Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/mk123S9GBosIca1FAKxuV3r-Rpw.mft
File: mk123S9GBosIca1FAKxuV3r-Rpw.mft (raw, json)
Hash identifier: 4+tqXCxpoAnIHkc7EGc13WVE9OB9Dt/McT1jHyoVt2A=
Subject key identifier: D4:11:EA:FC:44:B7:AD:DB:BB:CF:5F:CF:EF:5C:4E:56:29:17:E4:F6
Authority key identifier: 9A:4D:76:DD:2F:46:06:8B:08:71:AD:45:00:AC:6E:57:7A:FE:46:9C
Certificate issuer: /CN=9a4d76dd2f46068b0871ad4500ac6e577afe469c
Certificate serial: 0197B6D73D070AEAC614EDDB70797A8F15F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mk123S9GBosIca1FAKxuV3r-Rpw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/mk123S9GBosIca1FAKxuV3r-Rpw.mft
Manifest number: 15C0
Signing time: Sat 28 Jun 2025 14:00:48 +0000
Manifest this update: Sat 28 Jun 2025 14:00:48 +0000
Manifest next update: Sun 29 Jun 2025 14:00:48 +0000
Files and hashes: 1: g_4HQ6dPEqLM5A1GtfThJC294J4.roa (hash: LZYhI0FV7wY5oWB7xQyZ5bQSIIqgJBDQ7uNwEne/gVE=)
2: j-Wf3znAxyHVOa1yHEzX6v3sp9U.roa (hash: OwOwX0XTVGFVpqs+QebopX8jgHz3h7KxGANJ/Crp1oA=)
3: mk123S9GBosIca1FAKxuV3r-Rpw.crl (hash: VQaDlUvfmBcPvKrFZm2xg+syjLNXFbKLj8gGC9pPP+o=)
4: vscV7GZRMa0CPUTvFLBuSp-lIJ8.roa (hash: 2C3QYWkPGEbQmt4ETFEFUqH1R92qUMl/4nE7fTPMPhA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/mk123S9GBosIca1FAKxuV3r-Rpw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/mk123S9GBosIca1FAKxuV3r-Rpw.mft
rsync://rpki.ripe.net/repository/DEFAULT/mk123S9GBosIca1FAKxuV3r-Rpw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:3d:07:0a:ea:c6:14:ed:db:70:79:7a:8f:15:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a4d76dd2f46068b0871ad4500ac6e577afe469c
Validity
Not Before: Jun 28 14:00:48 2025 GMT
Not After : Jun 29 14:00:48 2025 GMT
Subject: CN=d411eafc44b7addbbbcf5fcfef5c4e562917e4f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:37:3e:42:c2:e2:0d:40:c7:3d:25:1b:12:db:
71:33:29:d1:fd:d9:70:1b:76:1c:8c:96:39:cd:80:
50:69:ab:8a:92:1b:a2:27:2d:68:c5:12:9c:80:c1:
a9:bc:37:71:ab:1a:f9:fe:d7:c8:30:6f:f8:58:14:
de:45:e5:5b:61:47:5d:1b:9b:ab:dd:67:36:78:20:
b2:f0:3c:23:2e:e3:43:42:40:16:77:23:d4:29:bd:
e1:60:a3:36:91:c9:9b:94:a6:7c:c6:a3:82:2e:60:
09:e5:85:21:58:43:01:c2:fb:c3:18:71:9d:cb:0f:
47:4a:07:34:c1:a0:0c:46:a4:3b:e4:18:87:d9:8d:
9a:ed:26:e4:e3:86:9f:4c:55:38:56:1c:20:87:a2:
68:a3:58:c4:52:5d:13:94:2c:6e:2a:9e:c3:14:37:
3f:7a:d1:e2:c5:4f:ef:52:9a:a1:f3:12:c0:79:1f:
0c:22:ad:84:3c:d5:89:ee:60:db:15:fb:59:0a:3b:
c3:99:57:49:41:73:be:e4:05:c2:3c:56:39:2c:66:
7f:be:b0:5c:3c:89:c5:1a:3b:72:72:5a:eb:55:6e:
35:76:b1:80:d7:d8:35:8c:08:e6:54:df:6d:68:bd:
52:76:dc:92:27:62:1a:cb:41:49:61:c6:8f:b9:f9:
97:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:11:EA:FC:44:B7:AD:DB:BB:CF:5F:CF:EF:5C:4E:56:29:17:E4:F6
X509v3 Authority Key Identifier:
keyid:9A:4D:76:DD:2F:46:06:8B:08:71:AD:45:00:AC:6E:57:7A:FE:46:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mk123S9GBosIca1FAKxuV3r-Rpw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/mk123S9GBosIca1FAKxuV3r-Rpw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/mk123S9GBosIca1FAKxuV3r-Rpw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:e1:b8:44:c7:c7:1f:76:6a:0e:b4:5d:80:27:69:34:24:ab:
82:e4:cf:33:63:ab:eb:3d:e1:53:55:bf:db:eb:eb:7f:80:16:
83:ac:3a:50:77:a2:9b:00:22:aa:0d:fe:c1:ca:70:1b:af:0a:
fd:7d:9d:c5:57:53:f5:64:91:4c:c6:26:fb:23:dc:9b:5e:9a:
22:41:34:2d:e7:77:2c:6f:33:d1:7e:d3:47:73:d0:33:62:5a:
0e:a5:43:d6:cd:86:39:79:9c:15:37:88:f1:f3:dc:d0:b1:13:
74:ec:14:7f:d5:d9:74:2f:35:33:e9:cf:bc:e9:0f:19:c9:cf:
cc:b4:fc:9f:3d:72:4a:21:9b:fa:4a:ff:c5:b1:88:06:2b:db:
29:da:45:20:0b:69:d2:0d:fb:42:d4:83:6b:64:33:92:37:79:
a9:ad:46:ad:1d:b8:bb:42:95:dd:71:d9:63:42:1d:c9:e7:93:
6f:4c:ba:84:5b:ae:41:8f:e5:ea:e5:f8:88:52:06:6a:41:85:
37:59:46:33:40:d8:9f:eb:4c:e7:ff:54:6c:54:aa:c3:a5:9f:
f2:e6:34:7b:7d:e5:6d:0c:47:c5:30:08:29:b9:3c:23:81:0e:
03:bd:a7:49:ec:37:0a:93:73:c9:9a:68:7d:cc:d3:bb:9f:43:
76:a7:5d:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:48:04 2025 by rpki-client