Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/b1f2e0-8a60-4c8a-90dc-4be794d6406d/1/pMtQ54o6MeM3XPKquGXoRf8umcE.mft
File: pMtQ54o6MeM3XPKquGXoRf8umcE.mft (raw, json)
Hash identifier: FEB3OSO8SpdxVuJud8cnykpwb/aXpIYJcyw3J+f024U=
Subject key identifier: 0A:34:AC:91:48:D1:1B:37:69:56:D1:18:DE:0D:02:9E:D9:3B:73:8E
Authority key identifier: A4:CB:50:E7:8A:3A:31:E3:37:5C:F2:AA:B8:65:E8:45:FF:2E:99:C1
Certificate issuer: /CN=a4cb50e78a3a31e3375cf2aab865e845ff2e99c1
Certificate serial: 019A5187EC5E17D328716C2301880388BA37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pMtQ54o6MeM3XPKquGXoRf8umcE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/b1f2e0-8a60-4c8a-90dc-4be794d6406d/1/pMtQ54o6MeM3XPKquGXoRf8umcE.mft
Manifest number: 1717
Signing time: Wed 05 Nov 2025 01:00:53 +0000
Manifest this update: Wed 05 Nov 2025 01:00:53 +0000
Manifest next update: Thu 06 Nov 2025 01:00:53 +0000
Files and hashes: 1: MKwXFQdhtuQYKRcVzorzsVxuXIw.roa (hash: GZ2oDGi2xK0WgPjyKpmqLx5efaJizRvGxJTHG502Kqs=)
2: QHGBtoYy-yUNGT2R6UBemRAxD5s.roa (hash: 3YJpkLEFxs1XCvKlcy0WQw5fAkmH7oTliDxTaEnJgz0=)
3: hwXn82QbEbf-SULTcBIDnH5UIZU.roa (hash: 08kQDvBZvCyHX595Crm1xVl4v8KtIgUsNRfQUr9hTAQ=)
4: pMtQ54o6MeM3XPKquGXoRf8umcE.crl (hash: lcTpGtGgSkZ53cLo40A6lnnajAiuFwE+k/WZpOPcMz0=)
5: soZqy3HUC6xiStBTbgTdR73Vw2c.roa (hash: 0/K+cWWK8CwD0JZ/wMwAQQYw/af8O4bhKs39qQrbVB4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/b1f2e0-8a60-4c8a-90dc-4be794d6406d/1/pMtQ54o6MeM3XPKquGXoRf8umcE.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/b1f2e0-8a60-4c8a-90dc-4be794d6406d/1/pMtQ54o6MeM3XPKquGXoRf8umcE.mft
rsync://rpki.ripe.net/repository/DEFAULT/pMtQ54o6MeM3XPKquGXoRf8umcE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 01:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:87:ec:5e:17:d3:28:71:6c:23:01:88:03:88:ba:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4cb50e78a3a31e3375cf2aab865e845ff2e99c1
Validity
Not Before: Nov 5 01:00:53 2025 GMT
Not After : Nov 6 01:00:53 2025 GMT
Subject: CN=0a34ac9148d11b376956d118de0d029ed93b738e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:c1:c3:61:2c:3f:89:f6:ba:72:d7:ff:8e:34:
f7:12:a1:a5:c5:f5:5c:a7:33:a5:46:74:2a:c5:81:
15:cc:ca:f8:6b:6c:5c:f9:ff:b1:2d:41:58:8b:64:
3c:a7:b6:62:31:e2:8a:7f:ef:41:81:4f:2e:30:78:
f7:bf:9b:e8:7b:1e:1b:4e:c0:0a:48:25:81:cc:8a:
3b:b0:b7:59:5c:28:4f:7c:de:71:aa:73:ae:e7:81:
db:f1:24:e6:49:ff:28:e1:32:47:f7:32:d4:ba:b3:
2b:dc:0c:73:ad:bb:fb:d0:b2:ad:3c:3b:8e:a9:b5:
76:88:53:38:80:21:41:ff:8d:32:70:2c:8b:0d:2d:
65:f9:1d:db:e1:ae:5f:b8:01:17:6b:8d:e6:37:3c:
49:99:86:a2:4d:fb:4d:0e:a6:fd:94:20:5e:70:59:
16:bc:be:b5:a4:15:99:67:0a:4a:1b:5b:55:a9:c7:
4e:d9:a9:7a:5d:3f:30:80:0b:c8:ec:76:d2:5a:30:
52:aa:37:f0:df:e0:49:5b:35:79:b4:7c:bb:b3:ec:
00:90:2f:2b:d0:8c:26:d5:5a:1f:c8:69:b1:dc:4f:
ba:55:ca:f3:c8:ac:f3:dd:36:d6:87:98:38:91:bd:
70:e5:6a:b6:46:78:3e:68:4d:d7:61:49:d0:01:06:
e1:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:34:AC:91:48:D1:1B:37:69:56:D1:18:DE:0D:02:9E:D9:3B:73:8E
X509v3 Authority Key Identifier:
keyid:A4:CB:50:E7:8A:3A:31:E3:37:5C:F2:AA:B8:65:E8:45:FF:2E:99:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pMtQ54o6MeM3XPKquGXoRf8umcE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/b1f2e0-8a60-4c8a-90dc-4be794d6406d/1/pMtQ54o6MeM3XPKquGXoRf8umcE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/b1f2e0-8a60-4c8a-90dc-4be794d6406d/1/pMtQ54o6MeM3XPKquGXoRf8umcE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:8d:f4:6c:9d:9a:4e:1c:9c:f8:ce:cb:23:13:61:80:db:16:
ff:54:97:e6:ad:6b:a1:bf:d9:f9:76:cb:e9:a1:72:2c:af:f8:
2c:1d:0d:36:81:d0:e9:31:53:00:b2:ea:2b:08:24:18:e0:ac:
b9:ba:1e:53:34:32:04:ac:a7:9e:08:07:eb:fd:43:df:34:15:
42:d8:80:3d:d9:38:47:05:09:52:ea:00:96:08:ba:c0:ad:4a:
94:5c:52:6d:87:22:8a:0f:3a:f2:d0:80:51:92:4c:a5:37:63:
c0:4a:a4:67:fd:96:03:ba:ff:81:a6:aa:d7:9f:a6:ff:eb:6a:
b8:6d:09:ca:c9:23:a1:47:4f:e6:b9:50:6c:88:4c:8a:aa:3f:
95:19:19:17:b9:1c:39:b3:33:3a:9c:59:ce:90:d5:8e:3f:8a:
5d:84:38:54:bc:72:15:dc:cb:e5:f7:02:55:9c:14:2c:10:53:
c3:06:a4:40:99:0e:82:cd:fa:b8:d9:1b:fc:95:61:59:c8:5d:
da:b9:ea:86:71:fd:35:8f:91:64:62:90:d9:e1:18:00:6f:92:
d1:87:3e:5d:16:40:f2:c7:be:0c:7a:cc:10:98:fb:2c:ce:f8:
de:67:f4:eb:f2:0b:45:8c:8b:50:91:e8:23:1f:48:50:c2:a7:
1d:c4:86:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 11:34:00 2025 by rpki-client