Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/66f07d-adca-40b0-a0a0-e761819f475e/1/MpbYU2ObwBkplCk-veCYBdLWIqQ.mft
File: MpbYU2ObwBkplCk-veCYBdLWIqQ.mft (raw, json)
Hash identifier: wlspZ2QPnYPIJ1MRhAsSmWLNyCbL9W2/tiUwoYmiZKQ=
Subject key identifier: 62:C0:03:11:C9:46:4F:84:D9:55:71:87:19:F9:45:C5:61:63:4B:C9
Authority key identifier: 32:96:D8:53:63:9B:C0:19:29:94:29:3E:BD:E0:98:05:D2:D6:22:A4
Certificate issuer: /CN=3296d853639bc0192994293ebde09805d2d622a4
Certificate serial: 019A71B7AE339601BE1EC646935BD01E44FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MpbYU2ObwBkplCk-veCYBdLWIqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/66f07d-adca-40b0-a0a0-e761819f475e/1/MpbYU2ObwBkplCk-veCYBdLWIqQ.mft
Manifest number: 171F
Signing time: Tue 11 Nov 2025 07:00:54 +0000
Manifest this update: Tue 11 Nov 2025 07:00:54 +0000
Manifest next update: Wed 12 Nov 2025 07:00:54 +0000
Files and hashes: 1: MpbYU2ObwBkplCk-veCYBdLWIqQ.crl (hash: FQ75EDVdea8qps3VFgPuDi8+yPtkmQkh2ZaT8LXRwqs=)
2: hTnUv0N90doM0ZMOLyyFEOW9iK0.roa (hash: YJzqmH02+AW23mfkqCHZcxj82Owa829HDO8rFi0lEGA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/66f07d-adca-40b0-a0a0-e761819f475e/1/MpbYU2ObwBkplCk-veCYBdLWIqQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/66f07d-adca-40b0-a0a0-e761819f475e/1/MpbYU2ObwBkplCk-veCYBdLWIqQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/MpbYU2ObwBkplCk-veCYBdLWIqQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:ae:33:96:01:be:1e:c6:46:93:5b:d0:1e:44:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3296d853639bc0192994293ebde09805d2d622a4
Validity
Not Before: Nov 11 07:00:54 2025 GMT
Not After : Nov 12 07:00:54 2025 GMT
Subject: CN=62c00311c9464f84d955718719f945c561634bc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:95:c7:fd:81:eb:87:8b:49:26:bf:2e:ef:93:
47:2a:47:73:3d:b3:c2:7e:3c:c2:9a:52:d9:c3:9b:
ae:45:9e:b0:ff:71:b7:17:d9:50:c6:82:de:3e:bd:
da:37:96:29:58:b3:34:be:26:8d:93:55:2d:1d:53:
01:f4:35:ce:da:06:47:eb:d9:84:2f:6e:ae:0e:c6:
0c:af:f1:71:6e:58:bf:6c:bd:cd:8c:f2:4a:88:26:
02:c4:c4:05:b3:8d:90:89:c6:d5:d3:ea:56:c7:4b:
c4:aa:1f:de:71:fa:44:eb:27:47:ab:88:a5:79:68:
4c:ed:8a:3f:cf:18:19:ae:cb:cb:44:2c:03:5e:85:
53:50:b1:a9:de:40:7d:be:f9:7b:55:ac:15:24:58:
4a:f0:9d:6d:b0:dc:4e:e2:cd:1b:97:1c:8d:b3:5e:
6c:75:e6:3c:d2:c8:48:6c:c1:5b:6c:46:af:9d:19:
92:fa:e4:b1:a1:81:84:bc:94:d8:71:33:55:74:d2:
4e:94:43:72:ab:aa:69:84:ee:df:53:b9:83:24:05:
5e:4c:7c:f8:e9:8b:4b:d4:6b:fa:20:57:56:2b:ff:
7c:d6:c9:10:76:22:d6:c1:dd:16:54:40:a3:37:14:
c0:65:c9:35:c5:9f:06:1b:68:e3:09:93:b5:eb:90:
d9:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:C0:03:11:C9:46:4F:84:D9:55:71:87:19:F9:45:C5:61:63:4B:C9
X509v3 Authority Key Identifier:
keyid:32:96:D8:53:63:9B:C0:19:29:94:29:3E:BD:E0:98:05:D2:D6:22:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MpbYU2ObwBkplCk-veCYBdLWIqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/66f07d-adca-40b0-a0a0-e761819f475e/1/MpbYU2ObwBkplCk-veCYBdLWIqQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/66f07d-adca-40b0-a0a0-e761819f475e/1/MpbYU2ObwBkplCk-veCYBdLWIqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:db:e8:da:fb:e2:7a:cb:0d:28:79:9d:6e:21:4d:0d:c4:59:
db:a7:f4:e9:fc:9b:27:f0:7b:92:ed:46:ba:0a:07:4c:c7:c4:
98:47:4f:ab:09:01:f6:73:06:9c:c8:2f:24:57:4e:5e:08:2c:
03:0c:b5:7b:f7:f8:41:1c:06:36:c1:22:cd:e9:31:63:fa:ad:
b0:c0:4f:8f:ec:bb:17:76:5b:46:02:17:ac:47:ae:b6:4f:84:
b9:5a:e2:64:f0:70:a9:5f:6e:92:9f:79:73:04:ee:21:f0:88:
8c:37:2d:20:ff:8c:df:65:13:a3:de:97:7c:24:99:a9:d8:71:
56:0f:87:ea:fc:cb:f1:59:8b:c7:6c:b6:d6:2c:13:95:5a:4e:
31:bf:3d:b0:cb:3c:08:d7:79:a3:df:16:89:fc:a0:36:1e:d8:
12:8f:64:19:d2:3f:22:26:ef:00:e1:2b:ca:32:b0:c9:65:c1:
bc:03:31:a3:4e:56:58:2b:69:7e:e0:32:36:97:27:b5:d8:5e:
b4:d2:1d:70:4d:cd:af:79:9b:d1:46:3e:a5:83:93:91:0f:1f:
94:f1:2e:d8:5d:6d:fb:a2:57:08:31:0a:cb:ee:fe:d7:47:99:
3f:49:2d:86:7b:de:7f:df:a0:ae:a5:7d:20:10:ef:6f:d9:cd:
3c:3b:86:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 16:56:40 2025 by rpki-client