Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft
File: Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft (raw, json)
Hash identifier: 6OWPaElRyMC3doYZPq8ZPRAPTaBq/5Yqkz/pctCBaCQ=
Subject key identifier: 9B:FB:0A:16:6C:24:10:D8:FF:D9:6C:5B:A1:0C:BD:6D:7D:98:FA:F2
Authority key identifier: 32:9D:BB:46:A4:EB:76:45:D9:94:A0:E4:B9:84:FC:DA:C2:04:A4:84
Certificate issuer: /CN=329dbb46a4eb7645d994a0e4b984fcdac204a484
Certificate serial: 019A71B839F3115913186552569F1EC0AA23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mp27RqTrdkXZlKDkuYT82sIEpIQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft
Manifest number: 03FF
Signing time: Tue 11 Nov 2025 07:01:30 +0000
Manifest this update: Tue 11 Nov 2025 07:01:30 +0000
Manifest next update: Wed 12 Nov 2025 07:01:30 +0000
Files and hashes: 1: Mp27RqTrdkXZlKDkuYT82sIEpIQ.crl (hash: CM3mNyMkx8A21Qvsyog0miA00wzJK7e4H6jbpU6KyAY=)
2: ZyPIESuaSWPIuQmq_le4sKOKISE.roa (hash: ZskQdIcp36rlr+2ORbgrG1PrwisAu9ueRcvHTkIY4YM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Mp27RqTrdkXZlKDkuYT82sIEpIQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:39:f3:11:59:13:18:65:52:56:9f:1e:c0:aa:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=329dbb46a4eb7645d994a0e4b984fcdac204a484
Validity
Not Before: Nov 11 07:01:30 2025 GMT
Not After : Nov 12 07:01:30 2025 GMT
Subject: CN=9bfb0a166c2410d8ffd96c5ba10cbd6d7d98faf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ff:35:64:0a:f9:82:e6:78:d3:7b:ef:25:e9:
a9:19:9e:be:b9:1d:c3:5a:53:7d:36:75:3f:43:27:
70:1e:40:a8:01:53:c5:8d:e3:6a:d2:fa:e4:ff:b8:
13:89:92:2b:3d:14:b8:52:fd:7d:9d:f3:0d:a6:85:
d6:ee:58:94:ec:a6:b4:7e:76:98:64:b8:a7:c8:2e:
39:56:a1:7e:19:7a:53:09:a9:f7:d3:0b:ba:03:3a:
5a:40:47:a5:b8:b6:32:c9:9d:92:19:8c:2f:47:26:
2f:d6:7d:2c:d2:d6:a5:91:56:db:ec:e7:d6:4e:f9:
5a:5e:cc:80:cc:19:b0:68:d5:87:36:cf:cd:49:ff:
96:22:27:de:33:75:37:cf:c8:6b:04:7c:f8:3a:e6:
71:16:f8:20:e6:9f:d3:3a:ca:7d:67:b8:3d:d5:ba:
f5:3e:ed:2c:55:f7:1d:94:42:b9:ee:b1:41:26:90:
73:96:85:b5:90:8e:3e:2e:4b:51:ba:fe:ba:5d:06:
f0:d6:97:2e:f0:e7:d1:2b:b9:f6:d2:7b:65:d0:f7:
42:21:3b:55:a8:c4:78:ac:87:f0:9a:da:73:76:92:
56:a3:8d:c9:2a:c9:6f:e4:98:1a:8c:a1:bf:3d:bc:
e3:d3:66:22:04:07:0a:c6:55:60:c3:a8:18:35:ad:
08:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:FB:0A:16:6C:24:10:D8:FF:D9:6C:5B:A1:0C:BD:6D:7D:98:FA:F2
X509v3 Authority Key Identifier:
keyid:32:9D:BB:46:A4:EB:76:45:D9:94:A0:E4:B9:84:FC:DA:C2:04:A4:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mp27RqTrdkXZlKDkuYT82sIEpIQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c8:be:98:7c:29:35:26:f8:3d:ee:b4:a7:23:6d:a0:cc:53:9d:
bc:30:04:18:08:6d:56:b9:a0:f5:bc:b5:cb:56:6e:a9:be:dd:
ae:4b:d2:38:14:4b:07:e5:29:98:8b:02:9e:fc:52:ab:3b:00:
8a:f6:83:7b:a1:52:cf:52:80:10:74:99:1f:99:79:b2:e7:bf:
f2:04:a8:64:3a:8e:fb:ae:00:9b:c3:85:1c:81:8b:e2:45:d9:
6f:c9:e9:cf:b0:84:e2:98:bc:98:c5:34:67:c9:68:43:b0:ab:
70:6b:6a:13:85:e0:28:38:45:a5:fc:20:6d:51:c2:27:e7:a8:
d0:6b:76:57:e8:24:79:13:2b:72:a8:7c:b6:db:67:31:10:94:
a2:41:1b:9a:b1:f1:eb:9b:6a:57:78:14:2a:8b:6d:56:ec:0d:
dc:fb:04:fb:11:81:8d:bf:d7:6c:ec:db:3e:20:49:5c:be:83:
99:cc:6c:98:50:c0:51:43:07:88:43:6b:d3:c7:8a:21:2f:b1:
13:fe:d7:68:ba:19:1f:07:4d:12:05:e2:6c:98:fd:a9:84:23:
71:e0:af:96:b3:b8:ca:24:93:4c:d5:f9:f3:07:02:68:c0:dd:
0a:2a:7e:c6:76:44:f5:b1:ef:d9:20:17:20:3b:6b:74:6b:2e:
f9:db:54:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 17:19:36 2025 by rpki-client