Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
File: mkM22h63IW4g7ASn8DHrShtjG7M.mft (raw, json)
Hash identifier: 7zNOx5Vkusyvp3FWO1FQApAAEl0lHQPC6xk7qpUJoqo=
Subject key identifier: 1F:38:A6:11:DB:9D:D6:6F:93:CA:F9:B4:86:13:2D:6A:47:F1:A4:A8
Authority key identifier: 9A:43:36:DA:1E:B7:21:6E:20:EC:04:A7:F0:31:EB:4A:1B:63:1B:B3
Certificate issuer: /CN=9a4336da1eb7216e20ec04a7f031eb4a1b631bb3
Certificate serial: 019A56AE10B622588877D1CDEFD825294933
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
Manifest number: 1711
Signing time: Thu 06 Nov 2025 01:00:39 +0000
Manifest this update: Thu 06 Nov 2025 01:00:39 +0000
Manifest next update: Fri 07 Nov 2025 01:00:39 +0000
Files and hashes: 1: 91oUMgCP74fspZxBBljzGiQPBlI.roa (hash: Ys2eA6I4wLf+Ld2RnHYB/UxEHZh1MaBORWqhbF+NkdI=)
2: mkM22h63IW4g7ASn8DHrShtjG7M.crl (hash: WbCK6TryPZxldS2l6+coqTnBdQ1DvEj841LO7kqM9S0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 21:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:56:ae:10:b6:22:58:88:77:d1:cd:ef:d8:25:29:49:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a4336da1eb7216e20ec04a7f031eb4a1b631bb3
Validity
Not Before: Nov 6 01:00:39 2025 GMT
Not After : Nov 7 01:00:39 2025 GMT
Subject: CN=1f38a611db9dd66f93caf9b486132d6a47f1a4a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:62:59:f3:76:f8:e0:8c:5d:67:bd:a3:f5:9c:
ca:60:a3:77:d1:6c:47:3e:6e:89:fb:a1:44:17:83:
f0:61:c9:79:ff:9b:75:97:8e:a8:31:d7:69:8c:6e:
dc:18:86:4a:be:42:51:d9:13:4e:58:70:d2:9e:64:
c7:b3:02:1b:d3:a8:c1:a1:85:5c:03:ab:d7:bd:0f:
ec:d2:56:44:9f:65:50:c2:db:b2:20:43:c3:fc:ec:
67:4b:63:7c:b8:ad:b4:7f:c7:5f:57:f7:7a:55:43:
8b:e5:8f:29:ce:cf:ed:11:1c:a1:b1:58:90:41:b3:
7c:12:50:75:11:1e:93:29:2a:25:a7:59:54:fd:c4:
b5:10:de:46:5b:ee:46:4e:77:4f:60:02:42:a4:cd:
cc:e0:07:63:95:46:3b:5d:45:4c:c4:69:d1:4b:a4:
98:be:8c:f9:69:bc:b7:95:fa:4c:93:81:e7:f2:69:
10:32:3c:81:d7:23:9a:0b:28:c3:39:55:d3:5c:52:
70:e5:cc:20:61:dd:9b:c8:5d:03:87:ce:c9:f8:cd:
d7:e9:50:44:31:48:66:f5:a9:4a:b9:fd:74:b8:46:
dc:8c:54:91:02:17:11:3e:f6:f8:18:9e:58:4d:4e:
cb:6f:04:2a:6f:49:b8:15:9a:2d:e4:64:2a:c3:71:
3d:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:38:A6:11:DB:9D:D6:6F:93:CA:F9:B4:86:13:2D:6A:47:F1:A4:A8
X509v3 Authority Key Identifier:
keyid:9A:43:36:DA:1E:B7:21:6E:20:EC:04:A7:F0:31:EB:4A:1B:63:1B:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:ec:08:fb:18:1a:a6:1a:4c:3f:16:9e:b2:d6:8f:98:87:d6:
dc:7a:f7:fa:3e:fa:6b:fa:e0:a5:51:ef:56:7b:e1:46:0a:79:
70:2a:85:bc:8a:12:1c:9f:2d:7a:2c:a6:d8:1f:b7:6f:93:85:
a3:0d:b1:38:93:91:d3:a5:b3:98:71:16:e9:0d:4f:86:32:c9:
c6:8c:9b:3f:55:ff:10:fc:72:23:95:00:d4:1c:8f:c5:cb:b1:
7e:69:2b:75:64:b7:a6:5d:6f:6f:b7:fe:21:31:a0:62:c8:74:
e7:bc:a0:04:33:58:dd:c6:f6:17:54:ed:f9:bd:90:25:b7:ba:
13:15:28:ae:28:d3:de:d1:df:73:9c:cb:52:3c:ed:7b:6b:2d:
8c:fa:f4:c9:7a:51:87:5d:37:f1:e2:55:2a:a7:38:55:b7:be:
b3:04:3d:7f:78:b9:74:48:1e:a0:0d:8f:12:66:60:1b:8d:46:
c9:ac:03:4a:7a:db:75:f5:94:d8:6d:7a:23:e2:12:4f:82:37:
a4:1b:6f:bc:ec:e5:28:ac:d1:5f:46:7a:06:ef:bf:19:95:27:
be:db:85:7c:ad:e7:3c:28:43:b0:16:6a:4b:28:3f:a9:a9:27:
44:6b:e2:b4:1a:f9:e5:1c:5d:c8:ff:6a:43:02:75:5a:40:e1:
a1:df:fa:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 6 02:35:46 2025 by rpki-client