
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
File: kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft (raw, json)
Hash identifier: EtlnekroI+p0G3io+eLBdqYP/MNs3SgTpjrWUGM4lWA=
Subject key identifier: 87:AF:89:27:08:26:AB:62:9B:6F:51:93:4D:4E:31:F9:99:42:0B:2F
Authority key identifier: 90:CC:D9:13:A9:9B:AF:D8:93:E0:7B:A9:68:A6:74:34:E3:DF:54:20
Certificate issuer: /CN=90ccd913a99bafd893e07ba968a67434e3df5420
Certificate serial: 019889204483451941CFC84C5F04C26F7A81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
Manifest number: 157A
Signing time: Fri 08 Aug 2025 10:00:49 +0000
Manifest this update: Fri 08 Aug 2025 10:00:49 +0000
Manifest next update: Sat 09 Aug 2025 10:00:49 +0000
Files and hashes: 1: 7ma8rm9Nc8aP0i9rOur_HEzgHJs.roa (hash: GInuicNk1jMv1+rnjCpEDF87yGDttTl9tUwBgJS9KiA=)
2: kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl (hash: Z93i4IUypm6qDXuSkjhrB5g24cHPLN4T+YS4FzqXiQ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 10:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:89:20:44:83:45:19:41:cf:c8:4c:5f:04:c2:6f:7a:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90ccd913a99bafd893e07ba968a67434e3df5420
Validity
Not Before: Aug 8 10:00:49 2025 GMT
Not After : Aug 9 10:00:49 2025 GMT
Subject: CN=87af89270826ab629b6f51934d4e31f999420b2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e2:5b:56:7c:2d:db:24:90:35:a7:e2:aa:aa:
66:4e:f0:2b:01:c1:26:a4:b8:db:41:c2:79:c5:71:
c2:6b:be:5a:9a:38:65:e6:7b:88:6d:31:8d:10:f5:
d4:46:75:e8:51:ba:f7:29:6d:bf:6b:d3:04:83:92:
f2:ef:8b:49:89:bc:e2:3d:9c:4f:72:9d:0c:8a:67:
b3:70:aa:c0:7c:a9:26:e4:76:c7:b0:5e:b4:f8:ca:
9f:1b:b3:f5:4c:25:cd:14:e4:c3:d6:1a:c6:9d:30:
df:72:26:f7:ad:7f:51:1e:d0:7f:35:d5:03:00:ec:
9b:5a:b5:b2:66:1a:ce:0b:55:3b:2f:dc:60:06:22:
93:be:af:32:90:b3:ff:5a:b4:eb:e9:b5:90:c0:63:
62:ac:ff:94:d9:81:5f:2b:90:29:83:b9:40:f2:cd:
6f:73:53:43:fe:74:b8:b0:4d:0e:44:c7:ca:33:a5:
fe:52:39:99:07:d9:e2:6a:98:f5:96:a3:eb:dc:c4:
5b:57:5b:c7:6b:69:57:af:fe:61:84:08:18:ba:55:
41:8f:97:bb:d2:cf:45:29:70:8f:16:89:d0:80:35:
44:0a:99:5a:a3:aa:57:d9:f2:2f:3e:3b:ff:de:9b:
c1:f3:14:b8:9c:92:19:8c:99:6c:a0:bf:b5:b7:0b:
a4:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:AF:89:27:08:26:AB:62:9B:6F:51:93:4D:4E:31:F9:99:42:0B:2F
X509v3 Authority Key Identifier:
keyid:90:CC:D9:13:A9:9B:AF:D8:93:E0:7B:A9:68:A6:74:34:E3:DF:54:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:60:85:6e:e4:04:e2:7b:3b:76:75:73:c1:0e:2b:31:cf:9e:
86:dc:8b:3e:c9:74:29:0f:89:33:ab:a9:7a:10:8c:26:a3:17:
27:b0:c9:30:20:3b:57:57:bc:00:55:58:df:55:bb:57:dd:77:
3d:26:ef:44:8b:20:1b:03:0a:04:7d:96:c5:e7:b2:31:e6:65:
d5:71:5b:c2:1a:12:56:94:dd:8d:4a:1d:b8:aa:83:1b:71:2d:
16:d8:16:0c:66:33:bd:92:9a:b3:1d:ad:0c:5f:f5:9f:87:cd:
a5:28:87:ed:dc:f6:b6:8c:fa:a2:ce:98:6c:bf:09:4e:ec:c1:
d0:a4:34:3d:b7:aa:95:e6:23:a7:d1:8f:d0:11:5e:3e:1c:1e:
89:4b:80:a4:9f:28:e7:85:d1:9f:c3:25:64:84:c5:93:b2:b4:
a6:9a:3a:4a:3f:9a:d4:92:9e:c3:7b:95:84:0a:c8:2e:ef:c9:
2b:20:02:54:10:bc:22:51:a0:3b:c1:02:a7:83:29:9a:f8:2f:
c8:8a:e1:b0:75:4c:fa:b1:ef:5a:31:4c:e1:45:ac:89:94:a5:
74:32:8a:1d:0e:f0:ad:bc:7f:47:81:0c:c9:9d:6a:99:03:11:
5a:76:3c:e2:fb:96:02:4f:dd:1e:f4:18:e0:6d:8e:87:73:d6:
60:09:d9:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 12:54:10 2025 by rpki-client