Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
File: Mm9RyiOYIQP_40-YkNC3To-nga8.mft (raw, json)
Hash identifier: 4x7DuKkDGTwZavK5+//TDdH9Jr9j10W51rm+IZ93r5M=
Subject key identifier: B4:24:92:5F:81:66:32:D7:14:34:C1:7B:7A:F0:6F:63:34:1E:A9:A9
Authority key identifier: 32:6F:51:CA:23:98:21:03:FF:E3:4F:98:90:D0:B7:4E:8F:A7:81:AF
Certificate issuer: /CN=326f51ca23982103ffe34f9890d0b74e8fa781af
Certificate serial: 019A4E86889042B936B0BA972808DB69EBAF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mm9RyiOYIQP_40-YkNC3To-nga8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
Manifest number: 0771
Signing time: Tue 04 Nov 2025 11:00:30 +0000
Manifest this update: Tue 04 Nov 2025 11:00:30 +0000
Manifest next update: Wed 05 Nov 2025 11:00:30 +0000
Files and hashes: 1: Mm9RyiOYIQP_40-YkNC3To-nga8.crl (hash: nUfRzHVkLen8HmRbw2D3LrAw/iPcl/Vf8gJAYw1VEo8=)
2: XS-Ybz0hvV9BojCYEUiidWOyx20.roa (hash: rQhYc9pPbBgv4YgNdF82ibLtydUp9AsYJJ57Y6MS2So=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Mm9RyiOYIQP_40-YkNC3To-nga8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:86:88:90:42:b9:36:b0:ba:97:28:08:db:69:eb:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=326f51ca23982103ffe34f9890d0b74e8fa781af
Validity
Not Before: Nov 4 11:00:30 2025 GMT
Not After : Nov 5 11:00:30 2025 GMT
Subject: CN=b424925f816632d71434c17b7af06f63341ea9a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:4b:2c:ab:8f:2e:8e:a9:e8:11:a8:fa:18:bc:
08:ac:f7:64:86:8e:e2:b2:bc:19:65:d9:ac:0b:13:
b1:47:fa:89:1b:44:4d:d7:bd:1e:a8:ba:b8:9b:4d:
8c:98:7f:ba:e5:09:c5:c0:49:ca:38:a1:42:bd:be:
7e:68:4a:84:e7:35:f9:c5:de:bb:66:06:a3:0a:e8:
64:34:51:39:10:8d:f0:88:5a:13:30:5c:22:11:f1:
7f:1b:1c:51:12:7b:1a:c9:f4:27:61:e1:d1:cf:cc:
4a:d2:9a:45:ad:e4:ff:3f:cc:ef:09:be:59:b7:7d:
d5:a4:0c:d5:32:f3:84:11:9e:1e:06:0b:9f:d4:9e:
91:cd:fc:a1:55:d3:6b:e9:1b:ee:e0:08:ba:f6:06:
5f:be:71:cf:4a:8b:e0:7e:db:0b:74:34:1d:04:c5:
42:9e:a0:99:aa:bc:88:55:76:25:dc:fa:12:4b:59:
5f:c4:e3:bc:28:30:c0:f8:d3:0d:5d:d7:5a:cd:eb:
87:4f:d0:85:e5:d3:09:76:78:80:c2:88:12:8b:57:
bd:40:f6:1f:49:cc:b9:6c:fe:7f:ac:f3:5e:db:3f:
e5:92:2f:bc:10:b9:d8:62:37:7e:f2:fc:8a:50:e4:
3f:32:8e:23:c1:0e:0e:63:f3:6b:33:1d:34:46:ac:
b7:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:24:92:5F:81:66:32:D7:14:34:C1:7B:7A:F0:6F:63:34:1E:A9:A9
X509v3 Authority Key Identifier:
keyid:32:6F:51:CA:23:98:21:03:FF:E3:4F:98:90:D0:B7:4E:8F:A7:81:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mm9RyiOYIQP_40-YkNC3To-nga8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cc:74:fa:21:e6:76:6c:33:42:19:d4:56:49:84:0d:64:88:1e:
d0:b9:88:c4:95:16:cc:27:62:1b:cc:d8:aa:9f:33:86:9f:e5:
68:00:98:10:32:ad:7f:96:50:c7:63:cf:48:5b:ea:87:43:f5:
80:88:dd:dc:d5:d8:20:95:99:5e:93:08:aa:65:94:6e:70:a9:
f6:9e:0d:0e:a4:8a:98:dd:c1:25:b7:9a:98:f7:dc:30:b0:21:
3b:41:9f:6c:7a:62:84:79:d1:bc:13:8b:da:6c:f5:49:97:5b:
06:ab:e5:dc:34:4a:40:1a:7b:0c:76:10:7e:02:be:8c:ae:10:
c0:dd:fb:ce:52:cb:95:d7:33:ae:4b:55:d6:ec:c0:fe:57:18:
0c:3b:3f:72:bc:bb:5f:68:b0:db:84:87:e1:a3:3a:a2:00:65:
9a:18:c7:d2:cd:ba:14:9f:b2:a3:ab:9b:fc:e6:ea:99:9d:c0:
d5:d2:56:3f:03:0d:d9:7c:e0:85:b0:cf:cb:a5:ba:af:ac:fc:
54:fd:f2:a4:69:0d:15:ac:0a:a2:f0:90:8b:7f:d9:b9:b7:94:
cb:17:ba:6d:02:25:60:4e:53:7b:7b:f2:39:a6:3b:3b:af:ae:
44:7a:6d:02:57:89:9a:1f:e6:03:06:03:25:72:7f:8f:dc:22:
14:04:e7:1d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpOhoiQQrk2sLqXKAjbaeuvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMyNmY1MWNhMjM5ODIxMDNmZmUzNGY5ODkwZDBiNzRlOGZh
NzgxYWYwHhcNMjUxMTA0MTEwMDMwWhcNMjUxMTA1MTEwMDMwWjAzMTEwLwYDVQQD
EyhiNDI0OTI1ZjgxNjYzMmQ3MTQzNGMxN2I3YWYwNmY2MzM0MWVhOWE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoEssq48ujqnoEaj6GLwIrPdkho7i
srwZZdmsCxOxR/qJG0RN170eqLq4m02MmH+65QnFwEnKOKFCvb5+aEqE5zX5xd67
ZgajCuhkNFE5EI3wiFoTMFwiEfF/GxxREnsayfQnYeHRz8xK0ppFreT/P8zvCb5Z
t33VpAzVMvOEEZ4eBguf1J6RzfyhVdNr6Rvu4Ai69gZfvnHPSovgftsLdDQdBMVC
nqCZqryIVXYl3PoSS1lfxOO8KDDA+NMNXddazeuHT9CF5dMJdniAwogSi1e9QPYf
Scy5bP5/rPNe2z/lki+8ELnYYjd+8vyKUOQ/Mo4jwQ4OY/NrMx00Rqy3yQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLQkkl+BZjLXFDTBe3rwb2M0HqmpMB8GA1UdIwQY
MBaAFDJvUcojmCED/+NPmJDQt06Pp4GvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTW05UnlpT1lJUVBfNDAtWWtOQzNUby1uZ2E4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS80MGE5YjUtZTg5OS00YThhLWFjNGYt
OTY2ZmE5NmJlZmYyLzEvTW05UnlpT1lJUVBfNDAtWWtOQzNUby1uZ2E4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMS80MGE5YjUtZTg5OS00YThhLWFjNGYtOTY2ZmE5NmJlZmYy
LzEvTW05UnlpT1lJUVBfNDAtWWtOQzNUby1uZ2E4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAzHT6IeZ2
bDNCGdRWSYQNZIge0LmIxJUWzCdiG8zYqp8zhp/laACYEDKtf5ZQx2PPSFvqh0P1
gIjd3NXYIJWZXpMIqmWUbnCp9p4NDqSKmN3BJbeamPfcMLAhO0GfbHpihHnRvBOL
2mz1SZdbBqvl3DRKQBp7DHYQfgK+jK4QwN37zlLLldczrktV1uzA/lcYDDs/cry7
X2iw24SH4aM6ogBlmhjH0s26FJ+yo6ub/ObqmZ3A1dJWPwMN2XzghbDPy6W6r6z8
VP3ypGkNFawKovCQi3/ZubeUyxe6bQIlYE5Te3vyOaY7O6+uRHptAleJmh/mAwYD
JXJ/j9wiFATnHQ==
-----END CERTIFICATE-----
Generated at Tue Nov 4 18:08:22 2025 by rpki-client