Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.mft
File: MCbiQi-nIkVOYIMX0hhitmqjfTM.mft (raw, json)
Hash identifier: ox9cel7CUeTi5Voom5EFIELZcbzzn6TjjWKlqQahpVI=
Subject key identifier: 0C:20:B1:D3:34:01:64:74:27:5F:27:20:80:66:B0:6A:29:96:45:A6
Authority key identifier: 30:26:E2:42:2F:A7:22:45:4E:60:83:17:D2:18:62:B6:6A:A3:7D:33
Certificate issuer: /CN=3026e2422fa722454e608317d21862b66aa37d33
Certificate serial: 019A71B872A15D237AC419C6CFFBA7ECF4C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MCbiQi-nIkVOYIMX0hhitmqjfTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.mft
Manifest number: 166F
Signing time: Tue 11 Nov 2025 07:01:44 +0000
Manifest this update: Tue 11 Nov 2025 07:01:44 +0000
Manifest next update: Wed 12 Nov 2025 07:01:44 +0000
Files and hashes: 1: MCbiQi-nIkVOYIMX0hhitmqjfTM.crl (hash: wNHKKohS8Xyeg9NsotAalYPgNT/vhJVA7g7DDF5Ef8s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.mft
rsync://rpki.ripe.net/repository/DEFAULT/MCbiQi-nIkVOYIMX0hhitmqjfTM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:72:a1:5d:23:7a:c4:19:c6:cf:fb:a7:ec:f4:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3026e2422fa722454e608317d21862b66aa37d33
Validity
Not Before: Nov 11 07:01:44 2025 GMT
Not After : Nov 12 07:01:44 2025 GMT
Subject: CN=0c20b1d334016474275f27208066b06a299645a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:7a:ec:1f:ff:09:08:7a:ba:e6:82:36:66:f4:
de:21:0b:55:51:54:c4:29:e1:de:0d:8b:28:ca:2b:
08:0a:33:7c:56:46:72:6c:90:34:b5:a8:36:a3:c6:
31:be:7e:25:4a:65:12:d3:f5:03:04:3c:6a:2c:4b:
45:da:f2:1a:6c:2b:3a:fc:b0:0a:96:a7:aa:d2:cd:
65:6c:ca:f8:03:41:48:84:ec:be:97:b5:53:38:9a:
36:68:c1:b4:64:32:54:db:7b:9d:02:19:65:86:6b:
55:50:2e:8e:97:e3:87:5f:77:a8:53:c5:d8:21:c9:
6d:05:e6:47:a0:86:00:15:69:b2:70:f4:74:6a:0f:
0c:be:89:a7:ae:53:9a:6f:dc:0a:97:4e:ed:8d:96:
73:ab:11:08:ca:51:af:ec:b8:24:1e:0c:1e:44:99:
c5:3b:62:4a:d6:4f:60:47:3d:d6:70:3f:0a:c9:89:
fa:4e:b3:18:d5:ad:14:aa:5e:57:87:44:0f:88:c1:
0c:09:87:a6:12:2c:64:de:12:db:0f:1c:a5:3d:45:
9d:29:1f:d7:36:2e:38:27:e0:9f:e8:c2:08:92:e8:
86:09:02:49:36:49:ba:66:cf:09:b0:32:b0:65:af:
15:5b:75:f3:01:ac:8e:88:25:8c:69:8a:ef:61:f6:
e8:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:20:B1:D3:34:01:64:74:27:5F:27:20:80:66:B0:6A:29:96:45:A6
X509v3 Authority Key Identifier:
keyid:30:26:E2:42:2F:A7:22:45:4E:60:83:17:D2:18:62:B6:6A:A3:7D:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MCbiQi-nIkVOYIMX0hhitmqjfTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:64:b5:ea:cd:52:8f:c4:a8:6c:12:22:37:e5:26:45:93:e2:
18:f8:a6:52:c8:f4:75:80:c5:46:0a:65:bb:d4:34:f0:83:2d:
63:0b:e2:48:bb:d4:7c:dd:4b:34:02:da:0c:b7:bb:7b:8c:10:
29:76:b0:4d:6b:9a:78:ab:fc:86:22:01:07:14:fd:2a:77:ee:
5c:47:71:50:c3:1e:2d:fb:9c:01:96:dc:c2:e5:1c:54:d9:be:
a3:10:f3:e2:a1:a8:a0:77:d7:4c:f4:32:80:e3:ec:69:0f:d2:
0e:73:2a:1e:7a:6c:5f:8b:fe:6c:35:85:d8:13:eb:f6:eb:3a:
69:9a:6e:f0:1d:90:18:25:18:81:db:1e:88:a9:62:4f:d9:18:
ed:38:2e:b0:9d:d0:38:d3:45:16:b8:d7:ec:99:78:72:d7:aa:
cf:74:d5:de:d8:19:58:1f:69:79:15:fb:c6:12:b2:18:f7:86:
fd:26:95:a6:3b:a6:d1:97:99:83:56:ff:05:fd:08:5f:cc:a8:
aa:1f:20:32:32:49:61:58:17:b0:7b:ef:62:45:ad:49:72:6c:
c5:75:08:6c:84:d3:b4:34:0a:13:42:3d:51:49:99:a6:f9:f8:
73:fb:43:df:a2:31:06:b7:47:c3:e5:3c:52:a8:10:e0:0a:14:
6d:22:bd:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:33:11 2025 by rpki-client