Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/ff00c4-b728-44a0-962d-973db9ce68b5/1/MsK-SD_ye7jw3AnOD3HyqI6vfgc.mft
File: MsK-SD_ye7jw3AnOD3HyqI6vfgc.mft (raw, json)
Hash identifier: X2SwhyVMSaQARb3d8C8lGJGBEJMA1b9t45WIUMP+4OU=
Subject key identifier: 56:98:AD:49:F7:37:85:AA:62:B5:C1:05:92:2D:23:D3:03:8F:78:74
Authority key identifier: 32:C2:BE:48:3F:F2:7B:B8:F0:DC:09:CE:0F:71:F2:A8:8E:AF:7E:07
Certificate issuer: /CN=32c2be483ff27bb8f0dc09ce0f71f2a88eaf7e07
Certificate serial: 0197499F40FF0F2D85BE5C473C9E72D2E2BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MsK-SD_ye7jw3AnOD3HyqI6vfgc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/ff00c4-b728-44a0-962d-973db9ce68b5/1/MsK-SD_ye7jw3AnOD3HyqI6vfgc.mft
Manifest number: 157F
Signing time: Sat 07 Jun 2025 09:01:02 +0000
Manifest this update: Sat 07 Jun 2025 09:01:02 +0000
Manifest next update: Sun 08 Jun 2025 09:01:02 +0000
Files and hashes: 1: 3Ld3_xMK0PlfZFY-qBwXca5iVGM.roa (hash: CjU6hi/Jh6Zo5sGQ2UDjZfEn9Czpv8lCLYgvh/6NOKs=)
2: MsK-SD_ye7jw3AnOD3HyqI6vfgc.crl (hash: zp1GqZ/L+guXNSZZ04/eZ3awwTXrk4u3d1b/U/BfsmU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/ff00c4-b728-44a0-962d-973db9ce68b5/1/MsK-SD_ye7jw3AnOD3HyqI6vfgc.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/ff00c4-b728-44a0-962d-973db9ce68b5/1/MsK-SD_ye7jw3AnOD3HyqI6vfgc.mft
rsync://rpki.ripe.net/repository/DEFAULT/MsK-SD_ye7jw3AnOD3HyqI6vfgc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:9f:40:ff:0f:2d:85:be:5c:47:3c:9e:72:d2:e2:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32c2be483ff27bb8f0dc09ce0f71f2a88eaf7e07
Validity
Not Before: Jun 7 09:01:02 2025 GMT
Not After : Jun 8 09:01:02 2025 GMT
Subject: CN=5698ad49f73785aa62b5c105922d23d3038f7874
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:9b:be:e0:aa:43:3a:29:2c:de:eb:b8:ad:8b:
48:60:7b:df:a3:81:fb:b7:41:86:39:a6:4f:20:a9:
f0:27:9d:7c:40:9d:71:49:d9:fd:6c:90:10:82:17:
ee:c7:f9:f0:b0:6a:72:6a:47:34:de:e0:59:77:be:
81:36:a3:4a:e2:22:e7:a2:d6:85:56:99:ad:1e:2a:
94:d9:e8:27:c0:d6:08:8e:9e:e5:d9:e7:3d:cb:02:
36:6b:2b:65:80:1f:13:c3:91:9d:9f:7e:05:12:a6:
13:f9:3c:7d:49:a2:15:f8:25:22:4e:1b:51:62:07:
a0:59:6b:71:72:64:b5:00:01:a3:7c:13:aa:5a:2b:
a1:d1:4b:d5:16:60:e4:68:9c:b1:3b:a6:d3:eb:28:
d2:ab:8b:2e:70:67:b5:7a:26:cb:bd:f6:70:da:d0:
87:b1:1d:00:e7:ed:38:8f:dc:1d:4e:94:89:16:2a:
34:e7:7f:be:d8:ff:88:29:eb:5b:72:02:9e:b0:46:
5d:66:62:54:5a:b9:82:56:5f:b1:7d:b5:71:e2:8a:
08:f6:cb:96:0d:8d:88:59:bf:35:04:09:85:53:22:
d9:05:94:b0:13:c4:e1:e9:24:55:27:3c:7c:a1:31:
2c:da:0a:1a:02:32:e0:9e:30:0d:66:8d:c6:c2:e6:
31:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:98:AD:49:F7:37:85:AA:62:B5:C1:05:92:2D:23:D3:03:8F:78:74
X509v3 Authority Key Identifier:
keyid:32:C2:BE:48:3F:F2:7B:B8:F0:DC:09:CE:0F:71:F2:A8:8E:AF:7E:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MsK-SD_ye7jw3AnOD3HyqI6vfgc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/ff00c4-b728-44a0-962d-973db9ce68b5/1/MsK-SD_ye7jw3AnOD3HyqI6vfgc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/ff00c4-b728-44a0-962d-973db9ce68b5/1/MsK-SD_ye7jw3AnOD3HyqI6vfgc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:14:1b:37:41:05:93:4b:39:ad:48:f3:49:25:14:dd:e4:9a:
45:49:1e:ac:e4:df:f3:f9:e8:a9:da:47:71:93:d8:83:0f:95:
b1:3f:0e:fe:c7:c6:0d:f2:ad:5b:4c:3d:cf:66:1e:10:df:ff:
e2:7b:af:75:b5:ee:b2:d4:ac:4b:7e:fb:21:69:31:ac:e4:c3:
42:7f:a6:f5:c0:5e:43:02:a4:62:71:57:40:4b:69:ee:ae:96:
29:7b:d9:7e:ee:7d:4c:80:db:80:0d:52:c8:be:ef:c2:0b:38:
26:9e:5f:24:04:cb:29:9e:36:20:ab:dd:29:b9:3f:f6:d6:16:
92:e7:22:66:ec:7a:de:70:63:d3:34:3d:f1:73:4f:6b:02:1e:
d2:11:f4:45:23:84:78:38:b9:57:cc:4f:a3:53:57:a0:5c:bd:
d5:58:da:cd:18:d9:00:eb:6d:01:96:a3:d8:23:55:83:f3:8d:
18:18:47:e9:30:ef:85:b9:2a:e6:fb:d5:8d:3b:12:4d:c2:9b:
9f:e3:d1:b3:91:5e:0e:4f:58:9f:80:e9:7f:85:b2:44:6a:70:
0d:03:e6:85:69:ff:ee:f1:40:2a:e3:55:32:bb:93:e8:47:8b:
86:5a:15:a0:e4:5d:29:8b:7d:f4:16:8c:5e:9d:cf:44:27:e5:
bf:4e:5d:86
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdJn0D/Dy2FvlxHPJ5y0uK6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMyYzJiZTQ4M2ZmMjdiYjhmMGRjMDljZTBmNzFmMmE4OGVh
ZjdlMDcwHhcNMjUwNjA3MDkwMTAyWhcNMjUwNjA4MDkwMTAyWjAzMTEwLwYDVQQD
Eyg1Njk4YWQ0OWY3Mzc4NWFhNjJiNWMxMDU5MjJkMjNkMzAzOGY3ODc0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqJu+4KpDOiks3uu4rYtIYHvfo4H7
t0GGOaZPIKnwJ518QJ1xSdn9bJAQghfux/nwsGpyakc03uBZd76BNqNK4iLnotaF
VpmtHiqU2egnwNYIjp7l2ec9ywI2aytlgB8Tw5Gdn34FEqYT+Tx9SaIV+CUiThtR
YgegWWtxcmS1AAGjfBOqWiuh0UvVFmDkaJyxO6bT6yjSq4sucGe1eibLvfZw2tCH
sR0A5+04j9wdTpSJFio053++2P+IKetbcgKesEZdZmJUWrmCVl+xfbVx4ooI9suW
DY2IWb81BAmFUyLZBZSwE8Th6SRVJzx8oTEs2goaAjLgnjANZo3GwuYxCwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFaYrUn3N4WqYrXBBZItI9MDj3h0MB8GA1UdIwQY
MBaAFDLCvkg/8nu48NwJzg9x8qiOr34HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTXNLLVNEX3llN2p3M0FuT0QzSHlxSTZ2ZmdjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC9mZjAwYzQtYjcyOC00NGEwLTk2MmQt
OTczZGI5Y2U2OGI1LzEvTXNLLVNEX3llN2p3M0FuT0QzSHlxSTZ2ZmdjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC9mZjAwYzQtYjcyOC00NGEwLTk2MmQtOTczZGI5Y2U2OGI1
LzEvTXNLLVNEX3llN2p3M0FuT0QzSHlxSTZ2ZmdjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkxQbN0EF
k0s5rUjzSSUU3eSaRUkerOTf8/noqdpHcZPYgw+VsT8O/sfGDfKtW0w9z2YeEN//
4nuvdbXustSsS377IWkxrOTDQn+m9cBeQwKkYnFXQEtp7q6WKXvZfu59TIDbgA1S
yL7vwgs4Jp5fJATLKZ42IKvdKbk/9tYWkuciZux63nBj0zQ98XNPawIe0hH0RSOE
eDi5V8xPo1NXoFy91VjazRjZAOttAZaj2CNVg/ONGBhH6TDvhbkq5vvVjTsSTcKb
n+PRs5FeDk9Yn4Dpf4WyRGpwDQPmhWn/7vFAKuNVMruT6EeLhloVoORdKYt99BaM
Xp3PRCflv05dhg==
-----END CERTIFICATE-----
Generated at Sat Jun 7 15:33:44 2025 by rpki-client