Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
File: mkM22h63IW4g7ASn8DHrShtjG7M.mft (raw, json)
Hash identifier: 2ogCoio3HuRY5NoeNVx6QgHzHxrDQE2GWjj96i1OezI=
Subject key identifier: 9A:C4:BB:1F:D3:2F:BF:B2:1E:32:DE:DE:50:6A:35:46:08:3D:3F:25
Authority key identifier: 9A:43:36:DA:1E:B7:21:6E:20:EC:04:A7:F0:31:EB:4A:1B:63:1B:B3
Certificate issuer: /CN=9a4336da1eb7216e20ec04a7f031eb4a1b631bb3
Certificate serial: 019A54BFD91F5CC85337B46782A28D196085
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
Manifest number: 1710
Signing time: Wed 05 Nov 2025 16:00:50 +0000
Manifest this update: Wed 05 Nov 2025 16:00:50 +0000
Manifest next update: Thu 06 Nov 2025 16:00:50 +0000
Files and hashes: 1: 91oUMgCP74fspZxBBljzGiQPBlI.roa (hash: Ys2eA6I4wLf+Ld2RnHYB/UxEHZh1MaBORWqhbF+NkdI=)
2: mkM22h63IW4g7ASn8DHrShtjG7M.crl (hash: HJafl4WJUvGOtoIytlumyzaP4nnr9X9Mb0LlNKe+958=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 12:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:54:bf:d9:1f:5c:c8:53:37:b4:67:82:a2:8d:19:60:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a4336da1eb7216e20ec04a7f031eb4a1b631bb3
Validity
Not Before: Nov 5 16:00:50 2025 GMT
Not After : Nov 6 16:00:50 2025 GMT
Subject: CN=9ac4bb1fd32fbfb21e32dede506a3546083d3f25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:d1:52:74:7d:fa:4c:1e:ad:86:50:09:0f:ac:
f1:4a:29:1b:2f:67:25:dd:d0:0c:88:bd:ed:8f:b7:
5d:d7:e5:17:43:32:83:d8:91:19:9c:9d:a1:65:17:
77:6b:c7:4b:18:9d:4a:d2:29:33:f6:73:7d:6d:7d:
6c:49:04:d7:3a:9c:09:08:bc:60:e7:01:a6:a0:28:
09:b4:59:e0:30:4e:4c:16:eb:78:cd:8b:d7:05:79:
2b:2a:27:fe:40:53:8d:a1:58:cf:e5:ea:b0:36:78:
72:c2:6f:da:37:4f:34:3f:ec:0d:d4:4f:79:54:68:
85:f6:75:44:62:9b:32:f0:20:8e:7a:5d:04:94:87:
94:8f:fd:54:96:ce:c8:44:89:76:3c:2a:b1:2b:c1:
54:53:bc:7f:06:6b:0e:18:af:5c:c9:ab:44:22:14:
de:fb:5c:f1:3c:d2:f3:24:29:5a:06:c8:42:5f:e7:
06:d2:c5:4c:6e:6c:f3:ce:05:50:86:40:9c:54:ab:
d2:34:d4:b6:67:5a:b7:99:20:4e:05:f5:7a:f6:aa:
51:7a:d9:40:48:cd:ee:b6:af:8a:e6:d1:38:5b:63:
e8:ff:27:45:2b:f4:35:d1:d9:f8:6d:86:7d:18:2e:
63:48:eb:69:39:86:ca:a2:d5:77:29:19:ea:d2:0b:
fb:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:C4:BB:1F:D3:2F:BF:B2:1E:32:DE:DE:50:6A:35:46:08:3D:3F:25
X509v3 Authority Key Identifier:
keyid:9A:43:36:DA:1E:B7:21:6E:20:EC:04:A7:F0:31:EB:4A:1B:63:1B:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:b8:5b:05:80:10:13:70:76:72:e8:1e:e2:a4:44:a7:23:22:
d7:4e:11:65:01:01:f9:4a:62:0f:ae:04:3a:66:7e:60:2f:6b:
ed:85:d5:0d:cc:92:7a:71:1b:62:91:12:74:9f:f2:b0:b2:f0:
c3:9d:00:88:ec:d0:fc:9c:fe:68:21:38:10:7b:77:55:e4:f0:
eb:26:69:4e:8c:49:9d:fc:f7:eb:9f:f6:55:bc:99:13:87:f6:
c3:1e:7e:6e:22:6c:43:f6:61:e4:5e:33:a8:96:dc:a1:4d:d1:
11:0d:88:cd:42:d0:ec:da:36:bf:12:36:3a:45:97:63:1d:ac:
e6:8a:28:00:c3:23:83:77:ec:8f:3b:02:fe:b8:ff:2c:fb:92:
b3:6c:c0:ef:a7:65:ac:75:73:39:11:81:a7:a9:31:89:63:c6:
f0:3f:34:d3:08:64:85:58:93:82:34:01:1f:b9:30:76:ef:09:
2c:50:3d:45:9e:ce:7a:97:6c:01:9f:b3:6f:15:bd:a7:92:28:
6e:e3:7b:73:b1:f3:f9:ae:d4:a8:85:9c:c9:80:6d:46:9b:50:
dd:16:71:ac:7c:ef:c4:d7:54:f5:b9:dd:0c:8a:60:28:1d:b5:
7f:25:c9:f0:a7:56:09:a7:0e:73:95:b2:d9:a8:f4:7c:c5:34:
01:70:93:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 21:30:48 2025 by rpki-client