Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/06ca5d-d0c4-4215-8968-b6d4c4fc0c21/1/kMuqazbmzWh0x47UWk-N1xcwMdk.mft
File: kMuqazbmzWh0x47UWk-N1xcwMdk.mft (raw, json)
Hash identifier: K7bIY/8u8v1PiYQKNOonG+ZYaiHS5rpWPnOJgjCdRqk=
Subject key identifier: E5:47:B3:82:96:55:91:1E:FA:48:91:71:F8:E7:F9:B0:2F:53:2D:19
Authority key identifier: 90:CB:AA:6B:36:E6:CD:68:74:C7:8E:D4:5A:4F:8D:D7:17:30:31:D9
Certificate issuer: /CN=90cbaa6b36e6cd6874c78ed45a4f8dd7173031d9
Certificate serial: 01977B302800892DF3334661CCD06C42F17A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMuqazbmzWh0x47UWk-N1xcwMdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/06ca5d-d0c4-4215-8968-b6d4c4fc0c21/1/kMuqazbmzWh0x47UWk-N1xcwMdk.mft
Manifest number: 0B07
Signing time: Tue 17 Jun 2025 00:00:42 +0000
Manifest this update: Tue 17 Jun 2025 00:00:42 +0000
Manifest next update: Wed 18 Jun 2025 00:00:42 +0000
Files and hashes: 1: c4U2evb93678CsrZ2ZQQemAPoFw.roa (hash: 5ZLOIZ+BzX8i3ipSMR9csvqZ6+nojKYy3y5RkNukgEE=)
2: kMuqazbmzWh0x47UWk-N1xcwMdk.crl (hash: s4DMGrsy6beJzqVj+DYadrkT5gAidA9yaO3zvcD+bbo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/06ca5d-d0c4-4215-8968-b6d4c4fc0c21/1/kMuqazbmzWh0x47UWk-N1xcwMdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/06ca5d-d0c4-4215-8968-b6d4c4fc0c21/1/kMuqazbmzWh0x47UWk-N1xcwMdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMuqazbmzWh0x47UWk-N1xcwMdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 21:51:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7b:30:28:00:89:2d:f3:33:46:61:cc:d0:6c:42:f1:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90cbaa6b36e6cd6874c78ed45a4f8dd7173031d9
Validity
Not Before: Jun 17 00:00:42 2025 GMT
Not After : Jun 18 00:00:42 2025 GMT
Subject: CN=e547b3829655911efa489171f8e7f9b02f532d19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:86:2c:52:e6:47:7a:90:2b:b2:0d:fd:03:40:
9e:c5:42:9b:c6:f6:aa:74:aa:57:f9:08:b9:13:d4:
b5:af:74:ef:de:43:78:fe:61:16:64:f7:54:1d:46:
78:81:5f:60:17:95:e2:5c:67:2e:8d:fe:b1:3a:1a:
b4:22:6b:3d:f7:6d:a5:78:39:be:41:84:2b:72:55:
25:81:da:d2:75:ee:17:6f:ee:9c:7c:cb:17:59:9a:
8e:ae:3d:5b:6c:f9:9a:46:20:0a:77:15:67:b2:bb:
73:35:1b:d7:1f:b3:34:ad:6f:6d:f8:85:1d:6e:82:
6c:0f:2e:67:77:9c:28:99:a8:77:91:5e:6f:11:f1:
63:ce:19:1f:d3:c4:4a:6f:0b:cf:d8:36:42:09:27:
7a:f1:7e:2c:04:e5:a5:14:fc:23:1a:4a:97:bd:7f:
59:ca:6c:23:b5:00:fb:79:da:14:89:6c:2c:1f:04:
62:30:d6:dc:b9:90:57:23:c0:b7:96:50:b4:d7:ca:
aa:cd:24:1d:0a:d5:57:a7:db:46:24:08:40:32:bc:
49:08:d3:60:98:e9:39:d5:db:27:08:70:7e:46:2b:
b2:2a:cc:2c:ff:23:7a:5d:8e:9e:db:a2:a7:fb:cb:
b7:4b:df:9b:a2:ab:cc:d3:56:eb:87:6f:61:44:84:
a3:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:47:B3:82:96:55:91:1E:FA:48:91:71:F8:E7:F9:B0:2F:53:2D:19
X509v3 Authority Key Identifier:
keyid:90:CB:AA:6B:36:E6:CD:68:74:C7:8E:D4:5A:4F:8D:D7:17:30:31:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMuqazbmzWh0x47UWk-N1xcwMdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/06ca5d-d0c4-4215-8968-b6d4c4fc0c21/1/kMuqazbmzWh0x47UWk-N1xcwMdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/06ca5d-d0c4-4215-8968-b6d4c4fc0c21/1/kMuqazbmzWh0x47UWk-N1xcwMdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:83:d0:8d:ea:1d:09:7b:92:90:fd:a8:64:21:35:7e:16:eb:
71:c1:84:7a:fe:bc:59:42:69:61:c9:93:20:6e:80:ff:33:c9:
ef:49:8f:31:92:d3:01:1f:0b:c4:d9:3d:b6:23:e2:c0:fe:99:
43:c6:ee:76:86:00:22:91:81:58:6d:97:58:b2:3b:75:40:01:
b2:c8:01:65:de:5b:a0:01:66:67:de:43:dc:75:90:b7:bd:92:
d3:92:27:ca:b8:e8:df:a0:58:f3:06:3d:7b:52:da:d0:bb:84:
dd:32:b6:ce:f2:82:4f:5b:d2:58:f6:a8:11:20:b8:a6:e2:59:
81:2a:32:e2:f1:19:eb:30:4f:45:74:9e:71:39:fc:52:7e:56:
f9:9a:dc:92:36:c2:e2:78:d6:1e:d3:53:f4:38:fb:8d:ef:47:
96:60:97:ba:8f:bd:f0:23:bd:e3:67:ed:f8:db:a3:49:a0:2c:
ab:5e:79:6f:cc:be:bc:41:60:90:4f:8c:61:ca:fe:1a:fd:c4:
d7:ee:84:ec:1f:72:47:af:c3:4c:2c:be:d8:d5:97:f5:ef:57:
7c:69:6b:1b:db:37:53:e7:b5:ff:63:c1:36:a1:7d:01:57:41:
73:7f:b1:cc:77:7f:0c:94:e2:e5:c8:d9:f2:51:c5:c4:78:3b:
06:14:c8:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 02:46:49 2025 by rpki-client