Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
File: mkM22h63IW4g7ASn8DHrShtjG7M.mft (raw, json)
Hash identifier: elE5DHwaodNyBIGcKcKQDmNvvDhMvIgTxrsZ2xsGaV4=
Subject key identifier: 95:6A:F1:49:E6:09:BD:19:B3:3A:9D:0D:4C:96:04:CA:68:22:C0:40
Authority key identifier: 9A:43:36:DA:1E:B7:21:6E:20:EC:04:A7:F0:31:EB:4A:1B:63:1B:B3
Certificate issuer: /CN=9a4336da1eb7216e20ec04a7f031eb4a1b631bb3
Certificate serial: 019A150502F0169FA20079D1FBF63A5A98CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
Manifest number: 16EF
Signing time: Fri 24 Oct 2025 07:00:41 +0000
Manifest this update: Fri 24 Oct 2025 07:00:41 +0000
Manifest next update: Sat 25 Oct 2025 07:00:41 +0000
Files and hashes: 1: 91oUMgCP74fspZxBBljzGiQPBlI.roa (hash: Ys2eA6I4wLf+Ld2RnHYB/UxEHZh1MaBORWqhbF+NkdI=)
2: mkM22h63IW4g7ASn8DHrShtjG7M.crl (hash: hL7W5ehJX8RH/LdTbFkQ/Lcs+/a45FeVERR9XBmXQVo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 25 Oct 2025 07:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:15:05:02:f0:16:9f:a2:00:79:d1:fb:f6:3a:5a:98:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a4336da1eb7216e20ec04a7f031eb4a1b631bb3
Validity
Not Before: Oct 24 07:00:41 2025 GMT
Not After : Oct 25 07:00:41 2025 GMT
Subject: CN=956af149e609bd19b33a9d0d4c9604ca6822c040
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:78:e8:3a:bd:cd:6f:62:d5:ae:a1:80:c1:ef:
96:b2:79:a7:73:d6:5a:36:a1:97:ea:2c:9a:f3:62:
42:9f:38:ca:ae:a8:25:be:a6:7c:6b:84:bc:38:2b:
4a:b7:aa:e1:98:fd:83:ef:5a:fc:81:ac:a2:89:b7:
b3:d5:9a:9c:41:b1:8f:bd:aa:31:ac:1b:4a:df:23:
f6:df:8f:43:d9:f9:dc:7a:b3:25:36:e9:a6:f3:93:
21:93:33:8d:1e:ce:2b:f9:2a:68:a8:a7:c7:ca:95:
9b:f9:9d:f5:ec:20:46:73:c1:fe:ca:19:1f:5b:e6:
d1:3c:5e:dc:06:00:6a:fa:33:3a:c8:b1:06:5a:da:
0e:4f:c4:0b:23:b1:c8:85:12:cd:56:09:48:52:3c:
4b:68:15:2f:d1:63:bd:09:75:30:58:a9:ac:55:8d:
9e:a6:e7:d7:fc:dc:18:33:81:c5:45:fd:3e:d3:63:
5f:27:94:4d:d3:09:c6:35:8d:8f:75:0d:6b:d0:31:
df:1f:a5:1b:aa:aa:ec:ba:93:28:39:34:6e:0d:ff:
eb:fa:27:98:70:e2:de:9b:66:42:5d:b4:34:a5:d6:
79:59:7b:5c:e7:05:cb:45:d5:93:c3:43:6f:e0:9c:
7a:a8:d6:43:42:45:39:2d:8f:da:0a:10:a6:f7:c6:
f5:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:6A:F1:49:E6:09:BD:19:B3:3A:9D:0D:4C:96:04:CA:68:22:C0:40
X509v3 Authority Key Identifier:
keyid:9A:43:36:DA:1E:B7:21:6E:20:EC:04:A7:F0:31:EB:4A:1B:63:1B:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:aa:e0:53:dc:c9:13:dd:5d:d0:45:8b:dc:f3:2f:79:d5:1f:
55:19:79:56:27:16:9b:82:8f:48:97:75:05:cb:65:ee:90:b8:
90:2b:61:c0:0c:d8:ea:9e:0e:8a:6b:69:4e:e9:74:cc:6d:4b:
36:56:e2:38:69:8d:56:fb:e0:f9:3d:a3:cb:ba:69:79:63:60:
e2:46:a9:53:0a:28:dc:0c:96:34:2a:36:53:bb:34:a8:e9:46:
cc:8b:45:ee:57:0e:cc:33:ee:2a:be:75:0d:de:85:9d:9e:30:
c1:09:ee:31:d3:4c:e5:07:00:ab:b4:8f:89:9c:4f:c4:81:28:
ed:f7:17:c3:f1:5c:81:20:c3:50:90:2b:9f:85:52:ea:25:95:
f4:eb:ad:68:da:46:10:e7:69:67:9e:29:dd:93:f0:73:08:c3:
2f:0d:6a:a8:6c:4c:50:fc:77:2d:e8:8e:d0:ad:be:4d:d6:df:
ac:e4:f9:6a:f7:ce:9e:2a:1c:64:bc:83:61:3e:b5:c4:32:82:
e4:e6:58:33:a2:75:a5:49:82:ed:98:f6:8a:1d:20:b9:7d:2a:
f2:07:9c:d9:20:2d:0c:46:2d:f8:33:5b:99:95:57:8c:cc:2f:
07:ff:83:2a:d9:42:ce:c7:93:21:58:a4:dc:b6:a0:f8:47:be:
fb:6a:6f:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 24 17:49:16 2025 by rpki-client