Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
File: mkM22h63IW4g7ASn8DHrShtjG7M.mft (raw, json)
Hash identifier: p/KJ+WFJ3NTtAmOW0oWR3D30YZIZPDbHU+zyf8z4Q1Y=
Subject key identifier: 2A:D6:C8:DA:82:03:FF:05:15:FD:60:48:64:E4:B9:32:73:A7:D2:02
Authority key identifier: 9A:43:36:DA:1E:B7:21:6E:20:EC:04:A7:F0:31:EB:4A:1B:63:1B:B3
Certificate issuer: /CN=9a4336da1eb7216e20ec04a7f031eb4a1b631bb3
Certificate serial: 0197488D07D8955E1C23142804DA053CFE9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
Manifest number: 157C
Signing time: Sat 07 Jun 2025 04:01:31 +0000
Manifest this update: Sat 07 Jun 2025 04:01:31 +0000
Manifest next update: Sun 08 Jun 2025 04:01:31 +0000
Files and hashes: 1: 91oUMgCP74fspZxBBljzGiQPBlI.roa (hash: Ys2eA6I4wLf+Ld2RnHYB/UxEHZh1MaBORWqhbF+NkdI=)
2: mkM22h63IW4g7ASn8DHrShtjG7M.crl (hash: bOrqbA0/fxonOveJ507C1anMXY7X5NiDwfjD7eFoiqc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 04:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8d:07:d8:95:5e:1c:23:14:28:04:da:05:3c:fe:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a4336da1eb7216e20ec04a7f031eb4a1b631bb3
Validity
Not Before: Jun 7 04:01:31 2025 GMT
Not After : Jun 8 04:01:31 2025 GMT
Subject: CN=2ad6c8da8203ff0515fd604864e4b93273a7d202
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:82:93:45:ae:4c:d2:27:25:f3:29:9d:d1:3e:
a7:11:68:3e:10:aa:ca:02:d3:47:d9:83:a2:75:07:
8a:f9:47:ad:bd:19:ee:6a:1c:cf:d9:07:08:1e:9d:
c3:c0:3c:70:d1:15:c1:7b:8f:fc:41:22:9d:af:24:
d5:bd:57:49:22:3a:9c:a8:ae:19:b3:6b:3e:50:d3:
29:6b:2a:12:a6:bd:c5:c5:2a:d7:a5:22:9f:00:02:
64:c2:13:63:fb:15:6c:64:5a:e3:85:ae:53:0e:f8:
8a:fc:9c:70:aa:e6:7a:b1:9b:f0:02:23:5d:b1:48:
3b:73:43:85:17:1c:f6:4e:dc:fb:6e:02:5e:c7:44:
db:9b:ce:04:c0:1e:a3:38:e4:c0:d2:30:8f:45:23:
59:b5:b5:3d:04:a2:21:7d:52:35:08:2e:3a:c6:d1:
92:b7:3e:89:82:c2:22:24:cf:17:6b:e3:2f:cd:00:
54:e6:b5:bb:0c:f2:84:88:6e:41:ab:38:94:68:2e:
ea:5a:cd:a6:47:ee:86:8f:94:b0:17:11:cc:1e:93:
d7:48:36:1e:cf:12:ae:fb:b8:9e:7b:98:1d:44:d1:
80:ca:38:d8:9b:49:2e:1a:d1:35:99:e9:40:e9:d8:
cd:a9:49:91:11:29:c7:be:21:72:67:ee:e7:0b:bb:
16:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:D6:C8:DA:82:03:FF:05:15:FD:60:48:64:E4:B9:32:73:A7:D2:02
X509v3 Authority Key Identifier:
keyid:9A:43:36:DA:1E:B7:21:6E:20:EC:04:A7:F0:31:EB:4A:1B:63:1B:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:37:f4:23:48:d2:c9:23:fc:85:4e:d2:a7:14:c0:37:32:12:
75:72:ba:fc:88:67:fe:03:26:cc:01:11:88:8b:f4:36:92:a0:
86:dd:2b:93:a2:38:27:2e:5f:5d:ce:8e:c5:91:d9:2b:f4:77:
d1:d3:32:da:82:70:29:cf:42:3f:af:52:4a:f6:95:0d:8f:3c:
53:04:e0:d0:a5:35:f2:8b:fb:a0:49:e3:5b:a1:4f:dd:5b:fa:
d8:14:9b:78:d1:dc:ed:eb:75:9f:b0:c4:c3:85:81:91:d2:e0:
52:a4:20:fe:da:22:60:87:c1:9e:2e:b1:8f:60:6e:f2:97:c9:
76:43:a4:83:4f:59:b0:96:d4:b9:cb:a8:d8:cb:31:fd:86:b8:
03:c9:b9:ae:a7:35:7d:92:e7:56:7c:94:78:1a:18:28:fe:9a:
b8:8b:61:a3:51:5c:e4:51:52:39:08:94:62:c8:b7:c8:be:f4:
2b:c7:cc:65:e5:d7:4f:9c:8e:0a:ec:74:c2:71:46:d9:f5:b2:
d1:e4:c9:79:69:28:21:7f:76:ef:a4:a9:a3:a6:24:2e:9f:97:
6a:66:f5:46:a0:b6:b3:19:81:d8:2a:c7:1f:33:28:d2:99:bc:
c3:dc:54:9a:e1:d0:4d:95:88:d3:cf:2f:4a:e8:3f:0f:22:3f:
ba:28:c2:54
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdIjQfYlV4cIxQoBNoFPP6cMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlhNDMzNmRhMWViNzIxNmUyMGVjMDRhN2YwMzFlYjRhMWI2
MzFiYjMwHhcNMjUwNjA3MDQwMTMxWhcNMjUwNjA4MDQwMTMxWjAzMTEwLwYDVQQD
EygyYWQ2YzhkYTgyMDNmZjA1MTVmZDYwNDg2NGU0YjkzMjczYTdkMjAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3oKTRa5M0icl8ymd0T6nEWg+EKrK
AtNH2YOidQeK+UetvRnuahzP2QcIHp3DwDxw0RXBe4/8QSKdryTVvVdJIjqcqK4Z
s2s+UNMpayoSpr3FxSrXpSKfAAJkwhNj+xVsZFrjha5TDviK/JxwquZ6sZvwAiNd
sUg7c0OFFxz2Ttz7bgJex0Tbm84EwB6jOOTA0jCPRSNZtbU9BKIhfVI1CC46xtGS
tz6JgsIiJM8Xa+MvzQBU5rW7DPKEiG5BqziUaC7qWs2mR+6Gj5SwFxHMHpPXSDYe
zxKu+7iee5gdRNGAyjjYm0kuGtE1melA6djNqUmRESnHviFyZ+7nC7sWTwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCrWyNqCA/8FFf1gSGTkuTJzp9ICMB8GA1UdIwQY
MBaAFJpDNtoetyFuIOwEp/Ax60obYxuzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbWtNMjJoNjNJVzRnN0FTbjhESHJTaHRqRzdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9hN2U5YjktNmJhYy00NTM4LWE5ZTYt
ZmE4ODA2YTAyNGM0LzEvbWtNMjJoNjNJVzRnN0FTbjhESHJTaHRqRzdNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy9hN2U5YjktNmJhYy00NTM4LWE5ZTYtZmE4ODA2YTAyNGM0
LzEvbWtNMjJoNjNJVzRnN0FTbjhESHJTaHRqRzdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbzf0I0jS
ySP8hU7SpxTANzISdXK6/Ihn/gMmzAERiIv0NpKght0rk6I4Jy5fXc6OxZHZK/R3
0dMy2oJwKc9CP69SSvaVDY88UwTg0KU18ov7oEnjW6FP3Vv62BSbeNHc7et1n7DE
w4WBkdLgUqQg/toiYIfBni6xj2Bu8pfJdkOkg09ZsJbUucuo2Msx/Ya4A8m5rqc1
fZLnVnyUeBoYKP6auItho1Fc5FFSOQiUYsi3yL70K8fMZeXXT5yOCux0wnFG2fWy
0eTJeWkoIX9276Spo6YkLp+Xamb1RqC2sxmB2CrHHzMo0pm8w9xUmuHQTZWI088v
Sug/DyI/uijCVA==
-----END CERTIFICATE-----
Generated at Sat Jun 7 14:05:38 2025 by rpki-client