Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/1e7d2e-1a62-4421-b71b-b119274ad654/1/kOszbVYE1HuugXI4sNu0l3HiRyk.mft
File: kOszbVYE1HuugXI4sNu0l3HiRyk.mft (raw, json)
Hash identifier: gXjx2GUwgCFY4hjY0SsQl0Jli2+R3gwmtq1JKn6xGpw=
Subject key identifier: C0:A6:5C:03:E8:B3:54:F7:05:05:6A:D3:39:67:9A:F5:43:CA:2A:49
Authority key identifier: 90:EB:33:6D:56:04:D4:7B:AE:81:72:38:B0:DB:B4:97:71:E2:47:29
Certificate issuer: /CN=90eb336d5604d47bae817238b0dbb49771e24729
Certificate serial: 01988FFE91887195159E7BA4809BD753167E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kOszbVYE1HuugXI4sNu0l3HiRyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/1e7d2e-1a62-4421-b71b-b119274ad654/1/kOszbVYE1HuugXI4sNu0l3HiRyk.mft
Manifest number: 1626
Signing time: Sat 09 Aug 2025 18:01:21 +0000
Manifest this update: Sat 09 Aug 2025 18:01:21 +0000
Manifest next update: Sun 10 Aug 2025 18:01:21 +0000
Files and hashes: 1: kOszbVYE1HuugXI4sNu0l3HiRyk.crl (hash: 1UjYjA0xq6+OLQHd30tfA+6MetfpvS+Th2+jSIa2CG0=)
2: nHFDaIILOdTjKywJ536u2NbijQ4.roa (hash: GZUS5OKqPLBVaLkWEyB2Ce3k2q8gf8Rj7vaTEKCevNk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/1e7d2e-1a62-4421-b71b-b119274ad654/1/kOszbVYE1HuugXI4sNu0l3HiRyk.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/1e7d2e-1a62-4421-b71b-b119274ad654/1/kOszbVYE1HuugXI4sNu0l3HiRyk.mft
rsync://rpki.ripe.net/repository/DEFAULT/kOszbVYE1HuugXI4sNu0l3HiRyk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 18:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8f:fe:91:88:71:95:15:9e:7b:a4:80:9b:d7:53:16:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90eb336d5604d47bae817238b0dbb49771e24729
Validity
Not Before: Aug 9 18:01:21 2025 GMT
Not After : Aug 10 18:01:21 2025 GMT
Subject: CN=c0a65c03e8b354f705056ad339679af543ca2a49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:1d:5d:12:20:47:3c:4a:9c:37:90:82:fc:79:
39:b4:48:30:5f:71:e5:a8:9e:e2:fb:f0:2a:b7:41:
f9:f1:9c:db:f4:91:46:ad:61:3d:f2:6b:6b:3e:67:
66:4e:d7:0a:7f:6c:cf:ab:d7:a3:92:65:ad:df:c5:
b8:ab:b3:4c:7e:d4:e0:a0:fa:ab:b1:85:d2:ad:f4:
ff:6d:e7:0c:f2:5f:f5:06:d2:90:c2:de:6b:c0:55:
bd:0b:27:98:dc:e8:ba:c5:e2:b1:f1:79:40:af:5b:
09:b8:22:9b:dc:6b:f2:7e:e3:0b:7b:99:6f:09:70:
ed:54:a9:cf:0e:33:26:67:12:99:c4:32:e8:91:da:
fc:4b:21:04:74:6f:d0:98:38:96:6a:43:b4:11:3f:
83:f3:b1:05:e8:a0:e2:1a:38:73:7a:7d:51:8c:79:
86:b7:1c:5e:42:ea:ea:7f:9b:a3:a4:15:7a:2e:6c:
1f:8b:c1:b0:18:29:a7:2b:23:7d:54:bc:20:7c:41:
7f:aa:8e:ef:5a:0c:82:0e:19:6c:22:53:97:df:24:
02:79:03:dc:3b:df:24:16:a2:0e:75:15:8c:b2:3e:
e5:88:fb:48:25:36:cf:71:51:04:c8:fe:8d:d4:da:
96:bb:64:62:af:76:a8:3a:b0:71:2e:5b:12:e3:5f:
d7:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:A6:5C:03:E8:B3:54:F7:05:05:6A:D3:39:67:9A:F5:43:CA:2A:49
X509v3 Authority Key Identifier:
keyid:90:EB:33:6D:56:04:D4:7B:AE:81:72:38:B0:DB:B4:97:71:E2:47:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kOszbVYE1HuugXI4sNu0l3HiRyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/1e7d2e-1a62-4421-b71b-b119274ad654/1/kOszbVYE1HuugXI4sNu0l3HiRyk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/1e7d2e-1a62-4421-b71b-b119274ad654/1/kOszbVYE1HuugXI4sNu0l3HiRyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:bd:1f:2f:14:e8:e6:46:ab:7d:b7:a3:1d:f8:66:fe:e2:91:
fb:95:99:58:ae:47:fb:a2:19:83:d1:11:b4:07:40:fc:e9:db:
5f:e2:6f:1a:94:7f:25:69:d4:9c:6a:a1:83:fe:57:69:c0:18:
fb:24:f4:87:11:f5:06:bb:ae:9d:6d:80:7a:7e:f7:bd:1d:b7:
9c:96:73:65:af:d2:95:a2:bf:ce:fb:e8:b2:25:e7:a4:ed:11:
98:3f:99:5d:49:42:46:23:5e:48:f2:1f:d4:1a:0d:20:50:43:
de:64:17:b0:5a:0e:81:1b:79:a1:92:5c:f9:a4:7c:d6:dc:89:
3f:54:76:c7:9e:12:21:1d:51:4a:93:d2:ba:44:1c:99:e6:7b:
82:d6:2a:25:64:b2:59:4a:52:63:32:71:7c:b9:6c:d5:f5:8a:
fe:44:27:63:9a:86:99:46:fd:e8:73:54:21:a0:76:88:28:4d:
3e:95:ce:a5:ad:55:36:65:89:48:c4:55:22:d2:65:2e:d3:5c:
d9:36:e3:fe:59:f8:6f:e1:91:fa:33:8b:c6:bd:36:41:f1:c4:
b2:31:98:a1:cd:60:15:ed:b2:c1:10:f3:33:c0:11:c4:42:a0:
ec:fb:71:b9:c5:e4:33:12:6c:7c:1b:2e:4f:d6:2f:8b:c0:a8:
3c:62:3a:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 04:47:17 2025 by rpki-client