Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/8bfec4-bd6f-4650-a4d8-ad1c30c11e5a/1/1-mkv2gGWh9WNcb8ywJCNEuRrTKU.mft
File: 1-mkv2gGWh9WNcb8ywJCNEuRrTKU.mft (raw, json)
Hash identifier: UjBtZprOBB4XFDu6UqnOwxQ9Ik7DPz4P7U4TiEjBQ7M=
Subject key identifier: 5E:A0:A3:57:DC:AA:0C:94:35:31:B5:30:3A:5D:5C:FE:F7:DB:AF:3E
Authority key identifier: FA:69:2F:DA:01:96:87:D5:8D:71:BF:32:C0:90:8D:12:E4:6B:4C:A5
Certificate issuer: /CN=fa692fda019687d58d71bf32c0908d12e46b4ca5
Certificate serial: 01991689003105F334ED2A8FC26E052F6429
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-mkv2gGWh9WNcb8ywJCNEuRrTKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/8bfec4-bd6f-4650-a4d8-ad1c30c11e5a/1/1-mkv2gGWh9WNcb8ywJCNEuRrTKU.mft
Manifest number: 1273
Signing time: Thu 04 Sep 2025 21:01:40 +0000
Manifest this update: Thu 04 Sep 2025 21:01:40 +0000
Manifest next update: Fri 05 Sep 2025 21:01:40 +0000
Files and hashes: 1: 1-mkv2gGWh9WNcb8ywJCNEuRrTKU.crl (hash: HSsXo1dNxog7jvxajQl1JhGCuQs+BH1PCv94ZP+L1qw=)
2: torroLihTDOA3iF3dz35198q-Ig.roa (hash: vvwQ1xlARrMA7/miZ5paV8AjRUiaiipi3ehp/RAKIwA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/8bfec4-bd6f-4650-a4d8-ad1c30c11e5a/1/1-mkv2gGWh9WNcb8ywJCNEuRrTKU.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/8bfec4-bd6f-4650-a4d8-ad1c30c11e5a/1/1-mkv2gGWh9WNcb8ywJCNEuRrTKU.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-mkv2gGWh9WNcb8ywJCNEuRrTKU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Sep 2025 21:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:16:89:00:31:05:f3:34:ed:2a:8f:c2:6e:05:2f:64:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa692fda019687d58d71bf32c0908d12e46b4ca5
Validity
Not Before: Sep 4 21:01:40 2025 GMT
Not After : Sep 5 21:01:40 2025 GMT
Subject: CN=5ea0a357dcaa0c943531b5303a5d5cfef7dbaf3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:52:8b:c9:40:3f:df:51:fd:5b:12:70:b7:03:
0b:b9:e2:c5:93:e1:aa:9d:b9:e7:4a:bf:2b:be:74:
f5:80:12:c1:cf:9d:08:da:1a:7e:1e:84:76:39:f8:
10:73:56:20:14:44:06:f3:dd:a4:85:b8:4e:92:a0:
fe:84:b1:5c:ab:a0:4b:67:c1:12:3a:01:27:3b:41:
68:ef:d2:cc:fc:86:76:3c:95:87:ae:af:37:a7:f3:
ca:0c:ea:9a:04:02:c4:77:3a:26:89:3f:f3:65:95:
ff:da:fa:09:28:e2:12:77:21:f3:bf:6f:9c:c3:3c:
6d:b1:67:4c:84:dd:93:cf:53:b0:93:74:90:0f:61:
dc:6b:c7:d9:3b:a3:3a:54:e4:84:69:3d:ce:2d:62:
84:f7:84:69:8b:35:94:b4:93:5b:e6:99:ef:36:ac:
62:44:6e:1b:ee:06:2d:a5:7f:05:96:a7:5f:02:bd:
96:ba:b4:31:b6:11:60:0a:34:a1:ae:16:1b:3a:f5:
9c:20:68:42:65:5a:be:63:9a:bd:c9:d7:7a:2a:c4:
bf:58:58:ed:d1:4b:d9:27:4e:a1:02:0c:23:b7:61:
31:e4:b3:7f:df:70:da:11:24:0a:4f:17:14:0b:b5:
0d:94:8e:23:15:89:17:75:aa:79:b5:06:e8:5c:da:
34:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:A0:A3:57:DC:AA:0C:94:35:31:B5:30:3A:5D:5C:FE:F7:DB:AF:3E
X509v3 Authority Key Identifier:
keyid:FA:69:2F:DA:01:96:87:D5:8D:71:BF:32:C0:90:8D:12:E4:6B:4C:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-mkv2gGWh9WNcb8ywJCNEuRrTKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/8bfec4-bd6f-4650-a4d8-ad1c30c11e5a/1/1-mkv2gGWh9WNcb8ywJCNEuRrTKU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/8bfec4-bd6f-4650-a4d8-ad1c30c11e5a/1/1-mkv2gGWh9WNcb8ywJCNEuRrTKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:85:07:6b:4b:27:a7:5f:4b:da:46:f1:bc:b5:f1:88:f5:dc:
ca:52:73:60:7e:f5:b6:eb:de:91:6c:05:37:ad:ee:3b:ac:28:
1f:ab:62:6b:b2:d7:c6:76:a0:a5:1c:c9:3c:51:db:90:76:8a:
6b:ac:f1:8b:c0:d6:47:8c:34:cc:1b:38:e8:4c:c7:3c:d3:21:
2f:1f:b9:fa:93:96:e7:17:46:d9:97:dc:ff:9e:d9:5d:4d:83:
bc:e3:a2:0f:21:91:de:2f:20:15:23:09:dc:d3:83:79:15:ad:
05:b3:a0:8c:ea:f8:ec:7a:da:03:d4:16:1a:2d:d0:b5:d3:dd:
3e:67:63:d0:40:d0:ef:f5:7d:f8:9a:9b:73:95:c9:77:7c:92:
d2:05:32:f5:8a:69:5c:c8:ce:5d:54:24:14:8d:18:e8:95:87:
83:a2:25:95:2b:24:e4:9c:92:2b:66:59:fb:4a:76:fa:cc:4a:
0d:7d:bd:81:16:9e:ad:b2:c7:d0:33:af:29:39:c0:64:77:44:
fa:2a:82:64:9d:be:bc:cb:9d:13:fe:6a:f1:e7:30:59:e0:ff:
c6:60:57:af:1f:16:1c:74:39:77:ed:f8:6a:da:30:a7:35:d9:
d2:02:d2:29:d6:70:80:9f:bc:e1:fc:a9:8d:7f:63:79:ca:c3:
ff:e4:d7:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 06:03:49 2025 by rpki-client