Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.mft
File: MKNPnR29IKqH-w9ivStsXjDGFKI.mft (raw, json)
Hash identifier: C44z01SsNQXZ7CxhEx9iTfUDMXcrhgHbkXb89C7hFY4=
Subject key identifier: 20:7B:60:DB:D2:85:67:FA:89:6A:48:CC:21:DF:17:FA:23:8C:A4:10
Authority key identifier: 30:A3:4F:9D:1D:BD:20:AA:87:FB:0F:62:BD:2B:6C:5E:30:C6:14:A2
Certificate issuer: /CN=30a34f9d1dbd20aa87fb0f62bd2b6c5e30c614a2
Certificate serial: 01984106F30B5B2D564ECBA61E9DD5F2D63D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MKNPnR29IKqH-w9ivStsXjDGFKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.mft
Manifest number: 06B0
Signing time: Fri 25 Jul 2025 10:00:31 +0000
Manifest this update: Fri 25 Jul 2025 10:00:31 +0000
Manifest next update: Sat 26 Jul 2025 10:00:31 +0000
Files and hashes: 1: MKNPnR29IKqH-w9ivStsXjDGFKI.crl (hash: R9qK1gtK8bjtckTAmt0uqcReZxY5g/u4yGfRjNG7BKc=)
2: lblIM2FJQ_WVf-a4mFWu5Otgr-A.roa (hash: dTACe68AOYRTGOWM2bf2NFYllivUWP/q40LE4fNKxno=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.mft
rsync://rpki.ripe.net/repository/DEFAULT/MKNPnR29IKqH-w9ivStsXjDGFKI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 26 Jul 2025 08:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:41:06:f3:0b:5b:2d:56:4e:cb:a6:1e:9d:d5:f2:d6:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30a34f9d1dbd20aa87fb0f62bd2b6c5e30c614a2
Validity
Not Before: Jul 25 10:00:31 2025 GMT
Not After : Jul 26 10:00:31 2025 GMT
Subject: CN=207b60dbd28567fa896a48cc21df17fa238ca410
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:ab:31:cb:ed:41:28:4e:09:6b:a2:ce:b7:fa:
77:22:85:df:89:be:50:80:91:36:b4:c8:1e:d3:a3:
b8:5d:34:81:b7:f4:a3:e3:a7:6b:a0:db:25:e4:b0:
df:c3:49:13:f4:d3:6a:42:cd:91:db:cf:7b:f2:5f:
77:0c:c4:27:5d:33:89:d5:27:5c:c5:c0:5f:f8:00:
f9:7e:e7:15:28:9f:01:55:cc:52:fe:e7:08:ab:d4:
ae:41:d8:10:1c:34:b6:76:e1:d6:53:1a:68:d5:d9:
42:4e:a5:18:20:a6:ca:38:56:6b:d7:f0:7e:73:40:
5b:bc:e2:45:9a:85:63:a4:27:06:3a:b8:4b:14:dd:
11:58:85:39:14:f4:1a:e5:eb:87:f4:36:e3:a8:ba:
ec:41:54:06:86:79:20:8a:5d:9f:1c:ab:df:7e:5e:
ad:6f:0d:ac:d4:5f:36:a5:ad:e1:c8:72:23:93:da:
b1:4c:06:fa:91:89:10:2f:26:65:97:ca:f2:b0:31:
98:88:e3:94:fb:24:56:c4:99:af:f1:64:e3:9b:bb:
10:f1:44:23:d7:b5:ee:7e:3a:09:c3:d3:d1:73:a7:
6d:3a:24:45:48:36:24:ab:6b:0a:2d:27:8b:b2:72:
b1:80:61:26:4a:ca:99:1a:c1:9f:7a:ac:49:f5:b8:
81:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:7B:60:DB:D2:85:67:FA:89:6A:48:CC:21:DF:17:FA:23:8C:A4:10
X509v3 Authority Key Identifier:
keyid:30:A3:4F:9D:1D:BD:20:AA:87:FB:0F:62:BD:2B:6C:5E:30:C6:14:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MKNPnR29IKqH-w9ivStsXjDGFKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:9a:84:f6:19:b8:d5:7e:4b:bb:96:ac:0c:13:cb:7a:17:9c:
05:16:40:c7:89:e3:2f:20:f1:0f:34:ea:03:25:8e:f4:1f:ad:
bc:d8:a6:85:ec:9b:df:52:6d:82:00:7c:5d:bf:82:12:be:70:
ec:e4:56:18:98:22:dd:8c:74:8b:be:50:0a:d7:83:14:95:85:
85:b7:dd:f9:d6:93:0f:00:ae:25:80:1b:95:81:68:fe:ad:8a:
03:9e:85:8c:c6:f3:f9:b1:ee:a4:a8:9a:90:a4:74:b6:18:55:
9e:02:8a:66:0a:f7:fc:da:94:bb:70:3e:3d:24:77:89:cf:6b:
9f:e3:6a:95:9c:fe:e6:66:f5:fc:44:cd:72:c4:36:ee:dd:84:
81:79:11:ae:33:3f:4a:ed:5b:31:d1:3b:4a:aa:9f:db:0f:8e:
81:47:da:10:a8:1b:2f:29:51:d5:da:0c:c7:80:00:d3:d3:cf:
19:fd:9c:91:66:68:5c:48:c6:d4:f2:28:7a:95:24:7c:53:9c:
50:60:15:1f:8b:61:a2:b4:90:7a:6f:b6:41:1d:43:21:91:33:
66:bb:82:23:34:be:8a:64:cf:d5:20:d6:0c:20:15:e6:49:b5:
82:a2:4c:df:8c:90:d0:8b:51:ca:a4:fd:6f:4d:a6:2b:46:69:
26:29:49:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 25 17:24:13 2025 by rpki-client