Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
File: MtOVxX39MMDNLDD0IziuTBSnUKE.mft (raw, json)
Hash identifier: pEAjTjJrQ/H0gKys9E3k2OwKkUH/nELIPr14eLua+/g=
Subject key identifier: 0B:B6:80:C7:04:69:57:38:58:2A:C9:58:A1:EB:47:B4:65:6F:00:55
Authority key identifier: 32:D3:95:C5:7D:FD:30:C0:CD:2C:30:F4:23:38:AE:4C:14:A7:50:A1
Certificate issuer: /CN=32d395c57dfd30c0cd2c30f42338ae4c14a750a1
Certificate serial: 019A4EF49E3E6D48211E853C23960071D8D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MtOVxX39MMDNLDD0IziuTBSnUKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
Manifest number: 0BF6
Signing time: Tue 04 Nov 2025 13:00:45 +0000
Manifest this update: Tue 04 Nov 2025 13:00:45 +0000
Manifest next update: Wed 05 Nov 2025 13:00:45 +0000
Files and hashes: 1: MtOVxX39MMDNLDD0IziuTBSnUKE.crl (hash: Oav5PnqmQw7v8R1NNWEwY9Pl/Xv5k9N4niND5SSzDKU=)
2: n5cNfAezq-PA0qRMQcD4Vk_fATk.roa (hash: 3AWrOq42owDA1epXEWxZ5qyQ/E7NiBYhiJKMNg3oKTI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
rsync://rpki.ripe.net/repository/DEFAULT/MtOVxX39MMDNLDD0IziuTBSnUKE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:9e:3e:6d:48:21:1e:85:3c:23:96:00:71:d8:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32d395c57dfd30c0cd2c30f42338ae4c14a750a1
Validity
Not Before: Nov 4 13:00:45 2025 GMT
Not After : Nov 5 13:00:45 2025 GMT
Subject: CN=0bb680c704695738582ac958a1eb47b4656f0055
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:d2:b8:b2:7e:2c:b5:c5:c9:a5:14:d4:eb:62:
6a:87:1b:da:24:0f:1f:f4:e7:98:22:92:67:bd:f4:
fe:3f:b2:ee:c6:11:0d:88:1b:d2:a8:01:15:51:4e:
94:b5:8f:b9:0d:60:f6:36:7f:eb:ae:8d:a5:45:d6:
90:e5:64:9b:1d:9f:fa:49:60:3f:a5:d6:27:81:fd:
8e:8c:50:51:ca:46:f1:6c:20:14:f2:da:64:20:8e:
63:5f:29:29:33:45:63:3f:f9:98:94:7e:bf:d2:45:
4f:df:18:47:1e:0a:98:09:6d:0a:89:9e:d2:c7:9a:
a7:ad:ab:a7:94:7c:93:e8:c3:90:90:0a:1e:e2:d7:
d8:4c:79:95:9c:8a:6a:a5:ed:66:58:25:92:2d:d7:
c8:3d:1b:c9:dd:5e:88:49:97:8f:7c:22:06:dc:06:
3a:ae:56:ed:96:a5:d0:92:fd:85:23:dc:e2:89:65:
4c:f9:eb:de:38:0f:14:68:36:6d:a2:ab:29:c6:5a:
6d:b2:5f:cc:c0:d4:42:4b:4f:de:63:5e:38:5a:5f:
2a:3f:3e:2f:b7:6f:f0:7c:cd:12:ac:42:8d:72:dc:
39:d6:43:4b:4a:0b:dd:da:29:22:53:e3:81:46:9f:
78:34:9b:a8:1b:63:be:f6:cd:8c:e5:0b:98:1c:d6:
6c:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:B6:80:C7:04:69:57:38:58:2A:C9:58:A1:EB:47:B4:65:6F:00:55
X509v3 Authority Key Identifier:
keyid:32:D3:95:C5:7D:FD:30:C0:CD:2C:30:F4:23:38:AE:4C:14:A7:50:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MtOVxX39MMDNLDD0IziuTBSnUKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:9e:7f:21:80:2f:9e:15:a0:cd:01:7c:1e:8d:41:80:dd:9d:
8f:db:05:c1:6b:a7:71:2e:ca:18:c0:6f:d5:f9:eb:58:a5:00:
d1:09:9d:8a:29:dc:e0:bc:fd:b3:e5:78:1e:46:ba:7b:45:5b:
07:4d:46:97:d7:a9:42:78:fb:99:db:bf:fd:ec:36:da:75:e3:
f6:c9:3f:94:dc:6e:1c:e8:af:04:62:1e:95:b0:b8:5b:a3:b8:
a7:08:eb:c6:c7:f3:8f:d0:30:2f:65:5d:a6:85:83:fe:51:01:
50:9d:f2:f2:55:27:d7:7f:72:8d:e8:96:7f:4c:7e:3d:17:4b:
dd:5b:63:bb:95:23:63:8e:ba:8c:bf:80:40:6c:30:42:94:c1:
a3:07:1d:d3:2c:b5:1d:52:b9:06:ad:9f:c0:f5:2a:a8:a0:7e:
c4:a9:c9:2a:2d:c0:8b:7e:f1:34:b5:7d:6a:e5:4d:67:62:34:
9b:74:5c:73:25:70:81:0d:a1:a2:e9:ad:0d:7e:6d:e7:ee:c3:
18:2e:68:3f:dd:30:a6:ee:c1:51:57:6a:03:3b:e1:ee:1b:f6:
92:71:a9:e1:3d:39:fb:3a:94:7b:15:81:72:4c:fc:9e:7a:27:
1d:7a:c7:1a:a0:41:a1:c3:d0:0a:b9:54:50:dd:82:63:88:19:
a0:af:ba:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:14:35 2025 by rpki-client