Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.mft
File: MKNPnR29IKqH-w9ivStsXjDGFKI.mft (raw, json)
Hash identifier: ejk4CHLP2hsrb4H6M/689Ja7YsERBoWvkFGZ4E+aDKM=
Subject key identifier: 94:3F:E7:9F:57:B1:4D:44:55:49:88:F2:E3:75:D3:E4:0B:C9:03:D1
Authority key identifier: 30:A3:4F:9D:1D:BD:20:AA:87:FB:0F:62:BD:2B:6C:5E:30:C6:14:A2
Certificate issuer: /CN=30a34f9d1dbd20aa87fb0f62bd2b6c5e30c614a2
Certificate serial: 01993236634CF5F3E3463EF2ABDFE6ACE43A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MKNPnR29IKqH-w9ivStsXjDGFKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.mft
Manifest number: 072E
Signing time: Wed 10 Sep 2025 06:00:49 +0000
Manifest this update: Wed 10 Sep 2025 06:00:49 +0000
Manifest next update: Thu 11 Sep 2025 06:00:49 +0000
Files and hashes: 1: MKNPnR29IKqH-w9ivStsXjDGFKI.crl (hash: b1dc0/qQn/AnGZ9bTbIAQSJUcRUJ7GIFjbq/AEQx+D8=)
2: lQVHGnH2f0hNssZzIKkiu_JR2tg.roa (hash: Hp6I2j7udVV6xzpCwEdfm0+ifgsw+yYFCuK3YkNFaBk=)
3: lblIM2FJQ_WVf-a4mFWu5Otgr-A.roa (hash: dTACe68AOYRTGOWM2bf2NFYllivUWP/q40LE4fNKxno=)
4: uvBnSEDJOZtpJ8-9ltvsweOU25c.roa (hash: 2+1fknRQCOLLbsPXAtonbLFlD1W2x7Jyk80s3qNwpCY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.mft
rsync://rpki.ripe.net/repository/DEFAULT/MKNPnR29IKqH-w9ivStsXjDGFKI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 02:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:32:36:63:4c:f5:f3:e3:46:3e:f2:ab:df:e6:ac:e4:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30a34f9d1dbd20aa87fb0f62bd2b6c5e30c614a2
Validity
Not Before: Sep 10 06:00:49 2025 GMT
Not After : Sep 11 06:00:49 2025 GMT
Subject: CN=943fe79f57b14d44554988f2e375d3e40bc903d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:24:b7:ec:ff:5a:ee:de:7e:5f:ed:25:c7:21:
98:3a:7f:17:a3:1e:59:3f:8a:7f:78:06:33:54:6b:
11:73:f4:3b:e9:b0:8b:5e:54:bf:f8:c2:27:e4:58:
07:a5:2d:13:d3:78:5b:1d:07:c6:a2:7e:17:73:f9:
36:24:a3:6d:9e:e4:cc:80:16:f7:a8:5e:81:95:9e:
91:d5:d3:c1:54:8a:25:3c:07:0a:f8:0d:b4:05:1d:
5a:54:e0:ba:7d:b1:46:d9:18:b4:0a:d0:46:4d:af:
59:17:3d:e5:b6:0b:f1:75:b6:ce:ce:c4:f1:77:d5:
47:31:82:43:ba:d8:9a:a4:9d:c0:63:81:cb:b4:5a:
de:2f:a2:9d:c1:8f:3d:3c:6d:91:62:60:ed:c9:fe:
20:a8:20:22:bd:b1:ba:c9:a0:9e:86:33:40:71:f9:
8d:ed:4d:ea:b0:a0:6b:22:18:ae:c0:95:15:7d:3c:
f6:ea:cb:bb:47:dc:29:e8:c0:61:bc:fb:67:42:0f:
21:67:de:6b:65:87:0e:33:5e:1a:e2:a0:e5:4f:4b:
50:74:ae:eb:94:6c:5c:6f:af:df:82:7a:57:19:93:
63:50:ab:aa:c6:6b:10:7c:4e:6f:fa:83:1a:4e:c6:
c7:16:25:af:37:df:ad:77:76:56:53:52:57:33:16:
2d:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:3F:E7:9F:57:B1:4D:44:55:49:88:F2:E3:75:D3:E4:0B:C9:03:D1
X509v3 Authority Key Identifier:
keyid:30:A3:4F:9D:1D:BD:20:AA:87:FB:0F:62:BD:2B:6C:5E:30:C6:14:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MKNPnR29IKqH-w9ivStsXjDGFKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:05:f0:d5:ac:15:16:ea:42:c4:35:a2:de:12:d5:db:25:66:
2d:4e:5f:c6:03:25:cc:fa:91:26:63:1e:51:d9:0c:5d:13:e2:
97:f3:73:b4:80:bc:9d:31:2d:9a:81:62:85:62:7a:13:a5:2c:
79:5d:c9:09:99:a6:3e:0f:dd:b8:e1:44:66:77:d6:b7:cc:ae:
aa:11:fc:49:b2:11:55:27:cd:b6:c9:1d:a9:9e:de:4c:2d:3d:
39:d7:7a:2d:fa:13:b2:0d:d6:6e:b4:ff:d5:e2:85:7e:be:f8:
0e:28:cd:45:d7:95:b5:a0:d8:b2:d5:fa:12:0f:2f:1d:91:74:
ee:c7:48:1f:ea:91:7b:80:2a:b7:68:c0:37:ef:75:23:9e:49:
38:d4:cc:bd:f3:fd:2f:dc:eb:a6:ef:ce:ae:ce:80:93:28:89:
76:ff:4f:05:f4:4d:38:39:da:f2:30:af:42:88:8c:f6:cc:36:
98:68:82:8f:9c:ab:0c:63:c7:e4:40:fd:23:d9:ae:6f:30:29:
0e:1e:20:ad:ec:42:db:5d:83:d4:82:fa:40:0b:54:30:a8:49:
2b:d1:83:2c:72:e1:44:4a:2b:c2:e6:44:77:56:e0:d6:a5:8b:
0b:5a:55:b4:86:a2:64:0f:ac:54:f2:ab:9d:09:7b:e8:29:d1:
00:31:f3:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 09:45:35 2025 by rpki-client