:EF:73:DF:E9:E5:E3:98:6E:71:26:C8
Certificate issuer: /CN=90087236f161c5c705ef73dfe9e5e3986e7126c8
Certificate serial: 0197CBDF3F3D20AE1AB81E990CA64FF6A551
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kAhyNvFhxccF73Pf6eXjmG5xJsg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/df833b-c87a-41fc-ba2e-e53c5ec5d402/1/kAhyNvFhxccF73Pf6eXjmG5xJsg.mft
Manifest number: 057B
Signing time: Wed 02 Jul 2025 16:01:34 +0000
Manifest this update: Wed 02 Jul 2025 16:01:34 +0000
Manifest next update: Thu 03 Jul 2025 16:01:34 +0000
Files and hashes: 1: ilmUYJP9An2tvy3PssJlCv8HfSc.roa (hash: 1qXew5Oe7BdIwNw0qvNlQOP+TeLMGt2S2brGQ7Jg7lc=)
2: kAhyNvFhxccF73Pf6eXjmG5xJsg.crl (hash: xC40BkDF+G2tFQjBDHcp898CwBlp0HO3N86osROXNeA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/df833b-c87a-41fc-ba2e-e53c5ec5d402/1/kAhyNvFhxccF73Pf6eXjmG5xJsg.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/df833b-c87a-41fc-ba2e-e53c5ec5d402/1/kAhyNvFhxccF73Pf6eXjmG5xJsg.mft
rsync://rpki.ripe.net/repository/DEFAULT/kAhyNvFhxccF73Pf6eXjmG5xJsg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 11:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:cb:df:3f:3d:20:ae:1a:b8:1e:99:0c:a6:4f:f6:a5:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90087236f161c5c705ef73dfe9e5e3986e7126c8
Validity
Not Before: Jul 2 16:01:34 2025 GMT
Not After : Jul 3 16:01:34 2025 GMT
Subject: CN=2b9bb146ad3f5e8125118102452b54eca648fe39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:1b:74:45:8e:c8:7e:4a:ca:82:03:49:82:2c:
c2:89:c1:b3:a7:7b:31:1e:1b:b7:b2:db:e4:e4:16:
f2:7e:74:13:17:c7:13:a2:6c:2e:47:1c:30:90:50:
88:18:00:31:e3:79:2f:fa:8a:4c:d5:40:99:18:dd:
b9:98:6e:de:f5:b2:74:13:1f:52:f4:83:3c:1a:61:
84:1b:fd:c2:c5:a0:e2:4c:ee:7d:6c:b0:e6:60:c8:
73:66:11:74:96:cc:08:73:c7:be:81:3a:5d:0e:98:
4e:31:e5:ee:92:4b:ca:d1:63:41:87:a4:b6:3e:ac:
67:a9:75:4e:a5:46:4d:fc:67:e6:bd:84:ed:05:02:
d5:da:25:47:6b:ef:52:cc:a1:97:55:28:20:d2:fc:
03:7b:0c:13:bf:86:e5:f6:e0:70:a5:d9:0c:ea:cd:
a0:06:27:53:7d:0f:20:1b:3d:eb:d2:5e:ed:aa:5c:
43:e9:9e:30:5c:e5:b2:fd:6b:e8:c3:a1:cf:11:64:
3a:61:2b:64:15:fd:9e:50:cf:9a:ae:7a:c2:83:53:
23:17:f7:a7:9c:33:bc:e5:80:e0:54:57:8e:71:89:
1a:85:9c:58:ca:ec:05:8e:1d:e1:f5:42:6f:f3:16:
ef:d4:37:73:6f:96:e1:c9:0c:12:38:13:d0:10:ae:
42:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:9B:B1:46:AD:3F:5E:81:25:11:81:02:45:2B:54:EC:A6:48:FE:39
X509v3 Authority Key Identifier:
keyid:90:08:72:36:F1:61:C5:C7:05:EF:73:DF:E9:E5:E3:98:6E:71:26:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kAhyNvFhxccF73Pf6eXjmG5xJsg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/df833b-c87a-41fc-ba2e-e53c5ec5d402/1/kAhyNvFhxccF73Pf6eXjmG5xJsg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/df833b-c87a-41fc-ba2e-e53c5ec5d402/1/kAhyNvFhxccF73Pf6eXjmG5xJsg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:c4:39:d7:2c:ff:1b:77:53:b6:c8:c6:c1:fc:92:a0:68:f3:
c0:24:e7:bb:0d:45:9d:62:dc:7f:50:84:80:e4:5c:77:c2:97:
f5:ea:f3:41:70:33:a8:9f:87:03:98:fe:e1:ed:1f:9e:91:67:
3c:6e:a6:1e:fc:26:88:11:e3:8c:58:36:6b:6f:61:4c:83:65:
11:1c:35:31:34:30:5e:d2:2c:dc:67:c5:a2:18:4a:61:b4:fb:
23:11:f2:1a:cb:c0:87:36:be:7f:98:3c:64:86:59:82:dd:fd:
91:7a:60:68:3e:fc:14:d2:7f:4d:fb:ca:39:8e:62:46:a7:01:
8d:a6:24:c1:20:74:ee:d9:f6:ae:aa:c3:ff:f0:d7:9e:64:ac:
b0:e9:4c:02:93:35:d1:94:aa:2e:c4:7d:66:83:4c:f8:f9:4b:
7d:ac:6d:65:75:0f:47:8b:52:50:f5:45:5e:84:30:97:5a:39:
b5:fe:b4:88:2f:8f:76:f6:5e:ff:2a:3b:33:92:f4:0a:ad:9f:
fb:ab:3f:f9:2f:6e:28:ef:68:4e:7b:34:31:91:06:a0:50:d0:
8f:8b:40:0c:f2:89:83:54:4b:dd:7c:17:ef:6e:f0:d6:11:bf:
6d:14:c9:61:13:36:36:2d:60:9e:27:8e:77:64:fc:a9:b4:47:
66:d9:98:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 20:57:15 2025 by rpki-client