Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.mft
File: MKNPnR29IKqH-w9ivStsXjDGFKI.mft (raw, json)
Hash identifier: 6cwUl84LvuRNiHliY7m5yuPBBQlAdQQWEmL2NtQS2hU=
Subject key identifier: DB:1D:76:73:E2:35:63:B9:C8:73:8E:ED:56:87:7F:E3:65:41:04:53
Authority key identifier: 30:A3:4F:9D:1D:BD:20:AA:87:FB:0F:62:BD:2B:6C:5E:30:C6:14:A2
Certificate issuer: /CN=30a34f9d1dbd20aa87fb0f62bd2b6c5e30c614a2
Certificate serial: 019A1DD0FC1188B0959999A8830D92F8D17A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MKNPnR29IKqH-w9ivStsXjDGFKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.mft
Manifest number: 07A8
Signing time: Sun 26 Oct 2025 00:00:26 +0000
Manifest this update: Sun 26 Oct 2025 00:00:26 +0000
Manifest next update: Mon 27 Oct 2025 00:00:26 +0000
Files and hashes: 1: MKNPnR29IKqH-w9ivStsXjDGFKI.crl (hash: spr3nDSGLc/5yYGVyiwrzIZoyGj4AHRhIqi26Wf6fms=)
2: lQVHGnH2f0hNssZzIKkiu_JR2tg.roa (hash: Hp6I2j7udVV6xzpCwEdfm0+ifgsw+yYFCuK3YkNFaBk=)
3: lblIM2FJQ_WVf-a4mFWu5Otgr-A.roa (hash: dTACe68AOYRTGOWM2bf2NFYllivUWP/q40LE4fNKxno=)
4: uvBnSEDJOZtpJ8-9ltvsweOU25c.roa (hash: 2+1fknRQCOLLbsPXAtonbLFlD1W2x7Jyk80s3qNwpCY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.mft
rsync://rpki.ripe.net/repository/DEFAULT/MKNPnR29IKqH-w9ivStsXjDGFKI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 20:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1d:d0:fc:11:88:b0:95:99:99:a8:83:0d:92:f8:d1:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30a34f9d1dbd20aa87fb0f62bd2b6c5e30c614a2
Validity
Not Before: Oct 26 00:00:26 2025 GMT
Not After : Oct 27 00:00:26 2025 GMT
Subject: CN=db1d7673e23563b9c8738eed56877fe365410453
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:0e:f3:f4:f9:07:ef:37:f6:26:e7:f3:2f:9e:
e7:0f:51:b6:a8:30:af:f8:00:32:ef:13:c7:20:8d:
27:b3:87:63:65:e6:c0:99:82:f5:70:b0:c6:f9:41:
88:d2:4c:0f:83:08:e9:c5:95:0e:5e:85:c3:31:fa:
53:00:25:c8:7e:06:2b:77:62:17:18:03:84:49:f1:
40:ab:e0:26:aa:b7:1f:0e:61:34:2c:a7:67:7d:92:
e0:5f:35:d7:08:e1:4e:a6:b7:a0:0c:43:c7:0c:9e:
d5:ce:3f:6e:1c:25:33:5e:47:1e:ff:ab:c0:97:d7:
cf:0e:13:52:be:5e:dd:76:13:d3:ba:2c:69:de:aa:
e1:b5:2a:a9:10:e6:f3:45:01:f6:41:9a:f4:da:19:
9c:d8:10:39:30:82:d5:85:1b:ed:1f:6e:3a:b9:07:
da:e7:a2:75:3e:e5:ae:c9:91:fb:86:57:0c:e9:f4:
a4:a4:32:61:49:8c:a4:25:21:63:b7:13:e7:03:6c:
8b:d8:4d:5d:32:e5:83:73:ca:b6:2c:e7:2d:cb:e7:
5b:ed:be:ff:eb:74:e7:52:2c:e3:49:5c:11:b1:75:
e6:1c:12:bb:ce:c0:09:5c:17:8f:d1:1b:f9:48:c5:
ec:93:29:dc:64:4c:ca:86:de:54:ad:d9:dd:00:f2:
c8:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:1D:76:73:E2:35:63:B9:C8:73:8E:ED:56:87:7F:E3:65:41:04:53
X509v3 Authority Key Identifier:
keyid:30:A3:4F:9D:1D:BD:20:AA:87:FB:0F:62:BD:2B:6C:5E:30:C6:14:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MKNPnR29IKqH-w9ivStsXjDGFKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:45:85:b8:d2:48:0b:3c:66:f6:48:07:0b:6d:7e:30:28:ac:
84:af:19:1d:03:ea:f8:46:9b:23:2a:67:8d:f2:c0:3a:8e:da:
fa:a1:61:26:f3:8b:78:35:7c:3e:ea:c7:f6:c4:b7:8d:71:a0:
09:02:25:fa:ee:bd:10:29:8a:e9:0c:8c:17:85:b5:87:8c:78:
93:bf:01:b6:b1:9a:f1:d6:1f:bd:dd:90:5e:a5:04:7f:ea:c6:
0b:e8:20:07:2c:7a:5d:7b:6f:fd:cb:12:09:11:e2:5d:b9:07:
8b:d8:ee:1d:d9:a9:f5:73:fa:8c:ba:04:85:54:f4:84:24:ed:
4f:f7:b1:c5:6b:36:c3:c0:1b:58:b1:66:fd:9e:78:9c:e4:fe:
84:27:8a:c6:4d:23:10:44:e1:0b:17:52:3d:a3:05:a1:a7:46:
7d:86:4d:c1:1f:90:6a:17:c5:d0:02:3b:6b:2e:77:0c:aa:fe:
28:3e:32:10:1b:5d:f1:ee:e2:ab:c4:79:de:09:ee:d2:f9:f6:
8b:dd:c7:f3:17:d0:3c:27:01:40:3c:e2:9e:6c:07:ef:c2:c2:
75:70:53:84:d9:70:07:c3:11:18:20:1a:5d:e1:a1:b3:c8:b2:
71:88:18:4e:45:fe:81:c9:4f:78:84:42:3f:38:ba:9a:30:25:
3e:fd:c0:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 05:31:13 2025 by rpki-client