Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.mft
File: mK9kDIIO61-8kigcYRRPEae9cH4.mft (raw, json)
Hash identifier: H38Ips5Z8A+AxEid+Ownvk+jFJc0wetRYJtPQmGrf8Q=
Subject key identifier: 1B:02:90:B2:8C:29:E0:70:5B:4F:70:31:1A:6A:AF:CB:30:C2:F2:49
Authority key identifier: 98:AF:64:0C:82:0E:EB:5F:BC:92:28:1C:61:14:4F:11:A7:BD:70:7E
Certificate issuer: /CN=98af640c820eeb5fbc92281c61144f11a7bd707e
Certificate serial: 0197B88F6715616BAB7CA89458686DC2593B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mK9kDIIO61-8kigcYRRPEae9cH4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.mft
Manifest number: 030D
Signing time: Sat 28 Jun 2025 22:01:35 +0000
Manifest this update: Sat 28 Jun 2025 22:01:35 +0000
Manifest next update: Sun 29 Jun 2025 22:01:35 +0000
Files and hashes: 1: OWXYykmlPDxYaUK6ibOA62-hDng.roa (hash: x4BvE6J+LBS4eTxuz/ILECCYgRYsxbKFwFccG0CtiDI=)
2: mK9kDIIO61-8kigcYRRPEae9cH4.crl (hash: vGubXtcivb28mfP/WaoB7H5JbDBf+O4PnD9SKwShqRs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.mft
rsync://rpki.ripe.net/repository/DEFAULT/mK9kDIIO61-8kigcYRRPEae9cH4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:67:15:61:6b:ab:7c:a8:94:58:68:6d:c2:59:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98af640c820eeb5fbc92281c61144f11a7bd707e
Validity
Not Before: Jun 28 22:01:35 2025 GMT
Not After : Jun 29 22:01:35 2025 GMT
Subject: CN=1b0290b28c29e0705b4f70311a6aafcb30c2f249
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:69:20:bc:1f:d5:d2:21:87:4e:70:b1:16:bf:
ed:14:df:f5:db:64:16:86:58:e5:2b:af:df:ed:47:
a9:0e:e8:7f:ae:55:3a:9b:7b:62:e7:d5:23:ac:b3:
0f:85:3b:1f:cc:be:ba:06:09:24:be:3b:39:66:67:
48:3f:12:6e:1f:53:43:d2:86:ca:eb:90:0c:cf:63:
ac:db:75:bd:e3:7b:89:c8:12:f9:50:bc:d6:a2:e8:
06:e0:73:31:1a:fe:f5:c8:91:cd:c5:cd:df:b5:b4:
74:05:cc:ef:97:f7:91:df:25:a1:21:6a:90:df:9e:
d1:3f:33:35:48:6d:ff:b2:cf:d4:5f:9f:08:8d:11:
75:66:e7:9a:02:b7:e7:bc:3b:b6:b9:95:07:cf:6e:
33:ac:57:32:92:41:6b:fb:62:13:4a:28:77:2a:03:
b8:c4:c0:74:98:2e:87:69:1a:90:24:3b:5a:b1:89:
bc:64:d9:e9:78:ff:e7:0a:08:77:5d:6e:db:25:50:
4f:6d:9d:0f:a8:c7:6c:c4:9c:73:47:fd:93:cc:a1:
2e:cb:17:e5:23:3f:0a:f4:8c:64:57:22:89:9b:c3:
d2:34:c4:16:73:e1:31:22:c8:a3:fe:05:3b:45:aa:
ca:0b:85:d9:e5:14:7f:34:bc:f9:44:70:44:97:fe:
19:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:02:90:B2:8C:29:E0:70:5B:4F:70:31:1A:6A:AF:CB:30:C2:F2:49
X509v3 Authority Key Identifier:
keyid:98:AF:64:0C:82:0E:EB:5F:BC:92:28:1C:61:14:4F:11:A7:BD:70:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mK9kDIIO61-8kigcYRRPEae9cH4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:74:92:c3:98:ed:29:54:4b:bc:d2:b2:5f:bb:be:fa:62:e6:
41:b6:a1:18:1a:00:95:ce:62:11:50:c6:55:59:f7:24:ef:5b:
88:52:f9:66:c4:44:64:c2:6e:d7:58:09:55:0c:54:eb:f0:e3:
e9:aa:03:c7:ac:51:4a:d2:49:bc:91:f0:1c:02:22:5a:15:95:
d5:fc:7d:1b:c8:6e:02:28:92:a2:de:c3:81:93:94:51:2c:fe:
66:54:60:c7:e6:59:e9:54:1a:e2:67:4f:da:e9:cc:15:0d:f0:
f5:a4:60:ed:a3:99:57:fd:71:88:a5:a9:b0:b0:2f:2e:0d:22:
c6:53:48:69:11:51:4e:1c:b2:e9:23:a8:a6:25:c9:ec:57:49:
87:42:1a:6c:06:71:04:4d:b8:29:ff:bd:da:10:f0:81:39:e4:
99:ea:22:94:be:89:9b:d6:e3:fd:2a:f8:5f:33:fb:0a:ad:cb:
78:02:b7:47:23:21:d9:48:6b:e6:11:26:0d:37:07:d3:e5:6b:
c0:3c:2c:2d:11:56:19:c2:ef:d1:60:71:ef:6a:36:62:6a:4a:
af:ce:b5:15:41:1c:4e:b6:6b:53:12:bd:7c:ff:43:2e:6e:74:
64:e1:60:32:38:53:a1:98:1f:c9:3f:91:83:cf:ea:4f:1a:df:
17:26:83:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 04:08:07 2025 by rpki-client