Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
File: mkM22h63IW4g7ASn8DHrShtjG7M.mft (raw, json)
Hash identifier: Y//sDlTZmYWzj5A5RQzOS0yW47w3e2yny5acaUHwT/E=
Subject key identifier: 76:BA:E5:43:E4:A3:33:64:39:C1:EA:90:95:46:96:C4:4E:27:D7:21
Authority key identifier: 9A:43:36:DA:1E:B7:21:6E:20:EC:04:A7:F0:31:EB:4A:1B:63:1B:B3
Certificate issuer: /CN=9a4336da1eb7216e20ec04a7f031eb4a1b631bb3
Certificate serial: 0199FDDA2EA2B1171146F1BBCC7798897451
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 19:02:38 +0000
Manifest this update: Sun 19 Oct 2025 19:02:38 +0000
Manifest next update: Mon 20 Oct 2025 19:02:38 +0000
Files and hashes: 1: 91oUMgCP74fspZxBBljzGiQPBlI.roa (hash: Ys2eA6I4wLf+Ld2RnHYB/UxEHZh1MaBORWqhbF+NkdI=)
2: mkM22h63IW4g7ASn8DHrShtjG7M.crl (hash: V+TCNROTvMCxSRdXBrOJqOLhct820cz9CN4c+cv3PSg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:da:2e:a2:b1:17:11:46:f1:bb:cc:77:98:89:74:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a4336da1eb7216e20ec04a7f031eb4a1b631bb3
Validity
Not Before: Oct 19 19:02:38 2025 GMT
Not After : Oct 20 19:02:38 2025 GMT
Subject: CN=76bae543e4a3336439c1ea90954696c44e27d721
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:a7:f7:17:70:03:c1:33:d5:ad:29:c1:ec:82:
7a:91:9f:8c:73:4b:f7:d9:b8:d6:26:2a:6a:61:4a:
e6:0a:25:14:12:1e:c9:74:70:05:78:4b:03:d5:85:
09:b9:13:32:c9:48:9f:3a:3c:ae:04:d6:90:e2:be:
ec:e2:aa:e8:26:80:de:23:4f:3d:db:e9:d0:65:34:
fa:9d:84:0a:ff:ec:fb:f8:14:bf:43:26:b3:fc:90:
08:a3:cd:7a:68:21:eb:48:13:4b:d3:4d:f7:dc:2b:
74:d1:67:3f:99:c5:c8:33:64:5d:6c:84:1e:65:b8:
41:6e:9b:c0:37:73:53:0e:f4:88:95:84:b5:8b:8c:
b5:80:7e:20:e2:79:29:a5:1f:52:a5:0f:0a:bd:87:
5d:6b:1c:bd:0b:ae:76:21:92:9c:ae:07:16:91:c7:
00:42:f2:8c:e8:82:8d:63:b6:1b:7d:4a:89:f2:fb:
f5:54:f5:af:d0:75:4e:b7:3b:14:aa:8b:c6:b4:c5:
99:b8:99:18:ad:ee:fd:05:49:43:9f:da:5b:24:3c:
1c:e9:62:2a:01:fe:bb:28:1f:a2:b8:59:b5:da:dd:
79:31:f9:42:cc:53:2e:d8:fa:3d:04:b3:b9:8a:0a:
63:45:04:2f:52:d5:ab:9d:31:0f:80:ce:43:73:16:
67:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:BA:E5:43:E4:A3:33:64:39:C1:EA:90:95:46:96:C4:4E:27:D7:21
X509v3 Authority Key Identifier:
keyid:9A:43:36:DA:1E:B7:21:6E:20:EC:04:A7:F0:31:EB:4A:1B:63:1B:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:4c:07:bb:ca:93:2b:ed:a3:00:8e:1c:d1:38:ec:7c:97:6a:
63:5c:d1:9e:12:51:76:b9:51:4a:d7:d6:c9:d0:0c:9d:34:be:
5f:2a:53:ac:a5:83:41:c1:2d:5a:67:34:87:9f:88:c6:d6:cd:
dd:ed:94:50:5b:cc:7c:28:04:39:ab:f2:fe:cb:56:43:be:45:
c8:41:66:1e:4e:7d:fa:ac:c7:b6:f4:2d:37:c5:f6:a4:e8:66:
ae:e8:e2:25:b4:eb:54:c1:65:11:b7:d8:47:e0:32:06:2a:de:
8b:16:1b:3a:66:2a:62:7f:bb:b6:48:cd:ed:a7:db:e5:78:ff:
94:68:d3:e6:c0:16:96:94:d8:2f:5b:b5:53:41:eb:66:dd:fe:
5b:33:b0:bc:61:18:1c:ab:82:a0:8d:66:17:17:29:08:de:be:
c7:c0:dc:46:4c:ed:d7:63:64:06:9b:7f:d3:42:55:83:bf:7c:
a1:35:ef:7b:47:f5:40:59:a7:11:e1:2f:45:9b:f7:9a:14:6f:
ea:29:2c:81:01:81:76:6f:2e:80:db:4f:2a:36:52:c4:40:e3:
7c:b6:78:84:a6:99:3c:f2:22:51:77:71:3e:29:de:b2:c2:b6:
a6:aa:14:e1:e1:60:cf:4a:1c:c5:62:38:7b:01:9c:88:54:43:
73:44:1c:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 22:27:12 2025 by rpki-client