Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.mft
File: mk2qT2rA5rwQK2iECirGu1QbQPw.mft (raw, json)
Hash identifier: hV50LIZ/9OQlZMzqCd49DCegNXVeL5uDG30V64PV3Kc=
Subject key identifier: 47:35:8E:94:9C:27:7D:C8:A9:21:17:34:1D:C9:41:E3:15:8A:62:29
Authority key identifier: 9A:4D:AA:4F:6A:C0:E6:BC:10:2B:68:84:0A:2A:C6:BB:54:1B:40:FC
Certificate issuer: /CN=9a4daa4f6ac0e6bc102b68840a2ac6bb541b40fc
Certificate serial: 019923A0A05CC186CD37A7AD610B7C2E27C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mk2qT2rA5rwQK2iECirGu1QbQPw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.mft
Manifest number: 0668
Signing time: Sun 07 Sep 2025 10:02:33 +0000
Manifest this update: Sun 07 Sep 2025 10:02:33 +0000
Manifest next update: Mon 08 Sep 2025 10:02:33 +0000
Files and hashes: 1: j0Asbb5ngsOWlyvv7kth_3yoBYM.roa (hash: O/JfF/netiv5OyRHt3hhhICYzLbMzCW+fJQdQl7HVfM=)
2: mk2qT2rA5rwQK2iECirGu1QbQPw.crl (hash: L16YLuPMcACMdhTlxzl9Mes9mxukPhKqJH3d7izKjs8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.mft
rsync://rpki.ripe.net/repository/DEFAULT/mk2qT2rA5rwQK2iECirGu1QbQPw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:a0:a0:5c:c1:86:cd:37:a7:ad:61:0b:7c:2e:27:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a4daa4f6ac0e6bc102b68840a2ac6bb541b40fc
Validity
Not Before: Sep 7 10:02:33 2025 GMT
Not After : Sep 8 10:02:33 2025 GMT
Subject: CN=47358e949c277dc8a92117341dc941e3158a6229
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b9:50:b1:ae:d4:3f:23:7d:38:cf:89:12:85:
9d:30:1b:e2:69:ed:71:1c:99:41:02:6b:28:00:d4:
90:f8:f0:38:46:80:c1:cb:a7:83:f8:48:2c:33:e2:
d3:42:7f:3c:c1:b8:96:b5:0a:e8:9b:7d:a0:b2:5c:
de:a6:74:4c:9b:53:bf:d3:c3:d0:3e:6b:40:90:b7:
ad:3a:3b:35:73:51:aa:24:c8:e8:d8:1c:0a:a4:ea:
cf:53:d6:2d:ce:2f:a0:29:7e:cd:0e:1b:01:5c:e6:
79:62:b9:40:0e:9f:f5:33:8e:b1:ca:70:ce:41:58:
17:1a:34:21:57:e5:f0:77:62:b7:e3:ef:c2:27:08:
32:96:03:cc:2e:75:ff:ce:88:a0:9e:f4:be:08:1d:
a6:0c:66:6a:bf:1a:f3:a3:a8:d5:70:4f:83:e9:6c:
66:83:05:4e:e0:e3:1e:eb:84:37:e4:ba:4a:ba:fc:
b2:80:33:3b:29:ab:6f:e2:3a:a0:20:fc:a7:57:5f:
88:77:a6:5f:9f:5e:ee:9a:3f:04:55:d3:9a:c9:71:
31:7c:e9:df:83:05:3d:94:5f:72:b0:ab:1f:c3:d3:
e4:62:59:47:7c:77:c8:c9:69:b6:5e:7d:d6:96:ff:
96:87:c3:68:2e:58:c0:e9:d6:f2:16:9d:73:74:33:
98:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:35:8E:94:9C:27:7D:C8:A9:21:17:34:1D:C9:41:E3:15:8A:62:29
X509v3 Authority Key Identifier:
keyid:9A:4D:AA:4F:6A:C0:E6:BC:10:2B:68:84:0A:2A:C6:BB:54:1B:40:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mk2qT2rA5rwQK2iECirGu1QbQPw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:22:2b:ca:a0:f4:9c:5b:d5:9a:2b:ae:d3:93:b3:48:b8:85:
46:3a:4a:fa:c8:17:45:a6:11:fe:af:26:34:3f:11:19:cf:1c:
e6:f0:fa:a2:31:4c:47:0d:3f:c0:cc:4e:21:ce:89:88:7b:c9:
33:be:8e:7d:76:0c:3c:bd:51:14:cb:47:a4:50:cc:d9:f5:5c:
d6:e1:8d:db:d1:0f:c3:74:ac:64:a4:f4:12:18:08:61:0a:cd:
2e:e0:24:1d:63:83:53:c0:9a:cb:1c:86:2b:7b:c6:6b:a0:bd:
6b:02:49:7b:17:d8:7e:39:8a:fb:a5:05:e5:fb:ee:3e:6a:fd:
44:e2:b2:24:26:97:ba:f7:8d:7d:6a:5f:f8:b4:ca:f9:95:ae:
99:3c:5f:4a:98:b4:d1:79:dd:89:f6:a7:6f:6f:79:3c:ff:8a:
e5:7e:e0:1a:da:07:7e:d3:a0:48:d3:a5:02:df:a8:49:a1:87:
48:53:19:60:b5:90:7a:1f:e2:9f:18:f8:0a:ff:d8:6f:45:67:
78:78:d7:09:cc:fd:81:e1:31:d2:e2:1c:c2:a2:9d:df:8a:c6:
e3:15:62:c3:78:47:37:c0:90:c3:cf:06:ff:31:c1:d3:ec:80:
aa:67:bf:d0:e8:2c:b4:c1:07:ba:4c:61:9c:97:98:37:de:d2:
bd:1a:86:9f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkjoKBcwYbNN6etYQt8LifFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlhNGRhYTRmNmFjMGU2YmMxMDJiNjg4NDBhMmFjNmJiNTQx
YjQwZmMwHhcNMjUwOTA3MTAwMjMzWhcNMjUwOTA4MTAwMjMzWjAzMTEwLwYDVQQD
Eyg0NzM1OGU5NDljMjc3ZGM4YTkyMTE3MzQxZGM5NDFlMzE1OGE2MjI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw7lQsa7UPyN9OM+JEoWdMBviae1x
HJlBAmsoANSQ+PA4RoDBy6eD+EgsM+LTQn88wbiWtQrom32gslzepnRMm1O/08PQ
PmtAkLetOjs1c1GqJMjo2BwKpOrPU9Ytzi+gKX7NDhsBXOZ5YrlADp/1M46xynDO
QVgXGjQhV+Xwd2K34+/CJwgylgPMLnX/zoignvS+CB2mDGZqvxrzo6jVcE+D6Wxm
gwVO4OMe64Q35LpKuvyygDM7Katv4jqgIPynV1+Id6Zfn17umj8EVdOayXExfOnf
gwU9lF9ysKsfw9PkYllHfHfIyWm2Xn3Wlv+Wh8NoLljA6dbyFp1zdDOYGwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEc1jpScJ33IqSEXNB3JQeMVimIpMB8GA1UdIwQY
MBaAFJpNqk9qwOa8ECtohAoqxrtUG0D8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbWsycVQyckE1cndRSzJpRUNpckd1MVFiUVB3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny9jZDQ2MjQtNjIwYS00Y2IyLWE0MTYt
NmJlOTJiMWFhOGIzLzEvbWsycVQyckE1cndRSzJpRUNpckd1MVFiUVB3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ny9jZDQ2MjQtNjIwYS00Y2IyLWE0MTYtNmJlOTJiMWFhOGIz
LzEvbWsycVQyckE1cndRSzJpRUNpckd1MVFiUVB3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiiIryqD0
nFvVmiuu05OzSLiFRjpK+sgXRaYR/q8mND8RGc8c5vD6ojFMRw0/wMxOIc6JiHvJ
M76OfXYMPL1RFMtHpFDM2fVc1uGN29EPw3SsZKT0EhgIYQrNLuAkHWODU8CayxyG
K3vGa6C9awJJexfYfjmK+6UF5fvuPmr9ROKyJCaXuveNfWpf+LTK+ZWumTxfSpi0
0Xndifanb295PP+K5X7gGtoHftOgSNOlAt+oSaGHSFMZYLWQeh/inxj4Cv/Yb0Vn
eHjXCcz9geEx0uIcwqKd34rG4xViw3hHN8CQw88G/zHB0+yAqme/0OgstMEHukxh
nJeYN97SvRqGnw==
-----END CERTIFICATE-----
Generated at Sun Sep 7 12:24:13 2025 by rpki-client