Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
File: 9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft (raw, json)
Hash identifier: /s/QdvOntBVll7PGGcooDaI7TpBIYI4J+NryEH1ae5A=
Subject key identifier: 7B:AE:F1:AF:99:ED:9A:6D:31:83:5A:C3:4F:50:B6:58:15:2A:82:71
Authority key identifier: F4:C6:49:94:E2:4D:4A:EF:DC:42:A8:83:1F:E0:DC:E2:0D:60:46:89
Certificate issuer: /CN=f4c64994e24d4aefdc42a8831fe0dce20d604689
Certificate serial: 019A22C03BFDD0A4A392E06BED98FBF648F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
Manifest number: 16F8
Signing time: Sun 26 Oct 2025 23:00:14 +0000
Manifest this update: Sun 26 Oct 2025 23:00:14 +0000
Manifest next update: Mon 27 Oct 2025 23:00:14 +0000
Files and hashes: 1: 9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl (hash: XzCHecYBigeEDVNi9hipoR3Vl0ua9TmQQcU3tZVlMsU=)
2: bRo1FpRQdGW3rrEgf9LP2ZyYMbs.roa (hash: ZwgslFPNqU25lgzTk3XOIv2Nozx6fjcmPWKTGmYvfPU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 23:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:22:c0:3b:fd:d0:a4:a3:92:e0:6b:ed:98:fb:f6:48:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4c64994e24d4aefdc42a8831fe0dce20d604689
Validity
Not Before: Oct 26 23:00:14 2025 GMT
Not After : Oct 27 23:00:14 2025 GMT
Subject: CN=7baef1af99ed9a6d31835ac34f50b658152a8271
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:da:8e:b1:ad:8f:b9:95:03:fb:91:2d:cf:4a:
68:0a:69:43:1d:f2:b3:4a:7a:0a:da:26:10:67:04:
8e:8b:b3:b4:f7:8f:5e:03:87:aa:1d:f5:ba:1e:e5:
93:dc:1f:db:30:fc:8b:92:02:bc:e6:03:11:41:29:
4e:1b:a3:f3:26:a3:90:b6:86:01:0b:54:f7:ad:ef:
92:57:ba:da:d7:1b:94:e3:43:7f:e8:19:4f:eb:06:
b5:50:55:46:15:a2:f6:b5:5e:86:36:02:c9:53:3c:
d3:b8:4d:18:5b:3c:c5:76:bb:09:31:ff:49:d7:49:
46:99:33:ba:ca:bc:66:cc:ff:f7:06:b6:f7:37:f1:
83:6b:7c:3a:07:2a:f8:90:d4:d0:61:40:48:cb:75:
32:e6:83:dc:97:d0:63:80:fc:28:63:52:d2:b7:64:
e2:ce:09:84:f2:6a:1a:b7:33:cf:49:8c:67:d8:1c:
e7:50:0e:8b:bb:31:51:36:81:0a:34:ee:40:21:39:
f5:06:a6:2c:10:d9:56:64:32:f1:03:4b:a5:0e:69:
14:cf:1d:c0:00:a1:9d:6b:4b:54:d0:46:53:59:a1:
a9:98:7a:83:2f:25:32:91:fb:ee:6b:2b:30:7a:3d:
9e:a1:f0:cc:45:a8:20:f5:09:57:ee:06:12:fa:97:
c3:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:AE:F1:AF:99:ED:9A:6D:31:83:5A:C3:4F:50:B6:58:15:2A:82:71
X509v3 Authority Key Identifier:
keyid:F4:C6:49:94:E2:4D:4A:EF:DC:42:A8:83:1F:E0:DC:E2:0D:60:46:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:84:b5:41:fc:1b:8c:56:eb:33:d1:f3:bf:2c:19:50:5d:42:
34:41:59:3c:44:dc:58:62:4d:6e:f0:e9:c8:c8:51:56:46:d0:
7e:52:49:c8:9b:43:7e:d9:b5:e9:54:22:3c:f7:e7:36:6d:c8:
f2:a5:3e:ae:c6:31:8c:be:43:f4:70:4b:ba:8e:33:8c:d9:5e:
19:95:08:86:89:23:58:0e:d5:96:e3:54:e9:56:ad:37:72:5e:
26:86:4b:3e:37:ab:fc:47:b7:61:ac:5f:4a:99:90:44:5a:17:
34:cb:53:0f:1f:7b:70:10:08:aa:50:41:a5:1b:88:72:5c:10:
5e:4d:48:b9:75:ca:6c:f8:af:1a:dc:fb:f9:75:ce:48:4d:a3:
09:96:09:32:75:5f:e1:ed:33:76:7c:b1:fa:0f:3b:e5:61:e9:
11:84:de:ca:4b:01:fb:c7:c4:97:ac:9a:11:d6:ea:78:07:08:
cf:f8:42:93:15:43:6a:06:30:bc:5d:af:2b:fd:ed:7b:fd:8b:
37:b7:a7:87:53:35:d5:7f:70:f3:1d:30:67:9f:18:49:8f:8d:
42:b2:cd:98:71:ef:08:08:38:de:f2:ab:96:a1:aa:ff:7e:af:
cf:24:1f:82:ce:0b:93:d7:bb:25:36:2b:15:a6:71:97:48:e4:
91:43:6b:1e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoiwDv90KSjkuBr7Zj79kj2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY0YzY0OTk0ZTI0ZDRhZWZkYzQyYTg4MzFmZTBkY2UyMGQ2
MDQ2ODkwHhcNMjUxMDI2MjMwMDE0WhcNMjUxMDI3MjMwMDE0WjAzMTEwLwYDVQQD
Eyg3YmFlZjFhZjk5ZWQ5YTZkMzE4MzVhYzM0ZjUwYjY1ODE1MmE4MjcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAudqOsa2PuZUD+5Etz0poCmlDHfKz
SnoK2iYQZwSOi7O0949eA4eqHfW6HuWT3B/bMPyLkgK85gMRQSlOG6PzJqOQtoYB
C1T3re+SV7ra1xuU40N/6BlP6wa1UFVGFaL2tV6GNgLJUzzTuE0YWzzFdrsJMf9J
10lGmTO6yrxmzP/3Brb3N/GDa3w6Byr4kNTQYUBIy3Uy5oPcl9BjgPwoY1LSt2Ti
zgmE8moatzPPSYxn2BznUA6LuzFRNoEKNO5AITn1BqYsENlWZDLxA0ulDmkUzx3A
AKGda0tU0EZTWaGpmHqDLyUykfvuayswej2eofDMRagg9QlX7gYS+pfD/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHuu8a+Z7ZptMYNaw09QtlgVKoJxMB8GA1UdIwQY
MBaAFPTGSZTiTUrv3EKogx/g3OINYEaJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOU1aSmxPSk5TdV9jUXFpREgtRGM0ZzFnUm9rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy82NDY1OGQtZDVlYi00ODliLWJjMTUt
Mzg1NTY5OGZiNTdmLzEvOU1aSmxPSk5TdV9jUXFpREgtRGM0ZzFnUm9rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMy82NDY1OGQtZDVlYi00ODliLWJjMTUtMzg1NTY5OGZiNTdm
LzEvOU1aSmxPSk5TdV9jUXFpREgtRGM0ZzFnUm9rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ4S1Qfwb
jFbrM9HzvywZUF1CNEFZPETcWGJNbvDpyMhRVkbQflJJyJtDftm16VQiPPfnNm3I
8qU+rsYxjL5D9HBLuo4zjNleGZUIhokjWA7VluNU6VatN3JeJoZLPjer/Ee3Yaxf
SpmQRFoXNMtTDx97cBAIqlBBpRuIclwQXk1IuXXKbPivGtz7+XXOSE2jCZYJMnVf
4e0zdnyx+g875WHpEYTeyksB+8fEl6yaEdbqeAcIz/hCkxVDagYwvF2vK/3te/2L
N7enh1M11X9w8x0wZ58YSY+NQrLNmHHvCAg43vKrlqGq/36vzyQfgs4Lk9e7JTYr
FaZxl0jkkUNrHg==
-----END CERTIFICATE-----
Generated at Mon Oct 27 07:13:34 2025 by rpki-client