Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.mft
File: kLCsKbEI83Ixb79OqT4UhzGkxOk.mft (raw, json)
Hash identifier: T/1AE+VpaayVIi+dzZoRTcMlGITFd/JiSx7Cx402Ow0=
Subject key identifier: E5:BB:6C:7E:A4:1B:96:8B:67:0C:AF:A8:25:88:9A:D1:AF:D6:A7:42
Authority key identifier: 90:B0:AC:29:B1:08:F3:72:31:6F:BF:4E:A9:3E:14:87:31:A4:C4:E9
Certificate issuer: /CN=90b0ac29b108f372316fbf4ea93e148731a4c4e9
Certificate serial: 01976D06BFD8E76D7A197F887E2CB1530E2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kLCsKbEI83Ixb79OqT4UhzGkxOk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.mft
Manifest number: 1592
Signing time: Sat 14 Jun 2025 06:00:48 +0000
Manifest this update: Sat 14 Jun 2025 06:00:48 +0000
Manifest next update: Sun 15 Jun 2025 06:00:48 +0000
Files and hashes: 1: E7tuzODCvj1Y4rQf0ix9lEI7vNs.roa (hash: 7tjdPPhW07eifJoW12vu1rvxuuaPJc8oBZTFD5/C/EY=)
2: kLCsKbEI83Ixb79OqT4UhzGkxOk.crl (hash: +qCbw5QWgSQl7gE6w9+vrKBNLN3b4BtpNqKi9PaxYdE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.mft
rsync://rpki.ripe.net/repository/DEFAULT/kLCsKbEI83Ixb79OqT4UhzGkxOk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:06:bf:d8:e7:6d:7a:19:7f:88:7e:2c:b1:53:0e:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90b0ac29b108f372316fbf4ea93e148731a4c4e9
Validity
Not Before: Jun 14 06:00:48 2025 GMT
Not After : Jun 15 06:00:48 2025 GMT
Subject: CN=e5bb6c7ea41b968b670cafa825889ad1afd6a742
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:2b:67:e7:f5:00:d8:c4:3d:e9:0c:a0:f9:79:
95:67:c1:38:9b:e9:a5:d5:97:75:d7:a5:4d:76:82:
18:6b:8c:05:46:a4:ce:85:86:06:72:09:68:35:ce:
1a:56:c6:c0:1e:ed:48:a4:6e:ae:75:5d:d2:3f:76:
91:d5:2c:ae:c1:47:94:6c:e9:af:dc:be:a9:98:02:
78:15:67:31:7b:3b:d0:46:7a:1a:a8:83:aa:ca:9f:
34:a1:c6:5c:4b:d4:19:64:e3:cd:b3:39:ad:50:cd:
58:4d:9e:71:a7:89:9b:8e:f4:01:74:6d:fc:83:34:
2b:93:24:5d:82:d7:2f:bb:ff:29:ff:3c:e9:d0:ba:
5a:73:9c:25:eb:cb:75:e1:5f:9b:ef:77:56:17:e1:
ef:f9:f2:08:18:9f:de:1d:40:01:ba:2b:c0:b9:ca:
f5:e7:fa:89:eb:0f:ed:5d:ae:df:3b:3d:c4:66:ad:
f0:4f:00:06:0d:d1:fd:79:74:b7:5f:68:0a:fe:54:
5b:88:39:9d:30:72:c2:90:48:a1:47:6c:7b:0e:13:
7d:44:6d:db:a5:1f:3e:a2:d5:94:58:95:62:fe:4d:
a4:39:50:4f:35:bf:57:ff:fd:0b:2a:e1:0b:ad:d6:
6d:bc:ec:dd:b0:40:de:96:3a:80:5e:32:d8:92:8c:
0f:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:BB:6C:7E:A4:1B:96:8B:67:0C:AF:A8:25:88:9A:D1:AF:D6:A7:42
X509v3 Authority Key Identifier:
keyid:90:B0:AC:29:B1:08:F3:72:31:6F:BF:4E:A9:3E:14:87:31:A4:C4:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kLCsKbEI83Ixb79OqT4UhzGkxOk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:53:3b:d0:ce:79:29:08:63:25:83:12:e7:75:ab:07:bf:d9:
cc:d1:91:ac:00:a6:d7:97:fd:1c:f0:e0:b3:3b:68:92:16:ba:
cd:f5:46:56:a7:86:b7:b2:79:f1:80:5f:d4:8d:5d:b7:0e:81:
a0:c7:02:11:f6:27:3f:53:c8:fb:03:08:ea:a4:76:cb:96:13:
78:09:0d:5c:75:6e:c9:05:1a:21:29:68:22:84:59:9a:5f:5b:
7f:aa:37:c0:ad:dd:66:f1:39:2f:d8:ed:29:a5:ed:9a:6b:b4:
6a:52:83:74:10:ea:56:96:87:92:83:d6:fb:14:11:47:95:86:
6b:21:c9:c2:13:90:ef:35:57:b5:11:c3:17:dc:97:10:66:88:
e6:d8:4b:59:8a:ef:d9:6c:0a:76:90:79:ca:ce:02:57:8c:b1:
49:5f:78:1c:e3:86:49:8a:75:41:c4:df:5d:f6:c7:a7:2c:86:
33:b4:e9:e3:4a:d1:73:0b:9f:87:c6:56:de:eb:bb:de:a5:2e:
a7:f7:ba:1c:90:64:c7:9a:92:f3:3e:7d:e8:5a:a6:24:ab:7f:
6d:9e:6c:a5:a9:9f:b9:ed:2d:c8:7b:ed:f5:dd:0c:52:01:9a:
6d:04:15:ae:cc:01:75:56:2e:b2:e5:49:80:4a:84:93:33:e5:
8f:d3:fc:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:18:20 2025 by rpki-client