Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
File: mkM22h63IW4g7ASn8DHrShtjG7M.mft (raw, json)
Hash identifier: N1KTYgId7ioE8KpCrXeTT6+n1gCJOPo2Sio4ImgAxKo=
Subject key identifier: E9:50:C7:15:15:8E:65:D2:ED:36:CA:4F:53:CD:4A:75:20:00:AF:8A
Authority key identifier: 9A:43:36:DA:1E:B7:21:6E:20:EC:04:A7:F0:31:EB:4A:1B:63:1B:B3
Certificate issuer: /CN=9a4336da1eb7216e20ec04a7f031eb4a1b631bb3
Certificate serial: 0197B6A2385F47A56E2BE7A44B0227171C3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
Manifest number: 15B5
Signing time: Sat 28 Jun 2025 13:02:53 +0000
Manifest this update: Sat 28 Jun 2025 13:02:53 +0000
Manifest next update: Sun 29 Jun 2025 13:02:53 +0000
Files and hashes: 1: 91oUMgCP74fspZxBBljzGiQPBlI.roa (hash: Ys2eA6I4wLf+Ld2RnHYB/UxEHZh1MaBORWqhbF+NkdI=)
2: mkM22h63IW4g7ASn8DHrShtjG7M.crl (hash: 9IZT5W3FuObWCX2PD8QW1fTxZJiTnbgk06YUoi3r32U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a2:38:5f:47:a5:6e:2b:e7:a4:4b:02:27:17:1c:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a4336da1eb7216e20ec04a7f031eb4a1b631bb3
Validity
Not Before: Jun 28 13:02:53 2025 GMT
Not After : Jun 29 13:02:53 2025 GMT
Subject: CN=e950c715158e65d2ed36ca4f53cd4a752000af8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:60:66:08:1c:c1:49:1d:5f:d1:86:8a:05:ba:
13:b3:72:b9:e8:20:96:28:34:4f:dd:b6:d8:dc:d9:
7b:90:b8:39:8d:53:30:9c:11:b8:a5:d2:9f:c1:f5:
a6:a3:ac:67:28:f8:4f:d7:1c:81:fd:a5:12:14:2e:
56:26:8b:78:17:34:4b:45:49:99:6c:c9:de:93:1f:
45:3c:e7:96:ab:18:33:76:01:49:4d:9c:86:60:b6:
3a:4f:22:15:52:92:26:e2:50:7e:d5:b5:f9:f7:61:
4f:35:e7:9e:14:04:6f:cc:7b:b0:2e:cd:b8:14:7e:
11:5d:a1:ef:f9:64:01:13:de:1a:b0:b5:69:fc:59:
ab:21:2c:27:af:5e:90:90:c3:45:d8:69:ec:99:e5:
6a:e9:25:b9:8f:ca:0a:d1:b2:41:44:4d:87:df:5e:
e3:87:ae:0e:1f:83:70:b3:b7:b9:68:d0:e8:a3:2c:
5b:64:84:12:c8:ee:24:cf:55:ea:94:e2:ce:96:15:
5e:a8:a9:91:0f:8f:24:3f:85:f9:7b:41:48:d0:71:
f4:43:ae:b7:9b:8b:dc:3f:2a:ff:f4:77:09:84:1f:
d7:7a:58:8b:12:19:22:1f:ff:80:a4:24:e2:09:1e:
cf:ce:81:07:59:0a:2b:8c:87:ec:1e:96:e4:d0:49:
48:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:50:C7:15:15:8E:65:D2:ED:36:CA:4F:53:CD:4A:75:20:00:AF:8A
X509v3 Authority Key Identifier:
keyid:9A:43:36:DA:1E:B7:21:6E:20:EC:04:A7:F0:31:EB:4A:1B:63:1B:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:5b:ab:9b:1b:a5:c5:01:cb:35:89:3c:e5:f2:10:f6:90:e4:
61:5c:b1:3d:cb:de:7d:1d:87:2b:6a:b5:06:22:be:54:f4:96:
89:83:e1:a4:e1:55:04:f2:46:a9:7d:c6:0d:73:32:50:30:0b:
a3:59:52:54:37:92:81:06:90:fb:e1:07:6c:92:92:8b:36:70:
15:03:57:3a:02:d0:05:23:2e:1f:ec:d3:85:16:8b:36:28:7f:
b1:af:5e:d4:a3:56:0f:90:e5:14:42:6e:3b:ca:0e:be:b5:ed:
85:bb:60:a1:0b:99:2d:4a:93:1a:23:77:e9:ba:85:91:f8:bc:
9b:fa:34:6a:33:4a:a5:07:c0:a0:10:18:f9:64:4e:1d:4b:33:
ae:1f:25:c0:b4:95:e6:cc:57:80:d2:be:3c:84:63:50:fd:f0:
ff:dc:4e:45:83:d0:4a:51:a9:e5:cb:62:f7:74:10:f5:51:fa:
1b:79:e6:eb:8c:9a:fd:fd:48:c3:1f:8c:a9:ac:c7:8b:c8:ba:
72:30:bb:20:58:25:85:ce:a5:77:59:c1:21:64:eb:05:de:e9:
a3:ab:db:d6:14:ad:8f:64:20:81:2c:27:bd:e1:f1:5b:a9:52:
59:80:8f:0f:a1:fa:67:8a:df:02:2c:28:92:12:48:f9:9d:c0:
f9:bd:51:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:08:59 2025 by rpki-client