Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/ff00c4-b728-44a0-962d-973db9ce68b5/1/MsK-SD_ye7jw3AnOD3HyqI6vfgc.mft
File: MsK-SD_ye7jw3AnOD3HyqI6vfgc.mft (raw, json)
Hash identifier: +Q0cmmh+cu41h/3f/VCRumoJqk52ykjml3sxr24899k=
Subject key identifier: 72:9F:D4:AA:B6:94:D3:C3:72:98:8F:87:89:E5:A6:71:B7:B7:12:EF
Authority key identifier: 32:C2:BE:48:3F:F2:7B:B8:F0:DC:09:CE:0F:71:F2:A8:8E:AF:7E:07
Certificate issuer: /CN=32c2be483ff27bb8f0dc09ce0f71f2a88eaf7e07
Certificate serial: 019922C38DF0C0A7B0BEDA42C8A6C1967DA0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MsK-SD_ye7jw3AnOD3HyqI6vfgc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/ff00c4-b728-44a0-962d-973db9ce68b5/1/MsK-SD_ye7jw3AnOD3HyqI6vfgc.mft
Manifest number: 1674
Signing time: Sun 07 Sep 2025 06:01:04 +0000
Manifest this update: Sun 07 Sep 2025 06:01:04 +0000
Manifest next update: Mon 08 Sep 2025 06:01:04 +0000
Files and hashes: 1: 3Ld3_xMK0PlfZFY-qBwXca5iVGM.roa (hash: CjU6hi/Jh6Zo5sGQ2UDjZfEn9Czpv8lCLYgvh/6NOKs=)
2: MsK-SD_ye7jw3AnOD3HyqI6vfgc.crl (hash: N1da49NbyL8aGMMX0qHXyt8/BSRxdZ98OkrQlO3wmWI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/ff00c4-b728-44a0-962d-973db9ce68b5/1/MsK-SD_ye7jw3AnOD3HyqI6vfgc.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/ff00c4-b728-44a0-962d-973db9ce68b5/1/MsK-SD_ye7jw3AnOD3HyqI6vfgc.mft
rsync://rpki.ripe.net/repository/DEFAULT/MsK-SD_ye7jw3AnOD3HyqI6vfgc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:8d:f0:c0:a7:b0:be:da:42:c8:a6:c1:96:7d:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32c2be483ff27bb8f0dc09ce0f71f2a88eaf7e07
Validity
Not Before: Sep 7 06:01:04 2025 GMT
Not After : Sep 8 06:01:04 2025 GMT
Subject: CN=729fd4aab694d3c372988f8789e5a671b7b712ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:b5:0c:d0:f4:3b:b0:03:7e:e8:1a:16:75:01:
c5:ab:fa:f8:10:18:2f:57:d0:5e:d7:32:55:66:0f:
38:80:3b:8f:27:89:f8:5a:1a:0c:76:39:54:75:74:
71:2b:03:fa:9b:d0:3c:6a:a0:ef:e1:a6:6e:cc:37:
de:04:30:1e:6c:09:1a:89:cb:d1:d4:7a:d3:74:3e:
dd:ad:e6:00:96:86:83:d0:c0:38:75:c0:01:70:13:
ce:ae:74:06:8a:b7:0c:fc:08:16:94:87:63:47:03:
0f:ed:85:03:7b:78:da:d4:28:75:e7:42:e0:0a:c9:
ab:54:92:5d:b8:3f:46:d4:cf:54:5c:6d:65:89:07:
5d:de:dc:a7:0a:4d:0c:d6:f7:d9:d3:d5:02:1b:7c:
e0:50:93:79:cb:0f:c3:fb:eb:c1:13:77:26:0f:f8:
20:6f:77:ab:09:5f:e6:97:cb:da:74:bf:0d:6a:09:
36:94:d1:ab:71:28:ff:76:80:56:0f:13:64:6e:67:
80:5c:f2:32:41:e6:a7:2a:5f:64:5c:98:1d:48:81:
10:e2:73:c2:d3:0d:eb:ef:d0:4b:bf:4f:50:44:8a:
16:39:b1:d2:9c:c9:ef:05:df:cd:f8:49:d3:16:6b:
37:67:6a:91:6d:aa:1f:2d:4e:fe:f6:b8:0b:e1:f9:
51:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:9F:D4:AA:B6:94:D3:C3:72:98:8F:87:89:E5:A6:71:B7:B7:12:EF
X509v3 Authority Key Identifier:
keyid:32:C2:BE:48:3F:F2:7B:B8:F0:DC:09:CE:0F:71:F2:A8:8E:AF:7E:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MsK-SD_ye7jw3AnOD3HyqI6vfgc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/ff00c4-b728-44a0-962d-973db9ce68b5/1/MsK-SD_ye7jw3AnOD3HyqI6vfgc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/ff00c4-b728-44a0-962d-973db9ce68b5/1/MsK-SD_ye7jw3AnOD3HyqI6vfgc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:8f:d2:64:82:8a:02:f9:b0:cb:4a:16:df:1e:b6:a7:43:06:
49:21:b3:58:15:b7:98:7d:d8:63:c7:d0:09:6e:17:b8:9f:d7:
f7:a5:63:64:9a:4f:6e:f0:8f:90:08:de:3a:a3:95:c3:b4:61:
94:18:71:4e:63:38:c8:2d:b7:19:4f:61:39:fa:c2:0c:c9:18:
3d:3c:ea:ee:0b:45:2b:88:0e:bf:80:e7:66:69:3e:e4:95:84:
82:1a:0b:ca:cc:17:31:98:90:16:28:67:bc:43:04:37:5e:9e:
ec:57:e6:58:59:a4:b4:25:46:b6:17:71:14:b9:33:da:00:fe:
8f:d1:b1:8e:0c:37:39:8a:ac:ec:2e:cc:11:5c:51:3c:b8:36:
02:36:eb:07:24:94:f4:25:ba:88:35:7e:1a:b0:20:57:9e:a4:
d3:92:fc:21:df:3b:76:ef:52:aa:5e:d7:9b:5a:86:0c:8a:0b:
1b:8c:87:b1:78:c8:04:66:be:f9:7d:f9:d6:59:50:50:ca:10:
67:9f:22:d9:36:ae:1b:43:49:6d:5c:b2:6d:cf:04:87:44:e3:
c3:eb:f2:a3:26:26:1a:bc:c7:40:82:b1:0a:61:3f:83:19:05:
23:5e:df:dd:f0:d6:d6:5d:65:23:a7:63:f6:a2:f2:8f:b1:5a:
f5:0c:8f:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:21:38 2025 by rpki-client