Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft
File: MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft (raw, json)
Hash identifier: pODV6iyWwm6GXl5lryKqmg/aEjbjBrvujcU6TU7kTbk=
Subject key identifier: 58:1F:FD:3C:95:27:B5:9B:FC:0A:1D:94:B7:14:3E:56:DE:20:32:E7
Authority key identifier: 32:4C:71:04:6C:54:9F:B3:C7:D4:EB:C4:CF:95:19:D0:02:E7:6D:F1
Certificate issuer: /CN=324c71046c549fb3c7d4ebc4cf9519d002e76df1
Certificate serial: 0198982558B3F14761EA8D1BA59E7D1648A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft
Manifest number: 0AF2
Signing time: Mon 11 Aug 2025 08:00:41 +0000
Manifest this update: Mon 11 Aug 2025 08:00:41 +0000
Manifest next update: Tue 12 Aug 2025 08:00:41 +0000
Files and hashes: 1: 2W4Y0bQNlvS93LoW6fNHPM7BKLQ.roa (hash: I9C4k+xseXfObTJ4huNUkRHHI0jQTaqLFqDJffjcwOE=)
2: MkxxBGxUn7PH1OvEz5UZ0ALnbfE.crl (hash: wYANCsuUHSzj/xLbv9Zra4cWA5z7JKrO4VtFPZxLtnA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft
rsync://rpki.ripe.net/repository/DEFAULT/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 02:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:98:25:58:b3:f1:47:61:ea:8d:1b:a5:9e:7d:16:48:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=324c71046c549fb3c7d4ebc4cf9519d002e76df1
Validity
Not Before: Aug 11 08:00:41 2025 GMT
Not After : Aug 12 08:00:41 2025 GMT
Subject: CN=581ffd3c9527b59bfc0a1d94b7143e56de2032e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:b0:22:c3:56:0a:74:18:c9:19:ec:fa:97:51:
12:28:59:0e:77:2a:91:74:a8:19:11:82:f1:25:96:
03:54:77:e0:bb:4c:3f:b6:d8:58:5c:63:61:93:c6:
32:36:f7:78:89:0c:de:ec:5d:1b:bf:c6:a5:1d:3f:
3a:eb:5c:44:38:cb:fc:d9:b1:0f:88:c1:e9:87:d6:
5e:6f:e7:0b:8e:a2:2a:60:7f:fb:0e:3c:31:31:96:
ac:8a:3d:7d:41:19:bc:cd:a6:b0:22:86:c6:44:43:
39:7a:e7:8e:08:c9:f6:62:cf:39:a4:9e:c4:d8:72:
1d:cc:88:96:53:5b:24:16:f3:79:55:a3:19:e5:78:
15:55:6d:a7:50:ad:6c:7a:33:8c:ad:ec:df:5e:97:
dc:85:c1:9b:78:16:69:c0:53:ee:c6:af:e2:f8:7f:
2c:55:9f:54:5b:4e:ce:e4:ce:cb:88:82:6b:5b:aa:
20:83:80:44:68:2e:1b:c2:6a:97:2e:c9:c3:a7:58:
61:c1:58:c8:a3:fd:3e:e5:c3:97:6a:86:82:d7:e2:
c2:89:60:aa:5e:4f:13:b3:ea:3a:b0:67:47:74:a8:
5a:c6:67:6c:59:b2:d0:de:8e:7e:81:50:70:cc:fd:
18:b4:e0:ed:94:05:b2:eb:66:09:0c:c4:3a:9e:50:
42:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:1F:FD:3C:95:27:B5:9B:FC:0A:1D:94:B7:14:3E:56:DE:20:32:E7
X509v3 Authority Key Identifier:
keyid:32:4C:71:04:6C:54:9F:B3:C7:D4:EB:C4:CF:95:19:D0:02:E7:6D:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:f9:f6:d9:26:0f:47:d5:0a:af:c7:ad:eb:e3:4e:98:60:b9:
3a:29:55:47:b7:3d:b4:db:0d:12:d1:37:2d:f6:b4:ea:9c:5a:
26:2a:76:d9:82:47:ae:6f:80:a9:fd:f7:bb:d1:aa:b0:c9:6a:
da:5d:a0:93:59:92:e5:51:75:b0:2c:ab:e7:ed:0c:62:8c:c4:
95:33:55:75:84:1c:b1:26:c7:4e:35:96:65:b0:93:c7:9c:31:
da:2e:7e:bc:76:b9:f6:95:19:89:53:2d:6a:0b:ab:06:b9:6f:
10:ed:9a:51:35:82:d9:62:bc:46:b2:46:c2:00:4e:9d:86:b0:
79:85:66:2f:c3:0f:5f:67:48:42:9d:c7:e6:16:7e:eb:ff:f4:
97:49:b9:0d:6b:8b:93:0e:f4:7a:8b:9d:c9:6c:8d:0c:80:a0:
ba:a1:39:72:63:fa:74:ad:5a:a6:7e:51:5e:ff:6f:e4:9b:58:
d2:21:1a:cc:69:62:28:30:8f:34:de:75:34:91:d9:f3:40:a7:
cd:02:7e:f5:06:26:cf:0d:7a:8b:9d:10:77:72:ac:18:a1:c6:
73:28:a4:8f:b3:71:9b:5e:07:30:ba:74:fd:e4:a3:bc:ac:e5:
a9:00:96:3b:99:a9:a6:92:45:50:37:d4:62:a6:c4:e3:5e:ea:
e3:55:68:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 09:51:18 2025 by rpki-client