Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
File: mkM22h63IW4g7ASn8DHrShtjG7M.mft (raw, json)
Hash identifier: JVVrv77iDJIov8UTc4szYDAlWRLe2WUjGJf4HmPc5iY=
Subject key identifier: 74:78:FD:D3:A2:06:6C:A5:27:54:BC:63:D4:4E:B1:F6:2E:F7:B5:00
Authority key identifier: 9A:43:36:DA:1E:B7:21:6E:20:EC:04:A7:F0:31:EB:4A:1B:63:1B:B3
Certificate issuer: /CN=9a4336da1eb7216e20ec04a7f031eb4a1b631bb3
Certificate serial: 01988356F19E151F1E5C9416BFD76232BD75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
Manifest number: 161F
Signing time: Thu 07 Aug 2025 07:02:49 +0000
Manifest this update: Thu 07 Aug 2025 07:02:49 +0000
Manifest next update: Fri 08 Aug 2025 07:02:49 +0000
Files and hashes: 1: 91oUMgCP74fspZxBBljzGiQPBlI.roa (hash: Ys2eA6I4wLf+Ld2RnHYB/UxEHZh1MaBORWqhbF+NkdI=)
2: mkM22h63IW4g7ASn8DHrShtjG7M.crl (hash: ccUxKGnr8KbFhGFAFSh+couIXnxt+icWB0R20MqTHbU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Aug 2025 07:02:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:83:56:f1:9e:15:1f:1e:5c:94:16:bf:d7:62:32:bd:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a4336da1eb7216e20ec04a7f031eb4a1b631bb3
Validity
Not Before: Aug 7 07:02:49 2025 GMT
Not After : Aug 8 07:02:49 2025 GMT
Subject: CN=7478fdd3a2066ca52754bc63d44eb1f62ef7b500
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:83:67:87:4a:cf:6a:57:9e:5e:60:12:55:78:
8a:61:af:82:51:d6:5f:f0:84:1c:52:a9:93:35:87:
ff:0d:1d:2b:b7:07:be:4e:42:5b:8c:1a:61:0d:43:
0b:3d:ad:ed:f2:c4:e6:00:76:d2:b6:be:7a:d1:bf:
ce:0e:fa:67:38:17:41:32:07:7f:24:0f:b8:db:a4:
5d:29:52:a1:2b:0f:ba:9e:33:5f:32:2a:78:f4:19:
51:b9:1e:67:a7:f1:50:de:ab:f6:de:c1:7e:a4:6f:
25:57:67:fc:c5:25:dd:d3:29:97:38:6c:65:35:95:
c5:c0:98:ab:fa:22:55:74:1c:1b:7e:99:22:b9:76:
1e:19:3b:84:9c:fb:87:02:12:a4:2b:cd:26:8f:21:
89:a3:07:45:ca:cc:04:c0:e1:83:e1:eb:1e:78:52:
94:68:52:5b:8d:c8:54:fa:ff:30:49:d2:e3:44:fb:
71:cc:81:c3:87:e7:6d:4e:77:55:df:e7:8b:1d:2d:
74:9b:ce:d9:a2:de:ac:26:27:e4:dc:b0:ac:7f:28:
6b:81:10:00:d0:57:0d:a4:e5:a1:cf:8a:06:be:68:
d6:b4:83:a3:9c:ae:e3:37:ef:ab:6d:8b:f2:f8:e9:
65:f1:ae:44:e6:0a:64:4a:fb:2c:b5:d9:2d:a7:6c:
84:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:78:FD:D3:A2:06:6C:A5:27:54:BC:63:D4:4E:B1:F6:2E:F7:B5:00
X509v3 Authority Key Identifier:
keyid:9A:43:36:DA:1E:B7:21:6E:20:EC:04:A7:F0:31:EB:4A:1B:63:1B:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:9d:f3:03:d7:ec:9f:79:33:7f:1e:6f:67:b2:55:11:fc:63:
3e:97:9a:c1:d2:3f:59:ee:9c:10:7b:9b:86:68:b3:5f:42:75:
fd:09:5b:1d:f9:2d:bd:65:bf:c6:d4:c7:0c:a2:74:03:8e:ca:
ec:8e:56:53:4f:6c:a0:dd:51:0b:7c:8e:9e:6f:9e:c3:83:57:
33:d8:99:db:d9:52:4b:78:88:3e:55:3e:20:90:08:6d:fb:41:
97:20:da:0e:19:df:a6:62:cd:29:76:35:22:e0:d4:49:64:9a:
58:fc:79:f7:c4:1c:3e:26:b0:80:79:82:d6:43:59:3d:33:58:
1d:3f:5c:b1:f6:8d:ac:f0:5e:54:eb:ec:3f:80:d2:7e:3a:e1:
12:a9:c0:18:c9:2c:79:e8:fe:8f:31:0a:58:78:b3:42:e7:d8:
5a:c3:19:90:12:bf:3b:5b:45:d0:35:eb:a9:9b:be:01:c7:4b:
3f:90:21:d2:0e:c8:d8:00:cd:98:ed:be:66:5d:29:99:b2:6f:
59:69:be:e2:76:56:c1:80:83:46:10:80:95:18:3a:f5:35:45:
46:99:51:b1:73:2d:36:da:43:e4:3f:95:17:f9:7e:d0:40:9d:
16:3c:7b:5d:3a:52:4c:8d:89:ef:fd:67:99:40:0a:06:bd:77:
98:52:63:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 17:24:53 2025 by rpki-client