Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft
File: kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft (raw, json)
Hash identifier: WTl4sqsgb7qnBpMUmH5sAsjDUwPURjyfO+anVwqwKgg=
Subject key identifier: 90:A8:3C:CE:69:43:92:58:3D:C0:5B:73:09:27:6A:56:57:ED:37:92
Authority key identifier: 90:B3:A3:A0:D6:62:D1:4D:A8:40:4B:D2:1D:C4:89:E6:39:45:62:4E
Certificate issuer: /CN=90b3a3a0d662d14da8404bd21dc489e63945624e
Certificate serial: 0198D4E01DE6F665BF613D14EE3DE6B5B7D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft
Manifest number: 1648
Signing time: Sat 23 Aug 2025 03:01:54 +0000
Manifest this update: Sat 23 Aug 2025 03:01:54 +0000
Manifest next update: Sun 24 Aug 2025 03:01:54 +0000
Files and hashes: 1: Wq2iqPYhNjor18Qz9IXxlr7x8mQ.roa (hash: QfZmNahEgmZ6AaDD2oA3mk7CjDsVWvRKb2LNfkM1y9A=)
2: kLOjoNZi0U2oQEvSHcSJ5jlFYk4.crl (hash: nFDKgLeu/kqmRGeR0gaaWCXBs5jm1O3FUVgl8ocWnYA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:1d:e6:f6:65:bf:61:3d:14:ee:3d:e6:b5:b7:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90b3a3a0d662d14da8404bd21dc489e63945624e
Validity
Not Before: Aug 23 03:01:54 2025 GMT
Not After : Aug 24 03:01:54 2025 GMT
Subject: CN=90a83cce694392583dc05b7309276a5657ed3792
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f6:fa:54:84:8b:cf:ab:b5:5f:b9:53:3d:ed:
f1:af:a7:8f:14:81:08:c8:d1:ce:b1:41:4f:e7:79:
54:5b:22:bc:47:f0:8a:a6:30:f0:ec:1e:00:e0:19:
3b:7d:75:7d:5e:e7:0d:37:91:e3:17:ef:3f:00:21:
05:00:54:ff:25:c3:d7:4c:3b:cc:e3:cc:f8:10:27:
d5:d7:e5:75:94:cc:41:f6:e5:b3:74:3f:8c:34:7a:
1b:17:50:90:f0:fe:f1:c9:df:5d:33:a9:19:8b:15:
81:5b:15:22:a5:23:33:98:5a:36:ae:b0:54:d5:5b:
3a:9b:02:1c:49:85:c2:c6:50:45:d7:cd:64:a0:98:
cf:58:2c:d2:5d:33:e5:4e:d3:9f:a5:ea:32:5a:a6:
7c:99:88:3c:cb:3c:57:28:ae:47:ca:03:b0:01:0f:
a0:dc:2d:e4:f3:43:3f:f2:6f:6b:d4:36:ab:cd:bf:
0c:00:1e:00:80:3c:cc:c1:d3:01:64:23:6a:42:c7:
7f:42:13:e1:36:e4:e5:47:dc:90:a4:59:0b:96:70:
c5:bd:64:48:19:b8:ad:27:ce:77:6d:b2:2f:66:09:
23:85:75:0d:e2:d9:34:f3:46:f8:2a:c1:bf:b3:a5:
ba:f7:ab:ed:24:3e:4e:c1:d1:35:e1:1c:a6:ce:37:
af:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:A8:3C:CE:69:43:92:58:3D:C0:5B:73:09:27:6A:56:57:ED:37:92
X509v3 Authority Key Identifier:
keyid:90:B3:A3:A0:D6:62:D1:4D:A8:40:4B:D2:1D:C4:89:E6:39:45:62:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:1a:16:05:00:9f:00:44:66:c6:c9:93:19:7e:de:ab:a9:56:
99:cb:d4:d1:b1:b3:6e:cd:0d:41:2f:b9:71:43:63:11:ee:84:
34:ce:31:bd:df:67:33:94:a3:30:fc:f1:f2:ee:c7:e7:0d:05:
c7:d9:d4:fc:54:08:79:a8:82:13:84:93:9a:da:56:f4:92:7a:
5f:e0:eb:1e:8a:d2:a5:1c:2b:92:40:0e:cb:d9:4d:a1:3d:41:
d3:16:57:db:8a:7e:a6:d5:c8:8b:98:56:54:bd:1d:a9:f6:73:
65:3e:4d:aa:57:6e:63:93:bd:ef:ef:db:62:e2:62:1d:07:13:
a2:7a:23:cf:87:54:16:2d:d8:6d:ec:15:a4:a7:33:4c:23:13:
f5:12:3b:f3:ef:28:42:7c:2d:8a:7c:76:56:42:1e:2c:06:ab:
72:a3:7c:85:5e:63:94:90:a1:1b:cb:04:bb:5e:59:0b:08:10:
64:66:c0:5f:09:17:2e:b6:50:06:77:54:05:fa:fd:d5:e4:5e:
8f:a8:fd:cf:d3:f1:0f:e5:48:89:d4:09:9b:f7:32:47:8e:08:
91:51:ea:64:c7:ba:79:f5:3c:b9:34:09:14:64:37:25:15:30:
9c:38:da:0b:a8:b3:80:2d:bd:c6:10:f5:d4:aa:b9:8e:b3:27:
17:c8:1d:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 06:52:05 2025 by rpki-client