Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
File: kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft (raw, json)
Hash identifier: rNPyN1flEt+Afu0VI7u/XKfe0EqI8uGbMS03AMJC+Wc=
Subject key identifier: FA:46:D6:AD:3A:4A:11:A1:6C:17:8C:82:BC:B7:4A:37:DA:27:E8:4E
Authority key identifier: 90:CC:D9:13:A9:9B:AF:D8:93:E0:7B:A9:68:A6:74:34:E3:DF:54:20
Certificate issuer: /CN=90ccd913a99bafd893e07ba968a67434e3df5420
Certificate serial: 01977A8B58989A6D5827DC06F1D0D98E408C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
Manifest number: 14EE
Signing time: Mon 16 Jun 2025 21:00:41 +0000
Manifest this update: Mon 16 Jun 2025 21:00:41 +0000
Manifest next update: Tue 17 Jun 2025 21:00:41 +0000
Files and hashes: 1: 7ma8rm9Nc8aP0i9rOur_HEzgHJs.roa (hash: GInuicNk1jMv1+rnjCpEDF87yGDttTl9tUwBgJS9KiA=)
2: kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl (hash: X0P0s8A3JSZjjnaZ0/vHTkpZ45Htp9mrsJaSnL/Mevk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 21:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7a:8b:58:98:9a:6d:58:27:dc:06:f1:d0:d9:8e:40:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90ccd913a99bafd893e07ba968a67434e3df5420
Validity
Not Before: Jun 16 21:00:41 2025 GMT
Not After : Jun 17 21:00:41 2025 GMT
Subject: CN=fa46d6ad3a4a11a16c178c82bcb74a37da27e84e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:da:f2:03:df:a7:54:43:84:50:41:31:89:0d:
a5:1c:bb:44:45:ac:b3:da:2c:39:eb:2a:80:5e:a9:
0d:1b:21:50:3d:d7:b6:66:05:ba:12:d0:a7:fb:dd:
fe:6e:7c:1a:58:04:58:ac:b5:7a:cf:1c:ad:61:74:
8d:99:64:28:a4:cd:7c:71:0c:0d:a8:19:37:c3:23:
3d:a0:e9:0e:ae:90:05:5d:00:6a:48:58:7a:8a:af:
81:8c:87:6f:36:c6:68:ae:a9:f7:62:91:ec:95:61:
6f:1d:9b:70:f9:80:5c:6d:67:f2:79:14:08:d1:00:
b3:5f:d4:cd:67:9e:37:93:d7:4f:3a:b3:2b:09:a9:
df:68:f8:61:00:16:fc:93:32:ca:bb:72:62:89:9b:
42:32:a8:c7:da:67:52:46:bf:60:1c:01:32:57:80:
2b:1e:87:4a:9a:25:7d:17:f1:74:ad:b4:d0:8e:d8:
b6:69:3f:cf:05:f7:43:76:6a:0e:73:b6:7d:33:2d:
04:e2:e0:08:61:d6:73:ee:57:66:6f:55:4b:43:97:
3d:fb:6c:ce:62:f7:0e:36:ae:47:2e:ec:8b:f1:d8:
ff:80:f7:da:70:e6:b7:99:c8:f4:87:5d:9c:93:78:
d1:f6:a1:4d:2c:2e:3e:26:35:f0:93:86:2c:e3:20:
31:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:46:D6:AD:3A:4A:11:A1:6C:17:8C:82:BC:B7:4A:37:DA:27:E8:4E
X509v3 Authority Key Identifier:
keyid:90:CC:D9:13:A9:9B:AF:D8:93:E0:7B:A9:68:A6:74:34:E3:DF:54:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:7d:d0:aa:04:d7:1e:dc:a5:b1:ed:9c:a3:fe:80:f6:f3:a3:
7f:38:00:2b:1c:2a:cf:bc:4c:b4:75:32:b1:c3:91:18:14:bd:
ba:d0:8d:b9:c0:d6:d5:c6:25:cd:3d:1b:77:85:b7:c1:79:f1:
0a:a6:ae:87:ea:c0:e6:c9:3c:38:b6:4a:ac:34:c5:76:bb:e5:
0d:8e:02:1e:c5:8c:ba:2a:73:04:44:a2:ac:70:b4:9f:54:8b:
71:07:01:57:a0:27:53:8a:eb:82:00:03:76:81:62:4c:f6:c3:
5f:f0:9f:ce:ad:e8:4f:05:4d:84:cc:40:26:d0:6d:a9:ea:c7:
47:2c:9d:89:24:44:28:39:48:98:ec:6f:21:44:d4:ea:40:36:
e4:90:39:c1:c0:28:65:14:65:bd:fb:79:29:02:68:72:22:8a:
a5:0b:b5:95:cb:03:3f:60:20:70:4d:56:a5:40:19:95:0e:40:
51:cd:4a:22:73:02:1d:d2:b6:60:fc:5a:c6:c2:1e:c8:e3:05:
35:ae:b7:79:ed:24:65:98:5d:ef:3b:9b:e1:9f:57:60:76:62:
87:b9:23:04:ad:55:cb:63:89:cc:6e:60:0d:c9:af:ef:3e:0c:
ec:0f:26:32:17:77:9b:fe:79:91:96:78:d1:92:a9:6e:43:8e:
c1:8c:ed:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 01:14:51 2025 by rpki-client