Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/MNWOQMbZHzcp5X4zRNMItZkv5G4.mft
File: MNWOQMbZHzcp5X4zRNMItZkv5G4.mft (raw, json)
Hash identifier: EbxsjWL+5djM/6bdzF0IMIRG5JgAZeToEhugZqtS0Os=
Subject key identifier: 91:B6:1E:D6:ED:FE:CA:C9:FC:67:9B:B4:FD:C9:A4:1E:F9:68:89:FB
Authority key identifier: 30:D5:8E:40:C6:D9:1F:37:29:E5:7E:33:44:D3:08:B5:99:2F:E4:6E
Certificate issuer: /CN=30d58e40c6d91f3729e57e3344d308b5992fe46e
Certificate serial: 0199221E47CB1103393B9EFFAABEB208882C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MNWOQMbZHzcp5X4zRNMItZkv5G4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/MNWOQMbZHzcp5X4zRNMItZkv5G4.mft
Manifest number: 0B69
Signing time: Sun 07 Sep 2025 03:00:33 +0000
Manifest this update: Sun 07 Sep 2025 03:00:33 +0000
Manifest next update: Mon 08 Sep 2025 03:00:33 +0000
Files and hashes: 1: BhR4gh6niMuAg5TJ32ur0BjKaqs.roa (hash: Zv2rwkQ5zJHX1INCUgBx9oQ77dKwpoY1KIJrtlNZemo=)
2: MNWOQMbZHzcp5X4zRNMItZkv5G4.crl (hash: AghqbgdrmWv2APTSkH9/gqqm49rynx87Q7w98BFc/0s=)
3: XXRk-2utC2qSFmq343z5VXrm2u4.roa (hash: ytRglwlu3WOrTr72XPTW+Woc0VzZSF5e3VxmBUNFs3g=)
4: Xp6Av0k8Jw85tGpea19kV0rC7zU.roa (hash: HoTKGzCgPJaXTFRgn8HDd9Uw/rl7lFS8MklAEJByUKE=)
5: uaxf2AGptn0k5nSChIQ5U9I-OzM.roa (hash: bH20ytgUK7nqS56x69xVlTEkEDFzbypHFv+jFwf5Z1I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/MNWOQMbZHzcp5X4zRNMItZkv5G4.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/MNWOQMbZHzcp5X4zRNMItZkv5G4.mft
rsync://rpki.ripe.net/repository/DEFAULT/MNWOQMbZHzcp5X4zRNMItZkv5G4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1e:47:cb:11:03:39:3b:9e:ff:aa:be:b2:08:88:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30d58e40c6d91f3729e57e3344d308b5992fe46e
Validity
Not Before: Sep 7 03:00:33 2025 GMT
Not After : Sep 8 03:00:33 2025 GMT
Subject: CN=91b61ed6edfecac9fc679bb4fdc9a41ef96889fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:3d:d8:93:dc:0f:d1:73:ad:88:6b:50:56:c1:
f0:ec:59:45:6a:e9:74:55:ea:fb:0e:b8:20:e0:ec:
a2:ef:86:a2:a5:f6:ec:bc:51:3a:ed:9b:a8:8f:36:
ea:8a:d0:33:f3:43:f8:bc:4f:6a:73:10:e0:b7:9d:
9c:72:b8:50:72:6d:17:65:59:4a:fe:85:c2:54:2c:
d8:ab:4a:2b:5a:df:50:73:f8:0d:e5:40:b7:df:21:
b8:9b:aa:63:16:09:35:0c:df:25:17:93:0f:22:41:
9c:ac:f8:17:77:83:1a:54:e2:63:53:9c:bc:96:64:
16:cd:af:f5:fd:d4:3b:8e:ef:be:77:02:c1:79:b5:
b7:2a:8d:f5:20:32:d9:a5:77:14:c8:54:6c:78:15:
c5:03:32:41:64:c6:a0:9d:35:e5:59:a4:af:66:58:
ee:e9:5e:0b:ae:83:18:d7:38:20:77:43:7a:40:3e:
61:91:e8:ba:fa:70:e8:07:46:82:7c:0b:6a:b2:52:
3a:7e:2d:b4:58:ee:40:c8:ab:e9:c2:a6:ff:86:56:
13:8e:d5:14:08:23:f8:40:aa:09:ea:bf:af:fb:97:
de:cb:33:fe:69:8e:de:1b:cc:d9:a3:43:d4:1e:cf:
bc:41:d8:4d:b7:23:20:33:df:be:9e:50:39:8e:9b:
f8:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:B6:1E:D6:ED:FE:CA:C9:FC:67:9B:B4:FD:C9:A4:1E:F9:68:89:FB
X509v3 Authority Key Identifier:
keyid:30:D5:8E:40:C6:D9:1F:37:29:E5:7E:33:44:D3:08:B5:99:2F:E4:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MNWOQMbZHzcp5X4zRNMItZkv5G4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/MNWOQMbZHzcp5X4zRNMItZkv5G4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/MNWOQMbZHzcp5X4zRNMItZkv5G4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:a1:a2:e0:f3:b4:00:6c:e6:f5:16:da:62:b6:87:7f:05:0f:
8d:18:0f:cf:1e:2b:4d:95:81:88:09:9f:86:82:3c:52:c0:fd:
a1:a5:62:12:1a:51:ee:df:64:04:e0:fc:8f:9a:cf:a2:89:b1:
28:30:2c:06:8d:31:b9:f6:1e:ac:e5:30:e4:28:02:1e:04:19:
f0:a5:c8:63:83:2c:4e:50:a5:60:8a:81:3c:28:35:3b:b3:a9:
68:2a:c5:47:8e:5d:26:65:00:bb:91:2f:6d:35:68:bc:07:22:
7c:55:0b:54:2e:89:90:88:92:94:7c:e5:c0:68:cc:d2:6a:1a:
cb:f9:c6:e2:6e:18:ac:80:2e:3f:71:bf:35:a6:62:4c:e9:06:
4a:dc:e1:b2:66:7c:95:ac:a7:81:03:93:76:95:fc:fd:8c:e7:
3f:2d:a3:cc:bf:63:d3:df:70:2d:c3:e7:6d:f1:7c:77:bd:f6:
99:4f:a1:29:2c:5c:a8:63:b1:c1:4d:02:5e:38:96:b1:dc:52:
c6:9b:74:eb:76:6a:f4:e7:95:b2:7c:11:e9:79:78:6d:34:cc:
2b:2e:12:f8:30:59:12:ad:0f:17:97:b7:0b:0c:85:91:2e:56:
be:36:ff:83:b7:59:1e:c1:24:32:53:6b:99:41:02:31:64:8d:
72:e0:55:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:09:18 2025 by rpki-client