Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
File: Mm9RyiOYIQP_40-YkNC3To-nga8.mft (raw, json)
Hash identifier: YN4uq6gjzA5oup2/Hj7Ge8t5QsrwZisPUaCpoeyo9bM=
Subject key identifier: B6:BD:6B:6D:D5:2A:69:B9:5A:BF:04:8A:DE:BE:B3:15:0E:51:E4:C3
Authority key identifier: 32:6F:51:CA:23:98:21:03:FF:E3:4F:98:90:D0:B7:4E:8F:A7:81:AF
Certificate issuer: /CN=326f51ca23982103ffe34f9890d0b74e8fa781af
Certificate serial: 019A7149F8CAFB0A6520DB601F741144A649
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mm9RyiOYIQP_40-YkNC3To-nga8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
Manifest number: 0783
Signing time: Tue 11 Nov 2025 05:01:04 +0000
Manifest this update: Tue 11 Nov 2025 05:01:04 +0000
Manifest next update: Wed 12 Nov 2025 05:01:04 +0000
Files and hashes: 1: Mm9RyiOYIQP_40-YkNC3To-nga8.crl (hash: w4ptaNQB85si4i99vKVlUISrgEHOrgvx4D+hzc2rtuY=)
2: XS-Ybz0hvV9BojCYEUiidWOyx20.roa (hash: rQhYc9pPbBgv4YgNdF82ibLtydUp9AsYJJ57Y6MS2So=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Mm9RyiOYIQP_40-YkNC3To-nga8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:49:f8:ca:fb:0a:65:20:db:60:1f:74:11:44:a6:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=326f51ca23982103ffe34f9890d0b74e8fa781af
Validity
Not Before: Nov 11 05:01:04 2025 GMT
Not After : Nov 12 05:01:04 2025 GMT
Subject: CN=b6bd6b6dd52a69b95abf048adebeb3150e51e4c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:76:d0:0a:f3:46:e5:27:9d:4a:f3:83:86:c5:
9d:a4:3c:89:54:40:33:ba:3c:ab:d0:0a:da:20:46:
94:3f:1e:32:0d:9e:22:dd:1e:70:bb:17:2e:43:73:
c2:f5:55:f8:43:b6:6a:a1:0e:85:e0:67:59:bb:36:
02:3a:cc:a9:28:a8:fe:6e:07:02:a5:05:8f:fc:79:
fa:db:89:c5:22:a5:ee:af:4c:93:ab:e3:70:c8:4c:
52:1c:33:94:2d:4c:8c:cb:93:7a:68:88:44:70:ef:
d4:7e:30:01:9b:49:43:4f:55:8a:bc:e8:91:0c:e0:
21:ee:55:68:35:fb:32:a9:79:c0:56:a4:ed:ea:e3:
dd:96:64:d1:84:4e:90:87:f4:38:39:57:49:94:91:
4e:e3:3e:3a:60:cf:1d:f1:e3:ed:d6:fd:4c:9d:7d:
60:8d:25:24:3f:c7:74:66:ab:d5:64:09:30:54:87:
d4:dc:e9:be:c9:61:d4:a4:67:3e:2b:8d:b0:2a:26:
3b:af:49:8f:07:aa:09:73:2f:ef:7c:54:29:f4:9a:
15:dd:bf:72:86:f9:01:09:c8:72:e3:94:b8:e3:8b:
ff:af:00:25:63:da:bb:13:2a:a5:aa:bd:9d:82:c1:
40:25:d6:a5:26:e1:bd:13:f9:ad:09:84:47:87:4a:
10:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:BD:6B:6D:D5:2A:69:B9:5A:BF:04:8A:DE:BE:B3:15:0E:51:E4:C3
X509v3 Authority Key Identifier:
keyid:32:6F:51:CA:23:98:21:03:FF:E3:4F:98:90:D0:B7:4E:8F:A7:81:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mm9RyiOYIQP_40-YkNC3To-nga8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:49:a9:a1:55:ed:c0:20:18:b6:58:ad:7c:d8:4a:4c:02:2f:
5f:1c:c7:24:65:e4:87:ff:23:ef:15:88:fa:f5:28:f8:88:e4:
8d:9d:e3:51:88:2c:6c:b0:f4:e0:c4:8c:a5:9c:c6:34:0e:4d:
76:19:9d:c5:80:fa:f3:15:af:1a:c8:52:af:f9:7e:c4:0a:0a:
bc:f1:a7:8c:70:8f:32:b5:12:6b:1b:e8:1d:c4:f5:cf:cb:58:
9c:a1:e5:74:11:7a:97:d1:d8:09:aa:2d:b0:e8:ad:06:a0:da:
d1:ed:e2:86:bb:98:c6:4b:51:e4:ec:95:92:ac:af:8f:5f:a8:
61:96:c7:cd:97:4c:b5:3b:26:48:86:bf:db:18:7e:39:60:82:
16:28:e6:10:d5:09:cb:52:d9:32:3e:97:5b:99:fc:16:d5:79:
6a:64:35:1d:df:75:97:24:49:3c:39:44:d1:7a:c7:3a:4e:71:
cc:f8:45:5a:62:c5:fb:0e:49:0f:dd:3b:c2:e9:cf:a0:58:4c:
b2:1e:39:03:4c:7b:e3:84:e5:9d:84:76:a9:bd:21:fb:f4:80:
e3:1a:9a:9f:19:4e:a4:35:2f:bd:c7:8a:67:dd:40:8a:1e:50:
02:d1:19:a7:71:5e:15:24:1b:79:51:61:66:9e:8a:25:46:ad:
2c:87:df:1a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxSfjK+wplINtgH3QRRKZJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMyNmY1MWNhMjM5ODIxMDNmZmUzNGY5ODkwZDBiNzRlOGZh
NzgxYWYwHhcNMjUxMTExMDUwMTA0WhcNMjUxMTEyMDUwMTA0WjAzMTEwLwYDVQQD
EyhiNmJkNmI2ZGQ1MmE2OWI5NWFiZjA0OGFkZWJlYjMxNTBlNTFlNGMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl3bQCvNG5SedSvODhsWdpDyJVEAz
ujyr0AraIEaUPx4yDZ4i3R5wuxcuQ3PC9VX4Q7ZqoQ6F4GdZuzYCOsypKKj+bgcC
pQWP/Hn624nFIqXur0yTq+NwyExSHDOULUyMy5N6aIhEcO/UfjABm0lDT1WKvOiR
DOAh7lVoNfsyqXnAVqTt6uPdlmTRhE6Qh/Q4OVdJlJFO4z46YM8d8ePt1v1MnX1g
jSUkP8d0ZqvVZAkwVIfU3Om+yWHUpGc+K42wKiY7r0mPB6oJcy/vfFQp9JoV3b9y
hvkBCchy45S444v/rwAlY9q7Eyqlqr2dgsFAJdalJuG9E/mtCYRHh0oQkQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLa9a23VKmm5Wr8Eit6+sxUOUeTDMB8GA1UdIwQY
MBaAFDJvUcojmCED/+NPmJDQt06Pp4GvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTW05UnlpT1lJUVBfNDAtWWtOQzNUby1uZ2E4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS80MGE5YjUtZTg5OS00YThhLWFjNGYt
OTY2ZmE5NmJlZmYyLzEvTW05UnlpT1lJUVBfNDAtWWtOQzNUby1uZ2E4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMS80MGE5YjUtZTg5OS00YThhLWFjNGYtOTY2ZmE5NmJlZmYy
LzEvTW05UnlpT1lJUVBfNDAtWWtOQzNUby1uZ2E4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAe0mpoVXt
wCAYtlitfNhKTAIvXxzHJGXkh/8j7xWI+vUo+IjkjZ3jUYgsbLD04MSMpZzGNA5N
dhmdxYD68xWvGshSr/l+xAoKvPGnjHCPMrUSaxvoHcT1z8tYnKHldBF6l9HYCaot
sOitBqDa0e3ihruYxktR5OyVkqyvj1+oYZbHzZdMtTsmSIa/2xh+OWCCFijmENUJ
y1LZMj6XW5n8FtV5amQ1Hd91lyRJPDlE0XrHOk5xzPhFWmLF+w5JD907wunPoFhM
sh45A0x744TlnYR2qb0h+/SA4xqanxlOpDUvvceKZ91Aih5QAtEZp3FeFSQbeVFh
Zp6KJUatLIffGg==
-----END CERTIFICATE-----
Generated at Tue Nov 11 14:15:54 2025 by rpki-client