
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.mft
File: mk2qT2rA5rwQK2iECirGu1QbQPw.mft (raw, json)
Hash identifier: 8j5KJK8W3iNEtmRtjF8YwCr5MPLaog4Ydtz3Unud14U=
Subject key identifier: E6:C6:EA:02:1C:3E:7B:42:B0:19:90:AE:A7:55:F3:31:0F:0E:EB:03
Authority key identifier: 9A:4D:AA:4F:6A:C0:E6:BC:10:2B:68:84:0A:2A:C6:BB:54:1B:40:FC
Certificate issuer: /CN=9a4daa4f6ac0e6bc102b68840a2ac6bb541b40fc
Certificate serial: 01987D8A5733294A69AE2B6085CC46ABCE1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mk2qT2rA5rwQK2iECirGu1QbQPw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.mft
Manifest number: 0612
Signing time: Wed 06 Aug 2025 04:01:14 +0000
Manifest this update: Wed 06 Aug 2025 04:01:14 +0000
Manifest next update: Thu 07 Aug 2025 04:01:14 +0000
Files and hashes: 1: j0Asbb5ngsOWlyvv7kth_3yoBYM.roa (hash: O/JfF/netiv5OyRHt3hhhICYzLbMzCW+fJQdQl7HVfM=)
2: mk2qT2rA5rwQK2iECirGu1QbQPw.crl (hash: EATGYuVIik6K2REkcFNdm5nqKMhRB2QiAKYAzbpJobk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.mft
rsync://rpki.ripe.net/repository/DEFAULT/mk2qT2rA5rwQK2iECirGu1QbQPw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 04:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:8a:57:33:29:4a:69:ae:2b:60:85:cc:46:ab:ce:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a4daa4f6ac0e6bc102b68840a2ac6bb541b40fc
Validity
Not Before: Aug 6 04:01:14 2025 GMT
Not After : Aug 7 04:01:14 2025 GMT
Subject: CN=e6c6ea021c3e7b42b01990aea755f3310f0eeb03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:bc:5d:a6:db:7c:0c:d2:eb:be:5e:bb:3c:79:
9a:69:16:40:2e:54:f8:b3:2d:de:35:67:33:65:a0:
80:45:58:8b:8d:e5:1b:7a:f6:c8:b7:74:d2:78:7f:
29:cf:29:b1:30:2b:3d:b2:49:6e:d7:5b:92:f1:34:
15:81:10:61:98:d7:c8:b2:1c:74:51:f8:3d:ce:f6:
e3:49:d2:a7:2f:70:2f:ec:36:aa:f9:94:48:74:01:
4a:c6:39:63:27:3e:2a:c2:30:f2:80:91:45:48:4f:
cf:52:a3:7b:aa:f9:b1:47:95:f0:b7:03:0e:d4:0c:
e9:26:72:81:77:8e:5e:dc:0e:92:12:9e:c9:3d:39:
cd:5a:0e:8e:c3:35:b4:21:54:a7:34:3e:3b:6e:99:
8f:fd:49:82:f1:55:94:f7:c6:d8:2e:3b:d8:5f:0b:
7a:75:54:fb:d3:cb:2e:66:24:71:6d:27:a3:2a:dc:
78:64:9a:b8:42:34:aa:7f:c0:4c:76:81:3b:92:80:
6e:33:e4:06:03:13:25:ed:30:12:49:e9:81:c9:bc:
13:c1:96:45:d6:58:5e:8c:0b:93:e0:3f:6c:e0:46:
2e:27:82:ff:9c:6c:07:a9:ae:e4:9c:a8:33:76:17:
00:c8:d9:14:25:3a:c4:ca:ba:a6:76:b2:0d:a4:7d:
42:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:C6:EA:02:1C:3E:7B:42:B0:19:90:AE:A7:55:F3:31:0F:0E:EB:03
X509v3 Authority Key Identifier:
keyid:9A:4D:AA:4F:6A:C0:E6:BC:10:2B:68:84:0A:2A:C6:BB:54:1B:40:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mk2qT2rA5rwQK2iECirGu1QbQPw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:11:38:df:c8:3d:29:0e:03:96:33:86:fb:6c:c1:f7:19:18:
e2:9d:3d:d5:d8:6b:62:31:cc:e9:20:5b:db:59:15:d7:f9:1e:
15:b0:2d:d4:db:d0:d2:d4:0a:5d:05:1f:c3:97:50:1f:9a:69:
52:21:f2:d4:0c:5a:ea:3c:db:a2:45:ff:e8:b2:cc:25:34:f9:
6a:56:0f:14:a5:0e:37:9b:27:60:be:5d:93:5c:65:99:64:8b:
d5:a9:90:54:5a:93:c8:31:58:8f:a2:8b:49:f8:6b:d5:7d:50:
30:90:79:aa:37:b3:2a:fc:6c:d9:cb:32:b4:29:a9:14:cb:4f:
04:ca:d9:5c:3b:6b:31:5f:22:62:18:78:fd:38:c5:a5:55:22:
5e:88:ac:d0:65:28:a6:92:34:14:43:23:d4:19:d7:b0:6a:17:
d5:5b:96:b3:9c:8f:45:6f:5c:a8:aa:78:52:5c:27:e2:f0:89:
38:f7:19:3e:2f:a7:55:16:e8:99:f6:25:43:a8:b5:fc:65:88:
d4:e8:9d:61:b7:36:a9:44:3f:29:11:8c:94:d2:59:0a:4f:d8:
7e:36:11:ad:6b:7d:85:d3:40:6a:4a:b7:1d:88:11:ce:75:84:
55:95:27:f1:76:71:5b:bc:22:99:9a:ba:64:b2:72:1f:66:d4:
7c:6c:52:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 10:10:53 2025 by rpki-client