Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.mft
File: mPArXPtBclCOBze_Jc1dIqAdxFo.mft (raw, json)
Hash identifier: m1iDf2GN76uxM4OzgXq7SY0U2uMK37SpRHBixyjOL24=
Subject key identifier: D9:E4:B4:43:E4:45:51:BB:0C:3C:8F:B2:74:A4:12:8F:14:39:32:B7
Authority key identifier: 98:F0:2B:5C:FB:41:72:50:8E:07:37:BF:25:CD:5D:22:A0:1D:C4:5A
Certificate issuer: /CN=98f02b5cfb4172508e0737bf25cd5d22a01dc45a
Certificate serial: 019A2477F7AB940A0FF06AD8AC92E871FB2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mPArXPtBclCOBze_Jc1dIqAdxFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.mft
Manifest number: 0827
Signing time: Mon 27 Oct 2025 07:00:33 +0000
Manifest this update: Mon 27 Oct 2025 07:00:33 +0000
Manifest next update: Tue 28 Oct 2025 07:00:33 +0000
Files and hashes: 1: Keu4ORQGNbpvqRyHyCkLTUO_lOA.roa (hash: 8AaJ0cxF0N1CmP6IwiLLt/ItfrvG5f97UQsDx1F7lhM=)
2: mPArXPtBclCOBze_Jc1dIqAdxFo.crl (hash: gy0ibsoP8TQLHA/KbfBe8TXCrCzO/PeqT37/fF1bYfQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.mft
rsync://rpki.ripe.net/repository/DEFAULT/mPArXPtBclCOBze_Jc1dIqAdxFo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 07:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:24:77:f7:ab:94:0a:0f:f0:6a:d8:ac:92:e8:71:fb:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98f02b5cfb4172508e0737bf25cd5d22a01dc45a
Validity
Not Before: Oct 27 07:00:33 2025 GMT
Not After : Oct 28 07:00:33 2025 GMT
Subject: CN=d9e4b443e44551bb0c3c8fb274a4128f143932b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:40:f6:46:c7:f9:b4:06:60:a4:38:b2:b6:cd:
18:27:3a:34:bb:5d:cb:b5:36:af:2c:c3:be:18:db:
a6:e9:ad:a1:45:df:8b:53:a2:c3:19:55:8e:07:15:
6b:e5:b0:4a:50:0b:55:ec:23:0e:ba:bf:a2:7c:24:
c1:97:ae:dd:63:14:7f:4f:87:17:20:13:d5:f7:b4:
cb:db:10:e4:f9:55:b7:c8:4a:6c:ac:1b:85:06:d6:
f5:21:59:b0:3d:f1:d3:93:9f:a7:8b:c9:c6:1f:40:
a1:1a:4c:b8:4f:e4:2e:84:dc:35:93:17:ef:2c:89:
83:69:a0:aa:df:5a:09:3e:11:55:f6:b3:bf:e7:28:
6d:7b:53:21:42:eb:75:19:8d:b4:2f:2b:ca:ff:dd:
92:c4:67:0f:4f:7f:8a:0f:92:9b:f9:74:df:90:a2:
e7:05:45:ac:d5:46:ff:0e:6e:f0:b1:5c:d1:3a:af:
86:79:1e:47:97:8f:94:2b:40:25:dd:ac:9a:85:95:
a0:21:cb:57:6d:bc:0c:1c:c7:d9:47:e5:52:fc:5b:
92:c4:92:30:0e:07:00:5e:0b:12:c5:40:dd:43:16:
11:28:12:19:89:f9:2c:db:eb:bb:90:b1:bf:73:49:
e7:24:32:48:ba:8a:a0:f4:33:79:e4:18:8a:6c:37:
5b:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:E4:B4:43:E4:45:51:BB:0C:3C:8F:B2:74:A4:12:8F:14:39:32:B7
X509v3 Authority Key Identifier:
keyid:98:F0:2B:5C:FB:41:72:50:8E:07:37:BF:25:CD:5D:22:A0:1D:C4:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mPArXPtBclCOBze_Jc1dIqAdxFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:85:02:a0:d4:56:ba:da:d7:6e:ee:d1:89:b8:89:33:19:21:
28:9a:b0:d6:26:23:8a:70:6b:ae:98:45:19:f4:5d:13:79:f5:
fa:e2:32:89:87:4d:fc:7d:48:1f:b0:f0:33:0f:19:05:4c:00:
70:48:94:f3:8c:dd:c0:25:f4:ac:4b:67:63:d5:5d:df:8e:91:
10:31:2b:d4:76:9f:f6:bf:1e:4a:28:9a:96:8f:3e:c6:95:93:
76:5e:d8:0d:ce:3d:c3:90:e6:26:d5:ac:69:97:59:23:bc:5b:
27:c2:8a:f1:34:68:09:4a:2f:63:65:fa:00:fd:af:c0:92:58:
08:da:59:aa:de:2d:8b:f1:7e:fa:ab:00:d6:12:6c:20:5c:ba:
3c:dc:ff:5b:4b:19:9f:aa:20:59:12:01:f6:95:ad:79:97:54:
f6:09:fe:c8:0b:7d:78:a1:4b:2e:e3:ee:9d:90:5c:9f:fa:54:
c5:fc:d7:ac:23:c1:b3:e3:f9:73:bd:51:29:5a:7c:1b:16:21:
6c:b9:b2:e8:c2:10:c2:d4:a9:fa:8f:fb:4d:2f:4d:fa:59:b0:
c4:77:b8:12:73:2c:09:7f:45:83:54:c2:80:94:cc:2e:11:68:
23:b2:ed:04:05:43:10:dd:40:d4:bd:fd:84:b4:01:36:bb:3a:
6f:e0:89:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 15:37:25 2025 by rpki-client