Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
File: MXBn6Bphoh_cFIWY72ull1f6A4A.mft (raw, json)
Hash identifier: 21k+lqHlR3ov2hKPanzJ77cXnfsMkRwWJPoUxlH6LIU=
Subject key identifier: A6:F4:99:E9:04:BE:9F:D0:E8:D7:78:9B:26:FE:00:8B:72:95:0E:8D
Authority key identifier: 31:70:67:E8:1A:61:A2:1F:DC:14:85:98:EF:6B:A5:97:57:FA:03:80
Certificate issuer: /CN=317067e81a61a21fdc148598ef6ba59757fa0380
Certificate serial: 019A4D741CDAC9997E656867A2ACFDF74276
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
Manifest number: 0993
Signing time: Tue 04 Nov 2025 06:00:46 +0000
Manifest this update: Tue 04 Nov 2025 06:00:46 +0000
Manifest next update: Wed 05 Nov 2025 06:00:46 +0000
Files and hashes: 1: 1kHURLGCgDrhi9IHuZm9V5RPr7o.roa (hash: QOJumlfbHeKteqZFgdexa+53Le46L9xrcfm0BrIrj/w=)
2: MXBn6Bphoh_cFIWY72ull1f6A4A.crl (hash: 25602CKtZ5vT0yOffkF59V0r73h034qh8DyGzGe/PIQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 06:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:74:1c:da:c9:99:7e:65:68:67:a2:ac:fd:f7:42:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=317067e81a61a21fdc148598ef6ba59757fa0380
Validity
Not Before: Nov 4 06:00:46 2025 GMT
Not After : Nov 5 06:00:46 2025 GMT
Subject: CN=a6f499e904be9fd0e8d7789b26fe008b72950e8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:5e:33:44:b6:f1:50:b3:e8:e7:0c:f0:44:2a:
ab:43:1b:6f:39:e0:aa:a0:f8:1b:d3:7c:aa:fe:9b:
37:19:26:ae:d2:48:2e:5e:f8:57:2c:e9:89:fe:09:
27:e2:65:81:74:3f:c1:9c:9e:47:46:ef:b5:b9:21:
e4:13:f6:17:41:de:85:cf:bf:30:ed:27:57:11:46:
83:50:92:cf:fa:2d:2c:9a:a1:8e:0c:19:f9:9b:46:
0c:7d:2e:f7:17:e6:59:ec:34:93:19:84:1a:de:2f:
61:21:4e:76:49:4f:41:d7:55:a3:23:3c:dd:cb:96:
cf:ed:95:ac:42:2f:66:0e:49:9b:30:87:7c:05:63:
1b:dc:ad:fe:6e:bd:3a:26:fe:09:bb:56:ba:e9:1a:
ef:fb:71:77:eb:08:9e:49:1c:1c:f0:d1:b4:39:5c:
44:87:75:25:c2:21:07:49:45:44:00:db:fe:fc:12:
20:24:96:8f:29:5a:d1:63:1f:5c:7a:8d:35:c8:92:
12:3a:08:86:92:d2:34:dc:a3:1d:3a:94:8a:75:31:
2d:94:8a:6f:0c:4d:93:ad:43:56:a7:2c:59:75:1d:
95:df:74:d7:7d:8c:6f:6a:8e:0c:17:b0:5b:81:ee:
fc:a1:ca:d9:26:cd:06:24:7b:f7:2e:b8:d6:98:e7:
8e:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:F4:99:E9:04:BE:9F:D0:E8:D7:78:9B:26:FE:00:8B:72:95:0E:8D
X509v3 Authority Key Identifier:
keyid:31:70:67:E8:1A:61:A2:1F:DC:14:85:98:EF:6B:A5:97:57:FA:03:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:58:89:1c:96:3b:0d:50:f1:28:7c:fb:1c:dc:8b:4e:58:18:
e2:c6:a1:2a:6d:d0:8d:54:ed:40:86:6e:af:53:2e:1e:cf:b4:
16:1c:60:66:9e:d4:b8:9a:c7:ef:28:ef:ed:a5:56:cd:bf:7a:
3c:cb:ff:31:99:df:91:b0:a2:55:ae:da:2b:a3:b1:49:55:f0:
ee:ea:88:6b:48:01:5c:fb:91:aa:56:98:9f:92:8b:aa:0b:76:
e0:76:ec:99:3b:25:3b:c2:03:40:9a:d0:a9:50:5d:ff:6b:2a:
7b:cd:c9:8c:0b:ea:0a:18:21:f1:71:e6:ab:0b:36:a3:39:82:
30:78:cb:63:bd:52:5a:70:bf:94:3f:a6:ef:3f:bc:d9:db:b2:
f9:92:51:99:f5:9f:e8:22:08:6e:9c:49:cf:e0:db:7f:24:0f:
c5:d4:68:70:51:83:84:31:fb:41:f7:f3:41:3b:37:ff:6b:14:
41:4a:70:96:a1:e3:2b:84:b4:f2:e8:db:a1:ca:60:e1:66:67:
86:61:8b:c9:b9:c9:24:53:0a:2d:00:9c:90:44:30:09:16:ab:
61:04:0a:e2:00:31:90:14:2f:8b:b4:74:cd:6f:1e:f6:c0:5f:
e0:b1:6e:23:fd:dc:04:dd:44:39:7a:f2:27:fb:2b:34:4c:f8:
9c:5c:4c:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:40:27 2025 by rpki-client