Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.mft
File: MMOt1700croWgExJC2ahCXZZvTE.mft (raw, json)
Hash identifier: CAFh8zjQ+7SuB5EdL+Dp3zIJz1RQKu3sOHJGbPNwtOc=
Subject key identifier: 25:40:32:81:76:77:25:7C:A3:CD:71:68:F3:C4:23:0D:BD:24:49:0C
Authority key identifier: 30:C3:AD:D7:BD:34:72:BA:16:80:4C:49:0B:66:A1:09:76:59:BD:31
Certificate issuer: /CN=30c3add7bd3472ba16804c490b66a1097659bd31
Certificate serial: 019A70A54186A15DF0298CC70515CEE92913
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMOt1700croWgExJC2ahCXZZvTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.mft
Manifest number: 0CD1
Signing time: Tue 11 Nov 2025 02:01:09 +0000
Manifest this update: Tue 11 Nov 2025 02:01:09 +0000
Manifest next update: Wed 12 Nov 2025 02:01:09 +0000
Files and hashes: 1: MMOt1700croWgExJC2ahCXZZvTE.crl (hash: Xj/sfs00LE8Y4gzpd2QRWHxyWI1ybvWF6S0fowcUU/U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.mft
rsync://rpki.ripe.net/repository/DEFAULT/MMOt1700croWgExJC2ahCXZZvTE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 02:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:a5:41:86:a1:5d:f0:29:8c:c7:05:15:ce:e9:29:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c3add7bd3472ba16804c490b66a1097659bd31
Validity
Not Before: Nov 11 02:01:09 2025 GMT
Not After : Nov 12 02:01:09 2025 GMT
Subject: CN=254032817677257ca3cd7168f3c4230dbd24490c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:cc:35:71:25:fc:8c:46:15:b6:9a:9e:29:55:
5e:2d:cf:d8:6b:0f:df:1c:fa:26:63:b0:8b:9c:01:
32:95:dc:52:1c:c6:90:82:cd:6e:ec:20:c4:29:48:
c8:5e:92:2b:5b:55:3b:ca:9e:5f:80:c8:ef:e6:4e:
35:3c:ab:f3:2c:23:3e:95:d9:03:4e:4f:1a:32:79:
3c:9a:65:4d:4b:ea:d5:a0:3f:71:f8:21:3e:57:21:
bd:de:25:34:96:10:bd:a2:be:21:66:cb:49:74:b6:
2c:f9:e3:5b:ea:6f:e2:77:47:31:3f:67:25:97:6d:
bb:4c:9f:26:64:c2:fa:0b:8e:46:30:59:81:cd:6a:
c7:2c:95:dc:f1:2f:77:8c:3f:7f:6a:fd:35:60:60:
09:ee:37:f8:cc:46:e1:6a:90:4d:16:31:a5:e9:42:
42:c9:e7:37:7e:8b:9c:67:e8:8a:ae:af:74:49:28:
10:1e:16:b7:ef:8f:03:11:93:44:e4:f5:16:ea:30:
a5:d1:d1:1f:2c:01:3d:f6:b3:77:b5:0e:c4:00:0a:
fb:b6:a2:8e:02:09:f2:9f:9f:61:07:ba:77:36:9a:
5b:21:f5:dc:9c:15:12:b8:f6:4d:3c:b2:3a:db:bb:
41:a5:9e:9c:33:1c:19:aa:d0:b4:fd:09:2e:36:d3:
e3:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:40:32:81:76:77:25:7C:A3:CD:71:68:F3:C4:23:0D:BD:24:49:0C
X509v3 Authority Key Identifier:
keyid:30:C3:AD:D7:BD:34:72:BA:16:80:4C:49:0B:66:A1:09:76:59:BD:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMOt1700croWgExJC2ahCXZZvTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:0a:44:23:ad:f0:00:5e:08:1b:e0:b7:07:3e:2e:57:42:f0:
64:53:48:04:61:bf:16:96:fe:66:d9:5f:51:70:bd:d2:44:59:
90:47:a5:d0:fb:85:61:07:67:13:53:43:06:69:8d:9a:54:f7:
ff:b0:6a:7d:b0:07:9f:e9:07:b5:ef:de:9d:1c:83:c0:44:89:
27:13:f3:b3:31:00:ba:cc:eb:ca:0a:ab:c1:b2:d1:c5:a2:4c:
09:7f:a5:e2:f6:0a:79:81:8c:1b:44:65:e4:42:1d:54:7d:11:
51:58:70:f0:f1:f6:a7:b4:5c:57:83:cb:a7:97:fd:f6:73:ff:
4b:80:16:28:00:0f:15:5d:ab:99:c9:ff:ee:c7:f5:23:a7:45:
d5:a0:d2:84:e6:1b:7e:6a:f7:bf:9f:80:ee:21:b8:24:d7:27:
6e:73:d1:dc:95:b6:5e:59:35:87:6c:84:d0:93:e3:7d:f9:95:
90:2b:b8:05:45:46:49:1e:cd:e8:04:80:be:91:34:e0:64:95:
df:f5:1a:a8:25:2a:68:e0:7d:87:ef:3d:f6:26:c4:bf:ba:20:
9c:03:72:f9:55:f0:ea:00:22:57:ee:a2:34:6c:89:ed:65:af:
08:9c:6c:02:74:ee:1a:29:23:df:7a:bf:c9:60:a0:cf:ea:00:
cb:c8:0d:86
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpwpUGGoV3wKYzHBRXO6SkTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwYzNhZGQ3YmQzNDcyYmExNjgwNGM0OTBiNjZhMTA5NzY1
OWJkMzEwHhcNMjUxMTExMDIwMTA5WhcNMjUxMTEyMDIwMTA5WjAzMTEwLwYDVQQD
EygyNTQwMzI4MTc2NzcyNTdjYTNjZDcxNjhmM2M0MjMwZGJkMjQ0OTBjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo8w1cSX8jEYVtpqeKVVeLc/Yaw/f
HPomY7CLnAEyldxSHMaQgs1u7CDEKUjIXpIrW1U7yp5fgMjv5k41PKvzLCM+ldkD
Tk8aMnk8mmVNS+rVoD9x+CE+VyG93iU0lhC9or4hZstJdLYs+eNb6m/id0cxP2cl
l227TJ8mZML6C45GMFmBzWrHLJXc8S93jD9/av01YGAJ7jf4zEbhapBNFjGl6UJC
yec3foucZ+iKrq90SSgQHha3748DEZNE5PUW6jCl0dEfLAE99rN3tQ7EAAr7tqKO
Agnyn59hB7p3NppbIfXcnBUSuPZNPLI627tBpZ6cMxwZqtC0/QkuNtPjNQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCVAMoF2dyV8o81xaPPEIw29JEkMMB8GA1UdIwQY
MBaAFDDDrde9NHK6FoBMSQtmoQl2Wb0xMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTU1PdDE3MDBjcm9XZ0V4SkMyYWhDWFpadlRFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi8yM2NjYzgtNDcxOC00NTNjLWJlM2Ut
OTVjZDY5MjRhYjRlLzEvTU1PdDE3MDBjcm9XZ0V4SkMyYWhDWFpadlRFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZi8yM2NjYzgtNDcxOC00NTNjLWJlM2UtOTVjZDY5MjRhYjRl
LzEvTU1PdDE3MDBjcm9XZ0V4SkMyYWhDWFpadlRFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmApEI63w
AF4IG+C3Bz4uV0LwZFNIBGG/Fpb+ZtlfUXC90kRZkEel0PuFYQdnE1NDBmmNmlT3
/7BqfbAHn+kHte/enRyDwESJJxPzszEAuszrygqrwbLRxaJMCX+l4vYKeYGMG0Rl
5EIdVH0RUVhw8PH2p7RcV4PLp5f99nP/S4AWKAAPFV2rmcn/7sf1I6dF1aDShOYb
fmr3v5+A7iG4JNcnbnPR3JW2Xlk1h2yE0JPjffmVkCu4BUVGSR7N6ASAvpE04GSV
3/UaqCUqaOB9h+899ibEv7ognANy+VXw6gAiV+6iNGyJ7WWvCJxsAnTuGikj33q/
yWCgz+oAy8gNhg==
-----END CERTIFICATE-----
Generated at Tue Nov 11 12:46:58 2025 by rpki-client