Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft
File: MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft (raw, json)
Hash identifier: 31GM7wuwHG9vi7a7SHlKg+eJT1EJMkHhmBh4FJaA0GA=
Subject key identifier: 4E:ED:3C:6B:30:15:EB:AA:38:23:6E:A7:85:05:20:69:9E:F6:41:62
Authority key identifier: 32:4C:71:04:6C:54:9F:B3:C7:D4:EB:C4:CF:95:19:D0:02:E7:6D:F1
Certificate issuer: /CN=324c71046c549fb3c7d4ebc4cf9519d002e76df1
Certificate serial: 0199FD6B190E155214028700AF7136F6ABB3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft
Manifest number: 0BAB
Signing time: Sun 19 Oct 2025 17:01:18 +0000
Manifest this update: Sun 19 Oct 2025 17:01:18 +0000
Manifest next update: Mon 20 Oct 2025 17:01:18 +0000
Files and hashes: 1: 2W4Y0bQNlvS93LoW6fNHPM7BKLQ.roa (hash: I9C4k+xseXfObTJ4huNUkRHHI0jQTaqLFqDJffjcwOE=)
2: MkxxBGxUn7PH1OvEz5UZ0ALnbfE.crl (hash: gMrget+TyHD0sA+SJehBNurhLC2zSoYnbCqTvBFWS+E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft
rsync://rpki.ripe.net/repository/DEFAULT/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6b:19:0e:15:52:14:02:87:00:af:71:36:f6:ab:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=324c71046c549fb3c7d4ebc4cf9519d002e76df1
Validity
Not Before: Oct 19 17:01:18 2025 GMT
Not After : Oct 20 17:01:18 2025 GMT
Subject: CN=4eed3c6b3015ebaa38236ea7850520699ef64162
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:13:bd:9a:b0:5e:81:0d:d2:3c:68:40:dc:36:
cc:a9:cb:7f:92:06:3d:0b:da:9a:ab:ac:75:00:f3:
1a:43:47:7b:c1:74:86:ce:16:aa:6b:80:35:36:a6:
df:70:05:ef:1c:fb:ef:08:ba:be:24:d5:44:3b:f1:
30:23:b8:b2:f1:47:82:7d:03:7c:54:fe:cd:69:c5:
6f:4c:17:2d:02:56:7e:0e:bd:67:48:dd:3c:b4:12:
ec:ad:d5:08:a7:8c:7b:48:46:b0:0b:58:8c:bf:94:
f8:0f:5c:e1:dc:17:c3:a1:c4:1f:d6:e4:38:9f:f8:
22:97:2b:3d:c7:26:2d:f0:ae:54:08:75:05:9f:a3:
e6:64:34:a2:16:93:a4:98:3b:b1:8d:32:7a:dc:59:
c1:77:d2:5d:47:88:21:93:64:2f:49:09:ca:2c:da:
6b:b8:96:8d:87:f2:d0:60:4d:31:6e:be:bc:d1:a2:
b3:c5:3c:86:8b:63:a5:46:a0:c8:19:ac:76:45:00:
a6:3e:15:a6:cf:21:98:c3:f2:70:1b:b4:28:dc:54:
7f:36:e0:f8:c1:43:49:58:df:73:4b:55:ed:d4:3c:
e5:47:9a:e4:04:d6:88:6c:7f:31:a5:93:5b:08:25:
91:fa:ed:14:44:a8:90:4e:74:74:68:65:f5:9c:64:
07:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:ED:3C:6B:30:15:EB:AA:38:23:6E:A7:85:05:20:69:9E:F6:41:62
X509v3 Authority Key Identifier:
keyid:32:4C:71:04:6C:54:9F:B3:C7:D4:EB:C4:CF:95:19:D0:02:E7:6D:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:a0:40:40:9e:26:91:62:08:b3:11:b3:9a:c9:44:1d:35:df:
3b:b6:72:6a:12:c0:63:64:e4:98:b7:2e:d9:65:8d:ad:db:07:
95:9b:7f:34:65:87:cc:5d:a1:48:23:c5:b2:e8:35:b7:50:11:
5f:a8:0e:ca:19:87:5f:89:56:63:c5:58:e9:0f:12:ee:b6:01:
15:0b:a8:4c:bd:a3:d7:06:24:e7:4d:44:2e:55:6f:e6:8f:94:
7e:04:74:12:dc:63:c8:47:5d:a6:a5:35:66:ab:d2:31:41:42:
d9:21:ee:b6:bd:c4:96:a4:06:f4:e9:17:a1:1d:ac:42:37:72:
ed:ba:a7:4d:d4:c7:12:dd:e5:e6:8e:f2:f3:5c:b0:da:75:62:
07:68:51:a1:76:41:eb:11:86:ac:f2:df:da:f5:48:2f:57:8a:
56:65:55:2f:67:a2:eb:2a:7a:ea:f4:26:f6:f2:cd:28:96:39:
9a:82:b3:4c:3c:e9:54:4e:ea:f4:a3:7e:c3:c9:31:8b:e1:e0:
45:ee:0d:bf:70:27:27:da:13:7f:50:3e:04:b0:bc:6f:30:23:
47:3f:6c:8d:93:71:4e:a6:a7:39:c3:d5:2c:5b:00:ad:61:7a:
61:8c:c1:c2:5d:c0:9a:28:f8:49:41:d8:54:91:47:4b:d5:09:
fb:95:e6:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 00:04:12 2025 by rpki-client