Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
File: mkM22h63IW4g7ASn8DHrShtjG7M.mft (raw, json)
Hash identifier: HU29eDN8eQzzEwj1R4KsVQIoukzHFfnDy28jUn8ol+0=
Subject key identifier: 84:69:CC:A0:F5:37:A9:4F:CA:41:9C:1D:52:99:69:B1:21:7B:1D:29
Authority key identifier: 9A:43:36:DA:1E:B7:21:6E:20:EC:04:A7:F0:31:EB:4A:1B:63:1B:B3
Certificate issuer: /CN=9a4336da1eb7216e20ec04a7f031eb4a1b631bb3
Certificate serial: 0198D47467A4F0EFC4B1FBA99B874E29E9C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
Manifest number: 1649
Signing time: Sat 23 Aug 2025 01:04:15 +0000
Manifest this update: Sat 23 Aug 2025 01:04:15 +0000
Manifest next update: Sun 24 Aug 2025 01:04:15 +0000
Files and hashes: 1: 91oUMgCP74fspZxBBljzGiQPBlI.roa (hash: Ys2eA6I4wLf+Ld2RnHYB/UxEHZh1MaBORWqhbF+NkdI=)
2: mkM22h63IW4g7ASn8DHrShtjG7M.crl (hash: 8ZD3BNKZibIBJMR7Wq3iudrYWnpRI2hjBfQB3GPD4gI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:04:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:74:67:a4:f0:ef:c4:b1:fb:a9:9b:87:4e:29:e9:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a4336da1eb7216e20ec04a7f031eb4a1b631bb3
Validity
Not Before: Aug 23 01:04:15 2025 GMT
Not After : Aug 24 01:04:15 2025 GMT
Subject: CN=8469cca0f537a94fca419c1d529969b1217b1d29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:fa:d2:da:73:e2:8b:d4:ac:a7:93:95:3a:79:
6b:4d:b8:12:61:47:b3:f0:fb:9a:e3:5a:c0:5d:4c:
25:86:ae:c1:cb:4f:27:71:e8:31:e1:91:9d:6c:bb:
fe:62:c8:4b:81:9e:ae:05:a8:5b:8f:7a:c7:cd:5c:
ad:c9:59:26:ef:5d:8b:6e:ac:70:bb:76:b6:16:dd:
11:73:67:a7:6b:4e:62:7a:25:c9:2e:d1:6a:de:d0:
3f:5c:18:d0:e3:f1:ff:54:21:5e:98:96:88:c1:75:
48:ac:62:21:9f:43:02:eb:e7:31:73:aa:aa:4f:c3:
dd:ca:e7:b4:05:63:34:05:bd:ea:29:be:5c:c5:a3:
a0:f0:d9:b3:f9:5f:e8:17:1b:b4:96:69:13:dd:bb:
33:90:9f:b1:26:03:62:d1:2f:eb:74:71:a6:24:0f:
96:88:e7:d6:59:07:a8:70:95:ca:49:9b:33:cd:5d:
80:14:46:fb:48:0b:23:0d:b4:ad:8c:48:a7:fe:99:
58:cb:58:57:95:49:18:cb:1f:e2:1f:0d:43:9f:e2:
1d:b8:6a:39:2b:06:2b:c0:04:60:73:c2:c3:93:c6:
19:36:83:8c:b1:76:a7:88:f7:16:ed:5a:be:66:6f:
46:ac:45:3a:41:93:2a:0c:7e:29:24:d4:6f:c7:eb:
aa:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:69:CC:A0:F5:37:A9:4F:CA:41:9C:1D:52:99:69:B1:21:7B:1D:29
X509v3 Authority Key Identifier:
keyid:9A:43:36:DA:1E:B7:21:6E:20:EC:04:A7:F0:31:EB:4A:1B:63:1B:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:76:05:33:fe:32:e9:ba:90:ab:09:b3:40:b2:a2:9a:6d:72:
27:15:12:0d:3c:58:d1:44:9a:80:01:4f:3a:ac:96:1c:2d:83:
a9:29:b8:5f:58:64:d4:96:db:fb:5a:a1:a1:0f:6c:52:81:72:
31:8d:e9:76:7a:97:66:1e:b8:5a:5d:30:6f:eb:17:db:a2:99:
1a:fe:c5:27:f3:b3:65:af:b4:73:79:23:0f:42:a6:a3:82:50:
27:57:60:99:48:8a:5d:ec:85:e8:3b:f3:21:c0:52:2c:05:d4:
73:3c:cf:7e:91:ce:74:50:f3:6c:d5:98:14:c5:70:74:56:d1:
8d:be:de:f2:6a:05:ae:7f:9c:67:ba:8f:29:18:fb:59:6a:04:
f0:36:92:9a:87:7d:f2:cf:39:0a:9f:e0:45:fc:74:71:65:56:
b2:16:7b:f3:83:5f:a4:8c:d1:32:c7:4c:88:26:8d:5d:4e:9a:
fd:e6:60:0e:49:54:9d:17:f9:1a:0d:6e:04:c6:5a:b1:8e:35:
58:09:09:12:7e:ca:c1:35:f7:4d:66:3a:60:f8:f9:85:e7:bd:
cc:75:be:9f:93:07:60:23:b8:ca:f8:1d:7f:ce:4d:60:f3:d2:
2e:33:0b:c3:75:9f:69:58:ec:02:7d:9a:6b:b7:13:1e:7d:a0:
a6:25:5d:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:31:13 2025 by rpki-client