Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
File: mkM22h63IW4g7ASn8DHrShtjG7M.mft (raw, json)
Hash identifier: M6hhKtc/YbjLbqK+d0z0AAc5Iaykqcb8VKW7GT+Hxw4=
Subject key identifier: FA:1C:4B:F9:29:A3:FA:24:AA:7D:4B:24:40:D9:11:1D:A0:9E:67:E2
Authority key identifier: 9A:43:36:DA:1E:B7:21:6E:20:EC:04:A7:F0:31:EB:4A:1B:63:1B:B3
Certificate issuer: /CN=9a4336da1eb7216e20ec04a7f031eb4a1b631bb3
Certificate serial: 01976960F2668812040203AF3B069E42172B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
Manifest number: 158D
Signing time: Fri 13 Jun 2025 13:00:50 +0000
Manifest this update: Fri 13 Jun 2025 13:00:50 +0000
Manifest next update: Sat 14 Jun 2025 13:00:50 +0000
Files and hashes: 1: 91oUMgCP74fspZxBBljzGiQPBlI.roa (hash: Ys2eA6I4wLf+Ld2RnHYB/UxEHZh1MaBORWqhbF+NkdI=)
2: mkM22h63IW4g7ASn8DHrShtjG7M.crl (hash: m/idTcS2UBdvs0uhCNTlN6vGw1/k4bL/26w018k1cF8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:60:f2:66:88:12:04:02:03:af:3b:06:9e:42:17:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a4336da1eb7216e20ec04a7f031eb4a1b631bb3
Validity
Not Before: Jun 13 13:00:50 2025 GMT
Not After : Jun 14 13:00:50 2025 GMT
Subject: CN=fa1c4bf929a3fa24aa7d4b2440d9111da09e67e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:96:44:6e:1e:c3:8a:10:55:2a:6c:26:70:9d:
d1:d6:2b:2f:b8:01:77:7a:5c:9d:73:11:f6:36:ae:
85:38:e8:27:3a:49:ec:9c:47:c0:8a:66:4d:7e:54:
a8:62:b7:e6:c4:8e:9b:db:2e:ca:fc:c8:80:4d:2a:
ab:cf:a2:58:83:ba:ed:bc:fb:7e:47:74:49:e8:e7:
f2:68:45:37:8a:81:4f:89:d9:ac:05:76:80:de:fb:
76:fc:b5:8e:62:e7:99:28:01:28:76:86:94:c5:23:
ff:cc:86:d2:55:fe:c9:11:cc:d4:1b:0f:76:f9:15:
87:5c:63:fb:6a:36:3f:c1:c4:d4:3a:be:aa:b4:e2:
37:50:55:c1:30:47:cb:81:45:8f:b1:3a:42:bd:98:
88:61:a4:27:6e:bc:99:6b:1f:0c:61:04:12:28:16:
30:71:ae:b3:2e:ff:d4:09:ad:41:b3:d9:2b:d6:3c:
d8:4e:69:cc:b8:48:51:36:a7:f0:99:18:a7:a3:c2:
e0:d5:7a:0b:d5:24:03:4a:c5:b4:2c:fb:e0:9e:14:
5d:5d:6e:5a:b5:3f:8c:13:4a:99:29:1b:91:cd:cd:
c7:5d:a7:48:90:19:6e:49:98:21:19:2e:30:32:b1:
b9:7c:f9:76:2b:7e:fb:11:45:02:ee:55:76:4e:27:
5b:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:1C:4B:F9:29:A3:FA:24:AA:7D:4B:24:40:D9:11:1D:A0:9E:67:E2
X509v3 Authority Key Identifier:
keyid:9A:43:36:DA:1E:B7:21:6E:20:EC:04:A7:F0:31:EB:4A:1B:63:1B:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:77:56:25:f6:03:e7:60:80:f5:84:46:5a:48:c8:55:6b:1a:
71:2f:d2:72:2f:f1:85:d2:9a:fb:2a:59:97:dc:2b:c5:a4:67:
dd:86:75:bb:93:e8:4f:7f:7b:17:90:3c:91:db:f8:5f:3e:f4:
fc:dd:b7:a8:b1:ad:53:33:59:8a:06:bd:05:9d:6b:32:c9:39:
71:69:cb:bf:8a:97:66:da:69:6c:0d:fc:1f:46:60:0c:74:80:
8b:ec:1c:f9:c2:3f:0a:b3:9b:52:ac:41:1a:ef:ab:ba:95:76:
e8:12:be:1c:e6:da:b0:ce:59:9a:4b:00:77:5f:6e:83:e0:d3:
e1:07:a2:4c:72:59:b8:2d:15:a8:4c:d9:e3:f2:c9:b6:9d:bf:
92:d4:57:cf:83:00:20:b9:d3:ba:76:e5:ce:45:4a:a6:b1:33:
c1:3c:80:34:03:66:62:ad:93:40:40:54:d7:e5:f2:00:c7:ee:
c8:78:8e:2c:97:77:7b:4a:d3:33:ba:f2:e3:b7:3a:ee:b7:3b:
fe:e7:4e:66:a0:fd:85:d3:42:01:44:e8:5d:c9:ec:98:85:7c:
f3:c5:6b:df:dd:fe:35:d7:35:97:f0:bb:cd:d9:b1:41:f1:79:
ee:dc:e9:b2:31:fc:97:56:7a:30:70:91:66:b9:cc:85:48:88:
80:e2:ce:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:14:00 2025 by rpki-client