Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/mk123S9GBosIca1FAKxuV3r-Rpw.mft
File: mk123S9GBosIca1FAKxuV3r-Rpw.mft (raw, json)
Hash identifier: oH577YEkL5K430JZl+C6uu6+SjaUR7FAvDIRMscmmMw=
Subject key identifier: 1B:6B:34:FF:2B:90:19:EE:C1:E6:56:91:5E:83:EF:3F:C6:55:69:00
Authority key identifier: 9A:4D:76:DD:2F:46:06:8B:08:71:AD:45:00:AC:6E:57:7A:FE:46:9C
Certificate issuer: /CN=9a4d76dd2f46068b0871ad4500ac6e577afe469c
Certificate serial: 0199FC21CAB924FF50D3F6129DE75A2DB2FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mk123S9GBosIca1FAKxuV3r-Rpw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/mk123S9GBosIca1FAKxuV3r-Rpw.mft
Manifest number: 16ED
Signing time: Sun 19 Oct 2025 11:01:36 +0000
Manifest this update: Sun 19 Oct 2025 11:01:36 +0000
Manifest next update: Mon 20 Oct 2025 11:01:36 +0000
Files and hashes: 1: g_4HQ6dPEqLM5A1GtfThJC294J4.roa (hash: LZYhI0FV7wY5oWB7xQyZ5bQSIIqgJBDQ7uNwEne/gVE=)
2: j-Wf3znAxyHVOa1yHEzX6v3sp9U.roa (hash: OwOwX0XTVGFVpqs+QebopX8jgHz3h7KxGANJ/Crp1oA=)
3: mk123S9GBosIca1FAKxuV3r-Rpw.crl (hash: /QTGchk9p2Dd9wrgeeaftqg+lvYN7mIMWVqgDF+MZ9Y=)
4: vscV7GZRMa0CPUTvFLBuSp-lIJ8.roa (hash: 2C3QYWkPGEbQmt4ETFEFUqH1R92qUMl/4nE7fTPMPhA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/mk123S9GBosIca1FAKxuV3r-Rpw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/mk123S9GBosIca1FAKxuV3r-Rpw.mft
rsync://rpki.ripe.net/repository/DEFAULT/mk123S9GBosIca1FAKxuV3r-Rpw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:ca:b9:24:ff:50:d3:f6:12:9d:e7:5a:2d:b2:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a4d76dd2f46068b0871ad4500ac6e577afe469c
Validity
Not Before: Oct 19 11:01:36 2025 GMT
Not After : Oct 20 11:01:36 2025 GMT
Subject: CN=1b6b34ff2b9019eec1e656915e83ef3fc6556900
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:62:55:cf:34:22:fd:39:d5:90:1a:b5:71:70:
cc:e8:18:b9:5e:e3:1b:b1:6b:e8:16:9f:d5:d5:82:
8f:a9:40:65:1c:1f:da:65:85:bf:40:66:a7:79:1d:
b5:c4:ab:06:52:5e:73:95:f0:b6:ad:41:37:81:cd:
71:1d:24:bc:02:3b:7c:11:30:b1:0b:de:96:9d:9b:
a8:33:c9:14:13:85:0d:1f:0a:a3:cd:f1:f9:e4:bd:
bc:26:69:a9:65:25:f0:c6:bc:b8:08:13:53:c4:2f:
d5:2c:82:a7:22:cc:c5:c0:58:3e:2e:20:9f:ab:4d:
e1:ea:81:d5:8a:37:cf:97:3a:5d:8f:16:69:06:ef:
6a:e6:15:2f:40:02:0d:7b:17:52:fd:3e:a5:9c:5a:
48:1a:d9:7e:46:f5:c8:4b:4d:0d:1c:27:0f:d0:26:
6b:32:d0:63:8d:82:2c:d7:d2:88:0e:2e:c7:55:25:
44:45:78:96:e8:a8:ac:d0:05:2b:ea:f7:e2:3d:a3:
61:3a:81:bb:38:33:1a:d2:37:41:68:9c:e5:31:ff:
b9:6c:9d:3a:15:ba:a0:37:60:3b:03:02:f7:3d:5f:
93:43:60:84:30:fb:44:20:20:b7:ca:24:d0:f9:56:
04:de:83:bc:d4:4d:67:62:d9:84:d0:71:c3:14:53:
9f:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:6B:34:FF:2B:90:19:EE:C1:E6:56:91:5E:83:EF:3F:C6:55:69:00
X509v3 Authority Key Identifier:
keyid:9A:4D:76:DD:2F:46:06:8B:08:71:AD:45:00:AC:6E:57:7A:FE:46:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mk123S9GBosIca1FAKxuV3r-Rpw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/mk123S9GBosIca1FAKxuV3r-Rpw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/mk123S9GBosIca1FAKxuV3r-Rpw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:6a:bf:f3:ef:10:9c:ac:69:a7:6e:01:db:64:d7:45:61:cc:
8f:f4:4b:22:26:11:a1:fe:c0:5b:7a:08:97:b5:ed:51:4b:14:
16:d6:cd:01:d6:e3:34:ec:ad:96:a3:ef:5a:ee:bb:88:3e:c9:
d1:b1:78:30:df:96:0d:a9:02:51:f1:6a:91:8a:75:b0:87:06:
64:1a:8b:ae:d0:cc:f6:4f:62:cf:30:d6:5e:49:45:2c:c1:15:
e3:de:c2:20:87:7f:fa:8a:7e:89:77:97:7c:8a:52:d9:6d:53:
0d:8b:74:9d:3c:09:06:74:96:6c:36:07:db:9e:e5:e6:f2:71:
fc:85:5d:12:17:30:1d:10:b5:7a:9a:f5:31:53:95:fe:25:9d:
2b:9b:7c:20:42:be:e0:55:4a:cd:03:8c:46:5f:ff:25:89:d0:
5b:60:23:c7:ca:95:a7:06:06:c0:11:24:d3:ee:0d:bf:fa:1e:
49:18:c8:05:7d:7f:70:14:a9:89:9a:7d:ca:3b:0b:dc:76:4f:
34:d3:7d:83:5a:78:d2:f6:0c:d0:77:94:9b:d7:e2:aa:56:07:
aa:6c:aa:73:2e:fe:f9:45:7f:4a:08:ad:48:6f:d9:ee:e7:42:
e0:97:bd:51:25:7a:9c:ae:f5:b0:d5:66:bb:7c:fc:66:0f:d0:
08:20:90:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:31:41 2025 by rpki-client