
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/b9e2f7-21dc-42c0-94b0-13c0a633e9f4/1/kGlKYihmrhWO0ofSUz1AuqvqbX0.mft
File: kGlKYihmrhWO0ofSUz1AuqvqbX0.mft (raw, json)
Hash identifier: 12sKKT24xGTs4+iRK+bUo1z100sIfO2FKuIFC5BeB4o=
Subject key identifier: 17:27:5D:BE:0F:5E:74:E9:F2:FD:9B:A2:72:A2:35:32:54:68:31:6A
Authority key identifier: 90:69:4A:62:28:66:AE:15:8E:D2:87:D2:53:3D:40:BA:AB:EA:6D:7D
Certificate issuer: /CN=90694a622866ae158ed287d2533d40baabea6d7d
Certificate serial: 01987DF800E10070128A6B64F4E8BD5C06C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kGlKYihmrhWO0ofSUz1AuqvqbX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/b9e2f7-21dc-42c0-94b0-13c0a633e9f4/1/kGlKYihmrhWO0ofSUz1AuqvqbX0.mft
Manifest number: 0477
Signing time: Wed 06 Aug 2025 06:01:01 +0000
Manifest this update: Wed 06 Aug 2025 06:01:01 +0000
Manifest next update: Thu 07 Aug 2025 06:01:01 +0000
Files and hashes: 1: 9VYK0oHjjTC_b68oAyoNi7RTStA.roa (hash: 95NE4Wq8cotxnefZwzo13t7L9p4u4ZGJ0NIa1wNiJCg=)
2: bq3CHdF3ToMivmK2PU155LcLlRo.roa (hash: E2q6lH9inJ5ZH1jaNhC41RHD+yk7srEkGUdyytaHjj0=)
3: kGlKYihmrhWO0ofSUz1AuqvqbX0.crl (hash: KNPjQR1j7cA5mMF3xH6j3n2VCLA/DorQir/18Mdx35Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/b9e2f7-21dc-42c0-94b0-13c0a633e9f4/1/kGlKYihmrhWO0ofSUz1AuqvqbX0.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/b9e2f7-21dc-42c0-94b0-13c0a633e9f4/1/kGlKYihmrhWO0ofSUz1AuqvqbX0.mft
rsync://rpki.ripe.net/repository/DEFAULT/kGlKYihmrhWO0ofSUz1AuqvqbX0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 06:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:f8:00:e1:00:70:12:8a:6b:64:f4:e8:bd:5c:06:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90694a622866ae158ed287d2533d40baabea6d7d
Validity
Not Before: Aug 6 06:01:01 2025 GMT
Not After : Aug 7 06:01:01 2025 GMT
Subject: CN=17275dbe0f5e74e9f2fd9ba272a235325468316a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:30:74:2c:1c:92:6e:ce:0c:81:6e:cb:9a:dd:
34:21:30:eb:bd:c5:bc:20:28:ee:45:ff:63:23:c3:
c5:55:45:0e:ae:ca:41:74:9c:5b:ae:be:f4:45:bd:
10:65:3d:4d:1a:0b:22:bf:54:9d:58:66:d8:11:ac:
3d:b8:3a:55:ed:fe:4f:e0:9a:32:f7:0e:82:47:1c:
b5:ae:6d:d2:eb:53:8d:91:e6:fd:07:03:eb:3f:b6:
3c:01:a7:c8:d8:70:62:46:6f:72:8e:90:f0:f9:e1:
ef:cf:4e:19:14:30:b3:88:c4:68:04:a5:db:46:f9:
ce:56:05:66:c9:51:54:e5:73:aa:69:b6:f3:fe:11:
4a:81:74:f6:9d:a1:eb:4d:12:89:94:6c:bc:d1:bc:
28:7a:39:c8:01:a0:3c:15:61:95:f0:92:ad:bb:b3:
b2:a6:be:44:cc:33:de:f8:ea:36:da:5a:38:2e:47:
dd:41:db:44:2d:35:c1:66:62:dd:2d:fa:80:c3:c2:
05:08:5c:cb:de:f0:db:85:71:bd:20:2f:6c:ba:fa:
f8:ff:54:90:fc:59:d9:41:88:89:d4:01:18:3d:ae:
b6:63:71:77:3a:4f:cb:e9:91:c2:fe:9a:10:98:4a:
cb:be:cd:73:93:18:42:60:c9:0f:3b:59:de:97:87:
c4:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:27:5D:BE:0F:5E:74:E9:F2:FD:9B:A2:72:A2:35:32:54:68:31:6A
X509v3 Authority Key Identifier:
keyid:90:69:4A:62:28:66:AE:15:8E:D2:87:D2:53:3D:40:BA:AB:EA:6D:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kGlKYihmrhWO0ofSUz1AuqvqbX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/b9e2f7-21dc-42c0-94b0-13c0a633e9f4/1/kGlKYihmrhWO0ofSUz1AuqvqbX0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/b9e2f7-21dc-42c0-94b0-13c0a633e9f4/1/kGlKYihmrhWO0ofSUz1AuqvqbX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:05:33:9d:44:02:4d:61:f5:4c:76:9c:cc:b0:73:b9:b9:92:
2c:b7:d2:57:72:38:8c:84:ca:75:95:48:a2:c7:05:ea:72:73:
f6:58:57:ed:c5:b9:c5:f7:47:b9:e0:51:c9:78:aa:03:35:0c:
6a:30:11:69:4d:a1:e5:93:5d:33:6e:fc:f5:0f:dc:e6:9b:66:
cf:4d:dc:63:30:ff:2a:96:6a:34:35:7e:ba:7e:de:85:7a:d7:
a5:1a:12:0f:fe:95:76:1c:49:12:4b:e2:d2:c0:a8:f9:14:11:
e1:ab:44:03:b2:12:73:62:73:f7:15:d8:7c:f2:a6:84:14:ea:
27:85:4d:c8:07:55:a4:31:ca:32:9e:22:74:af:cf:a0:2c:41:
dd:54:a0:da:ad:a8:71:bf:8f:1b:2b:cd:3b:ff:4e:0d:88:32:
24:97:a5:97:a3:7f:90:49:26:a1:74:34:0f:79:32:e1:9f:5f:
d2:16:d7:6b:9e:68:53:f2:ef:20:15:27:46:83:59:3d:ed:eb:
2e:42:7f:3b:50:bb:34:19:9b:a3:0f:ac:96:51:87:03:f2:87:
c1:99:2d:7e:d0:1a:dc:8f:71:91:1d:61:f2:5e:02:c6:90:c3:
50:a9:93:f6:ae:d9:17:76:5e:74:d2:e0:20:04:6a:23:d3:3f:
17:55:3f:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 13:05:58 2025 by rpki-client