Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/9e982d-ad5b-4100-8d9d-d1efceec34c1/1/mbBCW3HCtRzX6-R9Pv58uYYbTYI.mft
File: mbBCW3HCtRzX6-R9Pv58uYYbTYI.mft (raw, json)
Hash identifier: wyntT8RNfW6t6xA43XX7QkIyYZr9SCI5p5SOGQ7h6fM=
Subject key identifier: A8:72:4A:8C:60:89:FE:3D:C5:A6:72:2C:4E:3A:73:FF:DB:24:D2:DF
Authority key identifier: 99:B0:42:5B:71:C2:B5:1C:D7:EB:E4:7D:3E:FE:7C:B9:86:1B:4D:82
Certificate issuer: /CN=99b0425b71c2b51cd7ebe47d3efe7cb9861b4d82
Certificate serial: 019A71B863147D599006060EE500B1257658
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mbBCW3HCtRzX6-R9Pv58uYYbTYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/9e982d-ad5b-4100-8d9d-d1efceec34c1/1/mbBCW3HCtRzX6-R9Pv58uYYbTYI.mft
Manifest number: 0CF4
Signing time: Tue 11 Nov 2025 07:01:40 +0000
Manifest this update: Tue 11 Nov 2025 07:01:40 +0000
Manifest next update: Wed 12 Nov 2025 07:01:40 +0000
Files and hashes: 1: mbBCW3HCtRzX6-R9Pv58uYYbTYI.crl (hash: 1XufoJvZGqud8nA+khai+10qW1iGNOKKEUHaLz7OZ1I=)
2: nZK_WOZBkx5CjkyneO9yoAn9z7M.roa (hash: dpA6T/m8yk0xZEgRWH2rVz82pLkCcKV+oqNh5OTEUXU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/9e982d-ad5b-4100-8d9d-d1efceec34c1/1/mbBCW3HCtRzX6-R9Pv58uYYbTYI.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/9e982d-ad5b-4100-8d9d-d1efceec34c1/1/mbBCW3HCtRzX6-R9Pv58uYYbTYI.mft
rsync://rpki.ripe.net/repository/DEFAULT/mbBCW3HCtRzX6-R9Pv58uYYbTYI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:63:14:7d:59:90:06:06:0e:e5:00:b1:25:76:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99b0425b71c2b51cd7ebe47d3efe7cb9861b4d82
Validity
Not Before: Nov 11 07:01:40 2025 GMT
Not After : Nov 12 07:01:40 2025 GMT
Subject: CN=a8724a8c6089fe3dc5a6722c4e3a73ffdb24d2df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:df:b3:08:ca:e7:17:11:5b:a3:2c:85:90:ee:
b6:4f:13:94:88:fc:7c:7f:b8:15:6a:b3:af:6f:8f:
01:fd:4b:28:7e:ef:6a:e3:ce:99:cf:fb:97:18:37:
15:f0:53:d1:7d:20:11:d8:d9:4b:e6:36:8b:3c:f7:
5a:6f:68:f7:3e:d0:5a:f4:68:e9:dc:16:bb:b3:27:
a7:9b:b6:cd:97:0e:47:4c:16:e1:37:3c:61:0e:f4:
e7:ca:3c:65:1e:d8:7f:12:29:aa:65:6f:aa:ae:40:
3b:a1:bd:03:94:2a:51:5d:32:82:ea:4f:e3:7c:0b:
b0:b5:bd:4d:e8:83:4b:9f:98:ff:2d:d7:6d:0c:1b:
1c:a3:4d:a9:82:2f:6d:e4:31:ad:ef:bf:14:de:d7:
80:e2:4a:ee:47:ab:b4:c1:30:a4:05:df:68:ae:2e:
44:26:05:73:34:aa:d8:c6:86:07:08:ca:25:61:1c:
b5:53:d3:8c:b4:42:08:b7:85:92:8c:54:90:c2:10:
e8:98:16:19:3c:9b:cf:43:fc:3c:d0:7c:99:d1:b0:
0d:96:d1:58:eb:3e:14:1b:9e:1e:ec:2f:9b:14:66:
14:42:94:99:25:8d:95:1a:16:26:32:93:12:ff:bb:
47:17:74:67:75:7c:1d:0d:48:65:fb:a9:d7:5a:c2:
9b:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:72:4A:8C:60:89:FE:3D:C5:A6:72:2C:4E:3A:73:FF:DB:24:D2:DF
X509v3 Authority Key Identifier:
keyid:99:B0:42:5B:71:C2:B5:1C:D7:EB:E4:7D:3E:FE:7C:B9:86:1B:4D:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mbBCW3HCtRzX6-R9Pv58uYYbTYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/9e982d-ad5b-4100-8d9d-d1efceec34c1/1/mbBCW3HCtRzX6-R9Pv58uYYbTYI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/9e982d-ad5b-4100-8d9d-d1efceec34c1/1/mbBCW3HCtRzX6-R9Pv58uYYbTYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:c0:ce:f9:79:13:60:55:57:d2:0e:26:14:e4:56:6a:0d:d7:
e0:c4:6f:17:d7:69:76:04:74:86:f6:db:f9:28:1b:b3:62:e8:
76:80:8e:9a:13:8d:9b:3d:96:af:53:2b:6c:06:e0:d3:ee:31:
17:b7:d2:30:36:d9:68:94:12:9c:f3:18:28:df:b1:60:7f:6a:
e2:f0:5f:5b:25:e6:d5:11:62:d9:0d:af:f2:d3:d3:07:41:59:
0c:e9:b5:15:0b:df:a8:27:67:83:50:db:5b:42:ac:c9:5c:1d:
ff:9b:a1:6e:9b:bc:55:8c:9e:5d:b2:3f:6f:45:49:77:5d:a5:
8e:6b:45:6e:53:7b:5a:9c:8d:76:a6:be:cb:04:7c:46:13:ae:
d2:9b:cb:87:b6:3f:0b:20:c8:f2:c4:f7:f1:16:74:1f:98:45:
76:9d:3a:bf:44:86:7f:b5:67:87:df:9f:14:32:80:6a:a4:56:
9f:b3:69:c9:5e:4a:d9:60:66:28:09:0b:8b:51:7e:27:f0:89:
9c:b3:5a:87:71:57:5a:b0:d1:58:c4:3c:08:3a:b5:f7:2f:36:
4d:58:20:92:8d:af:90:46:50:9e:d9:d3:b9:2a:af:62:8c:2d:
c0:71:68:78:e4:26:7e:df:95:80:ee:5f:4c:c2:ce:85:17:04:
2f:f5:92:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:43:17 2025 by rpki-client