Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.mft
File: kERLB53wCKfHy-KPy6Xb4GIOjhc.mft (raw, json)
Hash identifier: ZqlZgf7XTDbygIzXDPOuuFAaCjNgXG3is9R7fz+BswE=
Subject key identifier: C9:0A:A7:19:47:69:A6:D6:6F:58:16:CC:29:A4:EA:90:58:EA:3D:56
Authority key identifier: 90:44:4B:07:9D:F0:08:A7:C7:CB:E2:8F:CB:A5:DB:E0:62:0E:8E:17
Certificate issuer: /CN=90444b079df008a7c7cbe28fcba5dbe0620e8e17
Certificate serial: 01987A892A692150E29E970FC07F4A305D0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kERLB53wCKfHy-KPy6Xb4GIOjhc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.mft
Manifest number: 148D
Signing time: Tue 05 Aug 2025 14:01:06 +0000
Manifest this update: Tue 05 Aug 2025 14:01:06 +0000
Manifest next update: Wed 06 Aug 2025 14:01:06 +0000
Files and hashes: 1: kERLB53wCKfHy-KPy6Xb4GIOjhc.crl (hash: kftRIXtj7AfUYRmhlgzuZwuAvsGl0ibIsa5k7ULzbqw=)
2: o9Mrd_Zp-119sDj-V8VZv-bH4Po.roa (hash: T/Zr25wueuSL7uIuxkLz/YPHfupfyL0OiqXaAJQQ9Uw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.mft
rsync://rpki.ripe.net/repository/DEFAULT/kERLB53wCKfHy-KPy6Xb4GIOjhc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 14:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7a:89:2a:69:21:50:e2:9e:97:0f:c0:7f:4a:30:5d:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90444b079df008a7c7cbe28fcba5dbe0620e8e17
Validity
Not Before: Aug 5 14:01:06 2025 GMT
Not After : Aug 6 14:01:06 2025 GMT
Subject: CN=c90aa7194769a6d66f5816cc29a4ea9058ea3d56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:3d:e3:60:e6:90:d0:3f:43:da:cc:4d:68:ef:
ac:fd:52:45:14:cd:bd:88:b8:32:4e:73:fb:1f:74:
cd:ae:97:96:44:e9:93:b4:bb:9b:9f:85:43:a3:7a:
e8:e7:af:2d:99:2f:a8:af:51:88:f6:23:5f:f3:ec:
c7:e0:ba:76:0a:09:c1:62:23:8e:0b:d7:c4:72:39:
21:fc:6e:ba:c3:57:a6:61:67:2d:2b:04:43:34:c9:
bd:5f:41:53:2c:12:d7:ad:3b:56:3d:20:18:87:9d:
97:f2:97:94:61:dc:2b:54:f1:59:69:f0:69:4b:27:
b3:5d:06:50:20:f1:32:cd:7e:ef:ae:d6:bc:d7:9a:
6d:74:fe:f7:b7:f5:b4:a0:31:77:0d:fe:c7:97:ac:
dc:e9:54:a5:59:93:63:ee:0c:95:1c:96:01:4f:d0:
1b:74:fb:64:38:23:e7:ad:8b:e5:20:b8:ba:d7:e0:
fd:8e:8d:8e:f7:2f:62:c3:27:45:f6:22:d2:8d:c9:
4b:de:4b:a9:23:56:db:06:b2:02:76:43:c4:86:1b:
3a:09:93:0f:ad:fe:bf:73:84:41:6f:2b:ff:dd:fe:
39:e6:3b:e0:e2:c5:cf:f7:b9:15:ec:d7:0f:d5:00:
9c:70:82:13:db:b6:a8:9c:28:96:55:db:f7:5e:eb:
ea:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:0A:A7:19:47:69:A6:D6:6F:58:16:CC:29:A4:EA:90:58:EA:3D:56
X509v3 Authority Key Identifier:
keyid:90:44:4B:07:9D:F0:08:A7:C7:CB:E2:8F:CB:A5:DB:E0:62:0E:8E:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kERLB53wCKfHy-KPy6Xb4GIOjhc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:ee:b8:e8:e3:6f:a5:2b:f2:c7:27:ad:45:8d:b1:a2:58:74:
f1:85:3f:5f:4d:e8:3d:a6:50:55:cf:4a:6c:13:56:25:c3:c3:
3c:68:d3:1a:a9:0d:95:de:f2:ac:27:b1:ec:ae:b0:95:e3:5c:
27:f8:28:46:58:58:02:5f:2e:79:01:81:5a:ac:c0:32:b9:18:
36:a9:2b:59:e3:1e:5a:e4:fd:1f:1c:17:16:f4:63:57:6e:92:
c2:73:a8:f2:12:45:40:fc:1d:d6:f0:32:4f:a0:4a:9e:3a:69:
50:0e:69:2c:a8:a0:e7:4e:d3:51:a0:2e:ff:47:58:fa:3d:b5:
44:29:64:1c:d7:f9:c6:d7:f6:40:52:c2:ce:5d:68:d0:39:f0:
f3:d4:e9:25:f3:75:a4:e4:ef:12:ff:98:b9:5e:c7:15:9e:b1:
9a:ac:45:ac:b7:08:e4:31:8b:7a:fb:43:94:9b:ee:bf:c5:92:
5f:7f:24:f8:a9:e6:c5:79:d8:c4:ce:90:91:03:10:24:b7:b8:
1f:e2:64:e0:a9:90:08:0d:b3:03:4b:74:14:43:68:bf:91:93:
11:99:69:b0:44:a4:dc:04:8f:a7:d1:d5:fe:8f:03:48:b7:bb:
60:e6:70:63:03:31:5f:ae:1d:93:7c:fd:70:04:f2:5e:a9:49:
cc:6f:91:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 00:36:37 2025 by rpki-client