Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
File: mkM22h63IW4g7ASn8DHrShtjG7M.mft (raw, json)
Hash identifier: xd4NlE8B7o/4jtECKXHXCUsnk56MZAHDpAzoq/leVbo=
Subject key identifier: BE:03:01:74:B2:04:AC:44:C6:42:67:43:A3:BC:E5:23:FC:C6:DD:84
Authority key identifier: 9A:43:36:DA:1E:B7:21:6E:20:EC:04:A7:F0:31:EB:4A:1B:63:1B:B3
Certificate issuer: /CN=9a4336da1eb7216e20ec04a7f031eb4a1b631bb3
Certificate serial: 0196B9A392210171147E77F639859DA295BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
Manifest number: 1532
Signing time: Sat 10 May 2025 10:00:26 +0000
Manifest this update: Sat 10 May 2025 10:00:26 +0000
Manifest next update: Sun 11 May 2025 10:00:26 +0000
Files and hashes: 1: 91oUMgCP74fspZxBBljzGiQPBlI.roa (hash: Ys2eA6I4wLf+Ld2RnHYB/UxEHZh1MaBORWqhbF+NkdI=)
2: mkM22h63IW4g7ASn8DHrShtjG7M.crl (hash: 7Zwl2KBAWDxhjUmnLaUyvtTyiB5jpgPHQBtCaut8GQI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 10:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b9:a3:92:21:01:71:14:7e:77:f6:39:85:9d:a2:95:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a4336da1eb7216e20ec04a7f031eb4a1b631bb3
Validity
Not Before: May 10 10:00:26 2025 GMT
Not After : May 11 10:00:26 2025 GMT
Subject: CN=be030174b204ac44c6426743a3bce523fcc6dd84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:73:4b:23:40:bf:70:51:53:94:95:62:bb:fd:
b3:6b:49:bd:b1:fb:b7:18:91:4f:d9:3e:c6:d4:c0:
6b:d8:fe:f9:10:d1:8a:09:22:21:8d:e1:9e:1d:61:
ed:40:d1:db:b6:00:ec:73:db:7c:95:26:f4:e0:97:
2d:3d:c1:86:57:d7:b7:ba:fe:e8:3f:13:01:5a:36:
a0:b8:2d:54:8e:94:21:ab:fd:7c:e5:91:fa:fb:70:
03:88:0b:1b:30:94:e2:66:2d:b8:31:2a:5a:11:16:
19:6a:45:bb:52:35:81:e2:8b:c3:1f:81:53:d8:47:
ad:1c:11:b6:77:5b:08:df:b5:01:78:8e:08:7f:0a:
98:51:66:8a:38:ed:f1:d7:cd:91:0e:6f:13:bb:ba:
d8:a6:b1:cd:b9:52:98:50:98:10:16:08:ba:a8:82:
ef:20:27:d8:0f:6d:5e:bc:2c:60:b5:7a:c2:ed:98:
de:85:c4:b5:11:aa:ca:e5:03:51:2e:9a:b5:ea:71:
68:85:7f:9b:39:d5:59:bf:a7:8a:8b:45:52:c8:75:
dd:21:fd:b0:51:68:25:40:14:fe:6f:ce:8d:52:44:
39:7e:af:d1:e2:bb:71:62:99:90:5c:b8:b0:80:b3:
31:8b:53:a7:f8:75:64:0c:82:ee:64:3f:ad:2d:ec:
f9:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:03:01:74:B2:04:AC:44:C6:42:67:43:A3:BC:E5:23:FC:C6:DD:84
X509v3 Authority Key Identifier:
keyid:9A:43:36:DA:1E:B7:21:6E:20:EC:04:A7:F0:31:EB:4A:1B:63:1B:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:56:59:ca:ba:cb:70:8f:bf:23:96:1f:9b:94:7a:66:7c:9a:
2d:f9:77:ca:e2:83:bb:4a:71:61:2a:16:f0:29:7d:a0:ba:10:
7c:73:65:8d:fa:53:12:0a:80:ce:b0:84:23:65:d9:4d:59:44:
bc:5e:5f:c3:e8:e3:52:91:f1:3f:1e:20:81:13:98:cb:91:8b:
49:ef:9a:41:32:aa:78:ba:d3:d9:cf:2b:3c:11:2b:ea:e9:af:
de:c3:51:97:6e:b5:c0:99:83:3e:96:60:70:27:d5:61:0a:ca:
eb:c3:4a:bc:46:8f:44:38:28:6a:93:95:32:a9:07:b3:aa:34:
c3:79:ad:40:4d:53:17:e3:3f:02:94:fe:9c:5e:17:ce:51:58:
c4:66:bd:d9:7c:21:29:29:2f:94:69:a5:fd:cf:37:8f:99:da:
0a:33:76:2a:57:1a:9b:43:a3:22:3f:d5:8c:a5:d6:df:f8:4b:
24:44:71:75:52:77:ff:22:20:df:b3:d3:e6:34:73:e7:fd:27:
24:a2:45:3b:07:d9:b3:85:cf:22:d2:bc:40:c5:98:4e:1e:c2:
ef:2e:29:8d:0c:d8:af:02:a7:a7:c3:74:1f:41:da:3a:08:ba:
b1:f3:2d:56:fc:86:09:aa:52:b4:1a:e2:d0:58:c2:20:8d:71:
4e:e3:67:7c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa5o5IhAXEUfnf2OYWdopW/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlhNDMzNmRhMWViNzIxNmUyMGVjMDRhN2YwMzFlYjRhMWI2
MzFiYjMwHhcNMjUwNTEwMTAwMDI2WhcNMjUwNTExMTAwMDI2WjAzMTEwLwYDVQQD
EyhiZTAzMDE3NGIyMDRhYzQ0YzY0MjY3NDNhM2JjZTUyM2ZjYzZkZDg0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtXNLI0C/cFFTlJViu/2za0m9sfu3
GJFP2T7G1MBr2P75ENGKCSIhjeGeHWHtQNHbtgDsc9t8lSb04JctPcGGV9e3uv7o
PxMBWjaguC1UjpQhq/185ZH6+3ADiAsbMJTiZi24MSpaERYZakW7UjWB4ovDH4FT
2EetHBG2d1sI37UBeI4IfwqYUWaKOO3x182RDm8Tu7rYprHNuVKYUJgQFgi6qILv
ICfYD21evCxgtXrC7ZjehcS1EarK5QNRLpq16nFohX+bOdVZv6eKi0VSyHXdIf2w
UWglQBT+b86NUkQ5fq/R4rtxYpmQXLiwgLMxi1On+HVkDILuZD+tLez5YQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL4DAXSyBKxExkJnQ6O85SP8xt2EMB8GA1UdIwQY
MBaAFJpDNtoetyFuIOwEp/Ax60obYxuzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbWtNMjJoNjNJVzRnN0FTbjhESHJTaHRqRzdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9hN2U5YjktNmJhYy00NTM4LWE5ZTYt
ZmE4ODA2YTAyNGM0LzEvbWtNMjJoNjNJVzRnN0FTbjhESHJTaHRqRzdNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy9hN2U5YjktNmJhYy00NTM4LWE5ZTYtZmE4ODA2YTAyNGM0
LzEvbWtNMjJoNjNJVzRnN0FTbjhESHJTaHRqRzdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjVZZyrrL
cI+/I5Yfm5R6ZnyaLfl3yuKDu0pxYSoW8Cl9oLoQfHNljfpTEgqAzrCEI2XZTVlE
vF5fw+jjUpHxPx4ggROYy5GLSe+aQTKqeLrT2c8rPBEr6umv3sNRl261wJmDPpZg
cCfVYQrK68NKvEaPRDgoapOVMqkHs6o0w3mtQE1TF+M/ApT+nF4XzlFYxGa92Xwh
KSkvlGml/c83j5naCjN2Klcam0OjIj/VjKXW3/hLJERxdVJ3/yIg37PT5jRz5/0n
JKJFOwfZs4XPItK8QMWYTh7C7y4pjQzYrwKnp8N0H0HaOgi6sfMtVvyGCapStBri
0FjCII1xTuNnfA==
-----END CERTIFICATE-----
Generated at Sat May 10 20:05:26 2025 by rpki-client