Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
File: mkM22h63IW4g7ASn8DHrShtjG7M.mft (raw, json)
Hash identifier: XzSPbi1Ql+BwObPj2xXC5w6A/WVi7YG35ijqEhHOYJI=
Subject key identifier: 27:90:E1:48:27:6A:A5:B8:AA:87:EA:26:09:36:AD:20:A0:C0:AA:F9
Authority key identifier: 9A:43:36:DA:1E:B7:21:6E:20:EC:04:A7:F0:31:EB:4A:1B:63:1B:B3
Certificate issuer: /CN=9a4336da1eb7216e20ec04a7f031eb4a1b631bb3
Certificate serial: 0198530D8E067235CB91413726029E5B1498
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
Manifest number: 1606
Signing time: Mon 28 Jul 2025 22:00:53 +0000
Manifest this update: Mon 28 Jul 2025 22:00:53 +0000
Manifest next update: Tue 29 Jul 2025 22:00:53 +0000
Files and hashes: 1: 91oUMgCP74fspZxBBljzGiQPBlI.roa (hash: Ys2eA6I4wLf+Ld2RnHYB/UxEHZh1MaBORWqhbF+NkdI=)
2: mkM22h63IW4g7ASn8DHrShtjG7M.crl (hash: Wq7Uj8gaVWvcG3MFFlBOUtf9YLGZvKN9XiV+QXJJ+yw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Jul 2025 22:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:53:0d:8e:06:72:35:cb:91:41:37:26:02:9e:5b:14:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a4336da1eb7216e20ec04a7f031eb4a1b631bb3
Validity
Not Before: Jul 28 22:00:53 2025 GMT
Not After : Jul 29 22:00:53 2025 GMT
Subject: CN=2790e148276aa5b8aa87ea260936ad20a0c0aaf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:4e:bf:69:ec:61:ce:d3:6c:ca:f8:e7:ff:25:
f4:50:71:5b:ed:11:3f:e7:dc:2d:fd:03:3c:f9:50:
18:89:83:1f:56:eb:02:43:5a:64:2c:b3:4a:14:cc:
09:fd:5e:53:45:5e:71:81:ae:73:5d:ea:47:63:cf:
94:30:64:51:a6:22:db:e5:80:3c:2f:df:e7:43:b6:
48:5f:fd:3b:4c:47:5d:0a:66:ae:b3:03:68:07:5e:
a9:58:1f:17:0d:b4:a0:f4:7a:c5:4a:41:5a:35:5d:
88:51:6f:0c:e7:ff:38:fb:d9:22:d3:43:52:e3:f5:
0f:8f:05:d9:fa:56:3a:c3:39:d7:fa:c1:8f:2d:58:
01:4f:46:ac:b5:9e:41:4a:9f:53:17:1c:7d:75:35:
fd:18:5e:a5:26:9b:a0:ca:09:42:a6:30:f5:65:5b:
70:70:fb:34:8d:79:ad:04:b7:7c:e3:ff:b4:c0:05:
5f:6f:f8:70:3b:f3:f5:d4:68:52:27:e6:4c:99:d6:
5a:01:93:33:db:19:a5:2a:79:be:8d:08:c8:ac:5b:
c0:38:8a:e3:e4:16:94:8f:58:ac:45:1c:42:23:1a:
a7:43:60:9e:1b:65:25:b5:be:50:8f:1c:71:00:11:
01:7c:66:16:2d:91:6e:0d:b6:b2:eb:3f:2e:83:d3:
45:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:90:E1:48:27:6A:A5:B8:AA:87:EA:26:09:36:AD:20:A0:C0:AA:F9
X509v3 Authority Key Identifier:
keyid:9A:43:36:DA:1E:B7:21:6E:20:EC:04:A7:F0:31:EB:4A:1B:63:1B:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:01:76:c6:93:60:11:64:f8:13:ac:b0:58:bf:21:bc:66:d2:
a9:36:7f:e6:c1:d6:83:53:56:ed:64:eb:95:cb:ad:29:91:05:
e3:e5:78:a3:28:d1:7b:93:da:c8:c0:68:a1:05:22:8e:c2:65:
15:ae:b5:6e:7a:9f:9e:29:6c:8e:10:1a:5c:49:5e:7e:9d:10:
a7:e2:34:45:28:37:07:2a:08:dc:b8:ed:48:1b:09:cb:3d:9e:
02:5f:3e:68:85:b7:f0:9c:90:9c:71:3b:ae:73:0c:b0:1b:63:
37:c1:c6:63:73:6c:2a:6a:26:9a:95:fb:58:e4:af:09:4a:91:
a1:2a:fe:ad:c8:39:55:8c:1c:5f:55:95:fc:4b:92:fc:56:bd:
54:b5:26:8a:ac:77:a7:bc:ac:8a:0c:fd:3b:9c:28:70:fa:7c:
66:4d:58:ca:e0:82:e3:a7:64:b1:3f:c4:43:9f:00:c8:cd:a6:
bc:fa:5b:fb:81:0b:9e:3b:13:ef:3b:43:3b:72:a5:df:b9:47:
ca:7f:ba:e0:e2:3a:50:2a:a5:cb:ba:6e:da:0c:06:56:0c:ac:
97:96:cd:53:a8:bc:10:7f:43:d9:38:36:e5:11:d5:cf:6f:30:
c8:6e:80:d1:25:cc:9a:6a:3c:5d:19:88:9c:d9:37:24:26:24:
d6:18:69:ba
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhTDY4GcjXLkUE3JgKeWxSYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlhNDMzNmRhMWViNzIxNmUyMGVjMDRhN2YwMzFlYjRhMWI2
MzFiYjMwHhcNMjUwNzI4MjIwMDUzWhcNMjUwNzI5MjIwMDUzWjAzMTEwLwYDVQQD
EygyNzkwZTE0ODI3NmFhNWI4YWE4N2VhMjYwOTM2YWQyMGEwYzBhYWY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyU6/aexhztNsyvjn/yX0UHFb7RE/
59wt/QM8+VAYiYMfVusCQ1pkLLNKFMwJ/V5TRV5xga5zXepHY8+UMGRRpiLb5YA8
L9/nQ7ZIX/07TEddCmauswNoB16pWB8XDbSg9HrFSkFaNV2IUW8M5/84+9ki00NS
4/UPjwXZ+lY6wznX+sGPLVgBT0astZ5BSp9TFxx9dTX9GF6lJpugyglCpjD1ZVtw
cPs0jXmtBLd84/+0wAVfb/hwO/P11GhSJ+ZMmdZaAZMz2xmlKnm+jQjIrFvAOIrj
5BaUj1isRRxCIxqnQ2CeG2Ultb5QjxxxABEBfGYWLZFuDbay6z8ug9NFMQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCeQ4UgnaqW4qofqJgk2rSCgwKr5MB8GA1UdIwQY
MBaAFJpDNtoetyFuIOwEp/Ax60obYxuzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbWtNMjJoNjNJVzRnN0FTbjhESHJTaHRqRzdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9hN2U5YjktNmJhYy00NTM4LWE5ZTYt
ZmE4ODA2YTAyNGM0LzEvbWtNMjJoNjNJVzRnN0FTbjhESHJTaHRqRzdNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy9hN2U5YjktNmJhYy00NTM4LWE5ZTYtZmE4ODA2YTAyNGM0
LzEvbWtNMjJoNjNJVzRnN0FTbjhESHJTaHRqRzdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXgF2xpNg
EWT4E6ywWL8hvGbSqTZ/5sHWg1NW7WTrlcutKZEF4+V4oyjRe5PayMBooQUijsJl
Fa61bnqfnilsjhAaXElefp0Qp+I0RSg3ByoI3LjtSBsJyz2eAl8+aIW38JyQnHE7
rnMMsBtjN8HGY3NsKmommpX7WOSvCUqRoSr+rcg5VYwcX1WV/EuS/Fa9VLUmiqx3
p7ysigz9O5wocPp8Zk1YyuCC46dksT/EQ58AyM2mvPpb+4ELnjsT7ztDO3Kl37lH
yn+64OI6UCqly7pu2gwGVgysl5bNU6i8EH9D2Tg25RHVz28wyG6A0SXMmmo8XRmI
nNk3JCYk1hhpug==
-----END CERTIFICATE-----
Generated at Tue Jul 29 04:01:20 2025 by rpki-client